Community discussions

MikroTik App

Search found 108 matches

by bratislav
Wed Mar 20, 2024 12:48 pm
Forum: Announcements
Topic: v7.14.2 [stable] is released!
Replies: 460
Views: 92343

Re: v7.14.1 [stable] is released!

Hi again, related to my previous post, I found following statement in documentation: fan-min-speed-percent: [...] *NOTE: the default value may vary based on FAN controller chip and/or specific model requirements. From RouterOS verson 7.14 default value is set to 12, all previous versions have 0. [....
by bratislav
Tue Mar 19, 2024 3:41 pm
Forum: Announcements
Topic: Newsletter #117 | March 2024
Replies: 22
Views: 18549

Re: Newsletter #117 | March 2024

If you are putting fans in the unit, why on earth why not design the whole switch then for a front-to-back or side-to-side airflow. If you are putting this device is a warm closet, the powersupplies and SFPs might be OK, but the chips will run very hot since the airflow doesn't pass the heatsink. A...
by bratislav
Tue Mar 19, 2024 11:37 am
Forum: Announcements
Topic: SwOS Lite version 2.18 released!
Replies: 23
Views: 19063

Re: SwOS Lite version 2.18 released!

It is always a good practice to refresh the page to avoid these kind of errors...
by bratislav
Thu Mar 14, 2024 1:52 pm
Forum: Announcements
Topic: Newsletter #117 | March 2024
Replies: 22
Views: 18549

Re: Newsletter #117 | March 2024

It's also very strange to have both fans and a big passive radiator. It's neither forced-air cooled nor passive-cooled. It must be quite expensive to manufacture all that heatsink for nothing. Forced air devices have the advantage of be able to operate in warmer areas, passive ones can not. Forced ...
by bratislav
Sat Mar 09, 2024 1:13 pm
Forum: Announcements
Topic: Newsletter #117 | March 2024
Replies: 22
Views: 18549

Re: Newsletter #117 | March 2024

Also, why is it using a mipsbe CPU when MikroTik is clearly moving everything they have to ARM? Even the $60 hAP ax lite has a dual core ARM CPU, but a $1000 switch does not? As far as I can tell they use the same CPU (QCA9531) on their top of the line CRS5xx 100Gbps switches, and on a side note it...
by bratislav
Wed Mar 06, 2024 12:50 pm
Forum: Announcements
Topic: SwOS Lite version 2.18 released!
Replies: 23
Views: 19063

Re: SwOS Lite version 2.18 released!

I understand what you say but I don't understand why that would be needed... doesn't make sense from a practical point of view. Auto MDX is something from the previous century ! Anyhow, SUP-146041 created. Let's see what support says about it. Actually I believe onnoossendrijver is correct, modern ...
by bratislav
Wed Mar 06, 2024 11:19 am
Forum: Announcements
Topic: SwOS Lite version 2.18 released!
Replies: 23
Views: 19063

Re: SwOS Lite version 2.18 released!

Follow up: On CSS610 I set an S+RJ10 to forced 2.5Gb, connected to ether1 of AX3 using VLAN trunk. Link becomes active. So far so good. On AX3 log files I see it determines speed as being 2.5Gb, which is ok however ...nothing passes (after the facts I can see in log files what happened). Only when ...
by bratislav
Sat Mar 02, 2024 4:00 pm
Forum: Announcements
Topic: v7.14.2 [stable] is released!
Replies: 460
Views: 92343

Re: v7.14 [stable] is released!

With some obvious storage space issues and rose storage with btrfs and nfs kernel modules being a separate package, as it should be IMHO, I wonder why other pretty large file system kernel modules such as cifs, smb3, ntfs3 had to be added in the base routeros bundle making install next to impossible...
by bratislav
Fri Mar 01, 2024 11:13 am
Forum: Announcements
Topic: v7.14.2 [stable] is released!
Replies: 460
Views: 92343

Re: v7.14 [stable] is released!

What causes this message regarding a backup-routerboot upgrade? Screenshot from 2024-02-29 09-48-58.png

edit: Device is RB960PGS (hEX PoE) r2.
Have you bothered to actually read the page from the link provided?
https://wiki.mikrotik.com/wiki/Manual:R ... bootloader
by bratislav
Thu Feb 29, 2024 10:52 am
Forum: Announcements
Topic: SwOS version 2.16 released!
Replies: 45
Views: 28484

Re: SwOS version 2.16 released!

I was able to recreate the issue by just adding the management vlan, that is if I try the upgrade from vlan tagged network it will fail... Did you have the management interface to be accessible ONLY from VLAN99 ? (that is what I had on my CSS106-5G-1S switches) It was VLAN 40 in my case and I didn'...
by bratislav
Wed Feb 28, 2024 5:32 pm
Forum: Announcements
Topic: SwOS version 2.16 released!
Replies: 45
Views: 28484

Re: SwOS version 2.16 released!

these switches are pretty "standard" as the all have vlan99 added for maintenance and access to the switch only from vlan99. RSTP disabled and all ports allowing all vlans ... Not to special - created backup - reset to default switch came back on a dhcp in the generic vlan - upgrade - res...
by bratislav
Tue Feb 27, 2024 11:29 am
Forum: Announcements
Topic: SwOS version 2.16 released!
Replies: 45
Views: 28484

Re: SwOS version 2.16 released!

tried resetting the switch to default and then update? Just tried that, that works. But not really an option for remote switches. I got this one to the lab because it did not succeed, there is a spare on the actual location now ... Have a couple of others remote .. I upgraded dozens of switches, CS...
by bratislav
Fri Feb 23, 2024 12:42 pm
Forum: Announcements
Topic: v7.14rc [testing] is released!
Replies: 176
Views: 47285

Re: v7.14rc [testing] is released!

Upgraded from 7.13 stable to 7.14RC4, started having kernel panics. Downgraded to 7.13.5 stable and still having the kernel panics (full system reboot, log not displaying anything except for that a power supply interruption might've happened). RB5009UPr. Are you sure that it isn't actually a power ...
by bratislav
Thu Feb 22, 2024 4:17 pm
Forum: Announcements
Topic: v7.13.5 [stable] is released!
Replies: 909
Views: 257403

Re: v7.13.5 [stable] is released!

If capsman wasn't enabled, there is 0.0 reason for having that wireless package installed. My take: Don't install it by default on a switch. If needed, device's admin can always add wireless him/herself. But at that point I suspect it's an admin knowing what he/she is doing. Packages are upgraded b...
by bratislav
Wed Feb 21, 2024 11:26 am
Forum: Announcements
Topic: v7.13.5 [stable] is released!
Replies: 909
Views: 257403

Re: v7.13.4 [stable] is released!

I'm not 100% sure it's related to this release but I haven't seen this in any earlier ones and I had all of 7.13.0-7.13.3 before. Hardware: hAP ac2 with 7.13.4 and wifi-qcom-ac configured as CAP with some vlan extras. Since 7.13.4 the vlan bridge is changing its MAC address multiple times. After th...
by bratislav
Mon Feb 12, 2024 2:05 pm
Forum: Announcements
Topic: v7.14rc [testing] is released!
Replies: 176
Views: 47285

Re: v7.14rc [testing] is released!

cAP XL ac and wAP ac upgraded (from 7.13.4) without problems (besides my RB4011).
Only had to suppress Wireguard logging.
I presume wAP ac is an arm version not mipsbe...
Was the wifi-qcom-ac package used?
How much HDD space was left free on cAP XL ac and wAP ac after the upgrade?
by bratislav
Mon Feb 12, 2024 1:05 pm
Forum: Announcements
Topic: v7.13.5 [stable] is released!
Replies: 909
Views: 257403

Re: v7.13.3 [stable] is released!

Not only they're not unbundling optional packages like PPP and Routing, but they also added Rose (SMB) functionality to the main package. IMO smb functionality is also optional and shouldn't be included in the main bundle. Rose is much more than just SMB (it contains nfs, btrfs ...) and is external...
by bratislav
Tue Feb 06, 2024 3:26 pm
Forum: Announcements
Topic: v7.13.5 [stable] is released!
Replies: 909
Views: 257403

Re: v7.13.3 [stable] is released!

I don't believe that routing protocols significantly increase the size of the main package or are easy to separate. The biggest impact comes from binary files. There are some with significant size and not everybody needs. dot1x (100k), lcdstat (212k), quickset (136k), smb (168k in 7.13.3), upnp (10...
by bratislav
Wed Jan 31, 2024 2:36 pm
Forum: Announcements
Topic: Newsletter #116 | January 2024
Replies: 90
Views: 28871

Re: Newsletter #116 | January 2024

Also, Chateau 5G R16 - 16MB storage ? Seriously ? In 2024. ? And it is RouterOS v7 only... Maybe it is a good thing, this will insure that MikroTik commits extra effort to make new versions of RouterOS v7 fit on 16MB unlike recent Betas... But I am not sure if it wouldn't be cheaper and better in t...
by bratislav
Fri Jan 26, 2024 2:32 pm
Forum: Announcements
Topic: v7.14beta [testing] is released!
Replies: 510
Views: 149907

Re: v7.14beta [testing] is released!

That is what I mean! E.g. "unbound" provides everything the RouterOS resolver can do now, plus additional things that are still on the list of things-to-do, like DNSSEC support. I'm sure once work is done on that, all the bugs come back to haunt them. There are many good dns resolver opti...
by bratislav
Mon Jan 22, 2024 1:10 pm
Forum: Announcements
Topic: v7.14beta [testing] is released!
Replies: 510
Views: 149907

Re: v7.14beta [testing] is released!

Indeed, they are in denial. We can only hope that 7.12.1 will be labeled long-term and maintained with security fixes...
Or one could go back to RouterOS v6 long-term, it is still supported and will be for some time as far as I can tell...
by bratislav
Tue Jan 16, 2024 12:15 pm
Forum: General
Topic: User poll about using Winbox
Replies: 100
Views: 62519

Re: User poll about using Winbox

I believe we all use sessions even unintentionally because by default WinBox will save current session for particular connection and restore the layout on next connection... Maybe it would be a good idea to be able to save "connectionless" session with some proffered windows layout not bou...
by bratislav
Thu Dec 28, 2023 2:09 pm
Forum: Announcements
Topic: v7.13.5 [stable] is released!
Replies: 909
Views: 257403

Re: v7.13 [stable] is released!

... Is this memory usage okay for the wifi-qcom-ac package?.. free-memory: 33.2MiB total-memory: 128.0MiB With wifi-qcom-ac mine lightly used cAP ac now has: free-memory: 28.1MiB total-memory: 128.0MiB Which is roughly half of free memory (used to be around 54MiB free) when used with legacy drivers...
by bratislav
Sat Nov 18, 2023 12:58 pm
Forum: Announcements
Topic: v7.13beta [testing] is released!
Replies: 467
Views: 88708

Re: v7.13beta [testing] is released!

2) if I want to use the new wifi menu & features, does it support A) No 2.4 GHz band at all (all 2.4 GHz is legacy on the old wireless menu) B) 2.4 GHz band only on specific devices (new AX routers?) with all other devices having no support for 2.4 GHz C) 2.4 GHz on all devices, but always usin...
by bratislav
Fri Nov 10, 2023 2:07 pm
Forum: Announcements
Topic: v7.12.1 [stable] is released!
Replies: 252
Views: 92065

Re: v7.12 [stable] is released!

*) wifiwave2 - added station-bridge interface mode;
I presume this is incompatible with regular "wireless" package station-bridge and all APs not able to run wifiwave2 right?
by bratislav
Sun Oct 15, 2023 12:20 am
Forum: Announcements
Topic: v7.11.2 [stable] is released!
Replies: 348
Views: 161970

Re: v7.11.2 [stable] is released!

On hAP ax^2 (with wifiwave2) if you turn on Hardware Offload on ethernet ports (and it actually works meaning you have H flag) in a Bridge where wifi interfaces are connected (say LAN) the packets from wifi interfaces are not forwarded, it just doesn't work... I am not sure if this is the case in pr...
by bratislav
Sat Sep 23, 2023 2:24 pm
Forum: Announcements
Topic: v7.11.2 [stable] is released!
Replies: 348
Views: 161970

Re: v7.11.2 [stable] is released!

To downgrade my RB941 to v6, I followed the advices at https://help.mikrotik.com/docs/display/RKB/Downgrading+RouterOS - downloading routeros-smips-6.49.10.npk (latest v6 Firmware) - uploading it via winbox to the router - issuing /system/package/downgrade at console It didn't come to /system/reboo...
by bratislav
Sat Aug 19, 2023 1:30 pm
Forum: Announcements
Topic: v7.12beta [testing] is released!
Replies: 263
Views: 123384

Re: v7.12beta [testing] is released!

Endpoint-Independent NAT all world call it Full Cone NAT Actually Cisco calls it Restricted Cone NAT, but for example Juniper, Fortinet and many BSD variants call it Endpoint Independent mapping NAT... Here is one explanation that describes it pretty well... https://docs.netgate.com/tnsr/en/latest/...
by bratislav
Mon May 15, 2023 2:04 pm
Forum: Announcements
Topic: Newsletter #113 | May 2023
Replies: 103
Views: 42355

Re: Newsletter #113 | May 2023

Without 5&6 GHz? In y. 2023? Why bother at all? Sorry Mikrotik, but I see no use for this. A lot of people asking about the wireless part. This device is a drop-in replacement for our wildly popular RB2011 2GHz AP. It is still (yes, today) one of our best selling devices. There are plenty of us...
by bratislav
Tue Aug 16, 2022 5:32 pm
Forum: Announcements
Topic: Newsletter 107
Replies: 50
Views: 26335

Re: Newsletter 107

Nice to see ax, I was forced to go with Grandstream for the last year or so just because some customers required ax... Although this is more home device and features like SFP etc just do not apply there... What I would like to see next is CAP ax but with one input and other output PoE and preferably...
by bratislav
Tue Aug 02, 2022 1:43 pm
Forum: Announcements
Topic: v7.4 [stable] is released!
Replies: 226
Views: 55160

Re: v7.4 [stable] is released!

Yes, stays at 5-6% total CPU load with one core always at 100%.
Maybe check if ip/dns has allow-remote-requests=yes...
by bratislav
Tue May 31, 2022 1:00 pm
Forum: Announcements
Topic: MikroTik Devices Controller
Replies: 332
Views: 234340

Re: MikroTik Devices Controller

At the moment we do not want to stick to a specific implementation or standard, but build our own that will help to manage, develop and deploy different scale networks running MikroTik devices. Maybe it would be wiser to drop a bit of vanity and instead of inventing everything from the scratch base...
by bratislav
Fri May 20, 2022 1:39 pm
Forum: Announcements
Topic: v7.2.2 [stable] and v7.2.3 [stable] are released!
Replies: 401
Views: 80743

Re: v7.2.2 [stable] and v7.2.3 [stable] are released!

can you explain what is pref-src=0.0.0.0 what thats for?
If you have more than one IP addresses you can set the one that is used by default for this particular route...
by bratislav
Fri Apr 29, 2022 5:44 pm
Forum: General
Topic: posts not strictly related to: v6.49.6 [stable]
Replies: 39
Views: 2401

Re: v6.49.6 [stable] is released!

So, If we want to have the updated stable version, we can't run Dude.
Dude will work for 3 months and after will be dead for 3 months .
Unless you read the posts above to find out where the dude package is and upgrade it you wont be able to run it...
by bratislav
Thu Apr 21, 2022 11:42 am
Forum: General
Topic: posts not strictly related to: v6.49.6 [stable]
Replies: 39
Views: 2401

Re: v6.49.6 [stable] is released!

Then probably will wait for 6.49.7 ...
I wonder what for?
by bratislav
Wed Apr 20, 2022 12:51 pm
Forum: Announcements
Topic: v7.2.1 [stable] is released!
Replies: 240
Views: 46180

Re: v7.2.1 [stable] is released!

After upgrading RB760iGS (hEX S) from 6.49.6 to 7.2.1 sfp information is no longer visible with Mikrotik or OEM modules, although sfp seems to work.
The other problem is that if Hardware Offload is active on any port in the bridge with RSTP turned on the bridge stops forwarding packets...
by bratislav
Fri Feb 25, 2022 12:42 pm
Forum: Announcements
Topic: Newsletter 104
Replies: 54
Views: 25874

Re: Newsletter 104

I wonder how useful 5Ghz backup connection would be over 2.4km link...
by bratislav
Wed Dec 29, 2021 2:22 pm
Forum: Announcements
Topic: WinBox v3.32 released!
Replies: 65
Views: 93388

Re: WinBox v3.32 released!

maybe they'd commit some resources to a full winbox rewrite but right now it'd be a waste of time and money. This rewrite is overdue for over 10 years. It did not happen until now - so it wont ever happen. I don't recall MikroTik promised anything or any time frame and for most users the Windows ve...
by bratislav
Wed Dec 08, 2021 4:30 pm
Forum: Announcements
Topic: v6.48.6 [long-term] is released!
Replies: 126
Views: 274169

Re: v6.48.6 [long-term] is released!

6.48.6 broke all PPP only for me? Сyclic PPP reconnections (client or server - it doesn't matter).
downgrade to 6.48.5 - fixed problem
And by all PPP you mean L2TP, SSTP, OVPN, PPTP, PPPoE or actually PPP that runs over serial connection?
by bratislav
Sat Oct 23, 2021 2:03 pm
Forum: Announcements
Topic: v6.48.5 [long-term] is released!
Replies: 167
Views: 107237

Re: v6.48.5 [long-term] is released!

Although it may not be the usual subject for a new firmware release since this particular release is obviously plagued with some outstanding bugs we may state our opinion on what should be called a long-therm release... Since we already have stable and long-term branches in addition to testing and d...
by bratislav
Fri Aug 20, 2021 2:42 pm
Forum: Announcements
Topic: Newsletter 101
Replies: 43
Views: 20579

Re: Newsletter 101

Would be nice if two RB5009 could be mounted in a half (10") RACK ...
by bratislav
Mon Jun 21, 2021 11:35 am
Forum: Announcements
Topic: Newsletter June 2021 (#100)
Replies: 54
Views: 34784

Re: Newsletter June 2021 (#100)

For any kind of funky setups, surely you need the normal MikroTik app, where a lot more options are available. This is for home users with no configuration needs. Those users mostly never change the password that is set initially so, although it may look like a nice touch, it seems like a bit of wa...
by bratislav
Tue Jun 08, 2021 1:29 pm
Forum: Announcements
Topic: v6.47.10 [long-term] is released!
Replies: 148
Views: 65920

Re: v6.47.10 [long-term] is released!

I wonder if it would be too hard to check if package upgrade even works on supported platforms because it obviously doesn't on SMIPS using any standard procedure... On others you go without problems. I wonder why you write if you wonder? I wonder why you wonder if me or someone wonders why it is no...
by bratislav
Mon Jun 07, 2021 3:40 pm
Forum: Announcements
Topic: v6.47.10 [long-term] is released!
Replies: 148
Views: 65920

Re: v6.47.10 [long-term] is released!

Mikrotik Staff, now you have the EXACT procedure for replicate the problem. https://forum.mikrotik.com/viewtopic.php?f=21&t=175735#p860864 I wonder if it would be too hard to check if package upgrade even works on supported platforms because it obviously doesn't on SMIPS using any standard proc...
by bratislav
Fri Oct 09, 2020 11:13 am
Forum: Announcements
Topic: Newsletter 97 (September 2020)
Replies: 87
Views: 38087

Re: Newsletter 97 (September 2020)

As for the hAP ac³ - it is almost 2x the size of the previous model. Pity there is still only 5 eth ports. Well, one is going to be used for the Internet connection, so actually 4 ports ... I use it for my home and my friend wants to redo his home network too, but needs more power. Will be deciding...
by bratislav
Tue Sep 29, 2020 11:33 am
Forum: Announcements
Topic: Newsletter 97 (September 2020)
Replies: 87
Views: 38087

Re: Newsletter 97 (September 2020)

It would be really nice if for smaller devices like this CSS610-8G-2S+IN switch MikroTik bundles second ear for 10" racks mount that are increasingly popular ... And also (as a separate item) a kit that will make possible to mount two units in one 19" space. May be but on the other hand i...
by bratislav
Mon Sep 28, 2020 1:59 pm
Forum: Announcements
Topic: Newsletter 97 (September 2020)
Replies: 87
Views: 38087

Re: Newsletter 97 (September 2020)

It would be really nice if for smaller devices like this CSS610-8G-2S+IN switch MikroTik bundles second ear for 10" racks mount that are increasingly popular ...
by bratislav
Fri Sep 25, 2020 11:22 am
Forum: Announcements
Topic: v6.47.4 [stable] is released!
Replies: 68
Views: 36735

Re: v6.47.4 [stable] is released!

On the version 6.47.4 command repartition (e.g. "/partitions repartition partitions =2") causes the router's cyclic reboot (about every 10 seconds). On versions 6.47.x situation the same. Reset didn't help, I've been able to repare it only with netinstall On the version 6.46.7 this comman...
by bratislav
Mon Sep 14, 2020 12:11 pm
Forum: Announcements
Topic: v6.46.7 [long-term] is released!
Replies: 45
Views: 26383

Re: v6.46.7 [long-term] is released!

Also what is the process for 'upgrading' a routerboard that does not have direct internet access from stable to long-term release channel when it is on e.g. 6.47.x? I give it the .npk from long-term, and even set channel to long-term in packages but log says that newer version is installed - seems ...
by bratislav
Tue Sep 01, 2020 1:36 pm
Forum: Announcements
Topic: WinBox v3.25 released!
Replies: 68
Views: 26709

Re: WinBox v3.25 released!

IMHO You shold fix WinBox not ROS ASAP as upgrade to ROS > 6.47 is not always possible And remove Winbox 3.25 from downloads and upgrade ASAP. After struggling for some time with firewall order issue and now with all this wireless killer bugs I am reverting back to winbox64-3.21 that seems to work ...
by bratislav
Mon Aug 31, 2020 11:25 am
Forum: Announcements
Topic: WinBox v3.25 released!
Replies: 68
Views: 26709

Re: WinBox v3.25 released!

What's new in v3.25: *) added support for CTRL+ and CTRL- keyboard shortcuts for Zoom in and Zoom out; CTRL+ and CTRL- keyboard shortcuts for Zoom in and Zoom out work in Firefox, Chrome, Adobe products. Not in this release of WinBox. I thought you are confusing Webfig and WinBox until you mentione...
by bratislav
Mon Aug 24, 2020 11:57 am
Forum: RouterOS beta
Topic: v7.1beta2 [development] is released!
Replies: 385
Views: 153555

Re: v7.1beta2 [development] is released!

OpenVPN realization in Mikrotik is still useless due to lack of SHA256/SHA512 support (SHA-1 deprecated https://shattered.io/ ) When SHA512 will be supported in Mikrotik? There is a difference between hashing (as SHA1) and encryption (as AES...) and just because someone is able to generate 2 differ...
by bratislav
Sat Aug 22, 2020 3:42 pm
Forum: Announcements
Topic: v6.47.2 [stable] is released!
Replies: 88
Views: 39760

Re: v6.47.2 [stable] is released!

Many people in poor countries use hAP lite. They usually do not have the ability to buy better equipment. Features like IPsec and hotspot are essential for them. All you have to do is back up your settings before upgrading and reset the router to default configuration, then upgrade router and then ...
by bratislav
Sat Aug 22, 2020 3:31 pm
Forum: Announcements
Topic: v6.47.2 [stable] is released!
Replies: 88
Views: 39760

Re: v6.47.2 [stable] is released!

I have a hap ac which was running on 6.47.1. I upgraded to 6.47.2 and it went well, then on reboot I upgraded the firmware too. But on reboot I couldn't login using winbox. The system was not responding to reset for 4 attempts. On the fifth time it got reset and I could login using winbox. What did...
by bratislav
Thu Jul 16, 2020 2:28 pm
Forum: Announcements
Topic: v6.47.1 [stable] is released!
Replies: 146
Views: 95116

Re: v6.47.1 [stable] is released!

Actually there is much simpler explanation ... those RBs don't need more ... What about partitioning? :) Partioning? We don't need no stinkin' partitioning :D Frankly I find partitioning too much hassle to use on local devices, backups are just fine ... And RBs dont need partitioning, you do so cho...
by bratislav
Tue Jul 14, 2020 12:30 pm
Forum: Announcements
Topic: v6.47.1 [stable] is released!
Replies: 146
Views: 95116

Re: v6.47.1 [stable] is released!

is it REALLY worth it!???? Yes it is. Lets call it planned obsolescence and whats the first rule of planned obsolescence? We don't talk about it! Actually there is much simpler explanation ... those RBs don't need more ... Firstly flash is not used to store firmware upgrade files, RAM is, as can be...
by bratislav
Mon Jul 13, 2020 2:43 pm
Forum: Announcements
Topic: v6.47.1 [stable] is released!
Replies: 146
Views: 95116

Re: v6.47.1 [stable] is released!

Hi i dont believe that i will be able to upgrade my hex3. Only 4.9MiB free but nothing on the flash. Anybody an idea ? Im about 50km away from this box. I would downgrade to an older, much smaller version then upgrade to latest, but in your case that may give problem if you loose some function so t...
by bratislav
Tue Jun 30, 2020 12:55 pm
Forum: Announcements
Topic: MikroTik Newsletter June 2020 (#96)
Replies: 29
Views: 19965

Re: MikroTik Newsletter June 2020 (#96)

the latest Linux Kernel 5.6.3 featuring new up-to-date Actually latest is 5.7.6, and latest 5.6 is 5.6.19 which is EOL by the way ... so I wonder why not 5.4 which is longterm maintenance release and will be supported to 2025 unless WireGuard is planned which was introduced in 5.6 (although WireGua...
by bratislav
Tue Mar 19, 2019 3:22 pm
Forum: Announcements
Topic: v6.44.1 [stable] is released!
Replies: 85
Views: 50253

Re: v6.44.1 [stable] is released!

Can't upgrade one of my hAP lite from 6.44 to 6.44.1 -- "not enough space for upgrade" :( Files are empty, all modules are disabled ( system is active only), 14.3MB free RAM. But how much HDD space is free? That's what's used for upgrade in hAP Lite. Also, disabling packages does not free...
by bratislav
Mon Oct 29, 2018 11:15 am
Forum: Announcements
Topic: v6.42.9 [long-term] is released!
Replies: 119
Views: 56227

Re: v6.42.9 [long-term] is released!

This is my first version running a new bridge, don't know if it's a known bug. RB951G-2HnD running as just a Switch/AP (all ethernet+wlan ports under one switch/bridge, no vlans, no nat). If I change the mac address of an ethernet port while it's a member of a switch/bridge, most of the OS will han...
by bratislav
Mon Sep 10, 2018 12:26 pm
Forum: Announcements
Topic: Newsletter #84
Replies: 47
Views: 31528

Re: Newsletter #84

That would be nice but unfortunately RBx00x devices are just too big to be mounted side by side in a 19" rack RB2011iL Dimensions Desktop:230x90x25mm Rackmount:443x92x44mm rb2011rack.png Have MikroTik ever had a discussion about the format of rackmounts. So to be able to mount TWO instead of on...
by bratislav
Mon Aug 20, 2018 12:21 pm
Forum: Announcements
Topic: v6.42.7 [current] is released!
Replies: 159
Views: 69855

Re: v6.42.7 [current] is released!

Seems that new workaround option:
*) wireless - added option to disable PMKID for WPA2;
Does not prevent users to connect and so far everything works well for us ...
by bratislav
Sat Aug 18, 2018 1:25 pm
Forum: Announcements
Topic: WPA2 preshared key brute force attack
Replies: 33
Views: 51296

Re: WPA2 preshared key brute force attack

And what about working on WPA3?
According to Qualcomm you need new chipsets for WPA3 so it seems that old gear wont be able to support it ...
by bratislav
Wed Apr 25, 2018 6:43 pm
Forum: Announcements
Topic: v6.42.1 [current]
Replies: 272
Views: 98646

Re: v6.42.1 [current]

I checked this on all our routers upgraded to 6.42 or 6.41 ... And In ROS 6.41 and 6.42 Mikrotik Neighbor Discovery protocol outgoing traffic is actually allowed to bypass firewall altogether and cannot be caught in any chain, not something that any process should be IMHO ... And for me this is actu...
by bratislav
Tue Apr 24, 2018 1:04 pm
Forum: Announcements
Topic: v6.42.1 [current]
Replies: 272
Views: 98646

Re: v6.42.1 [current]

Not related to Winbox security issue, but seems like a bug ... On 6.41.x and 6.42.x MNDP trafic is not visible anymore in firewall output chain ... For example I am using this rules /ip firewall raw> print Flags: X - disabled, I - invalid, D - dynamic 0 chain=output action=passthrough log=yes log-pr...
by bratislav
Thu Nov 02, 2017 12:37 pm
Forum: Announcements
Topic: MikroTik used by Amazon in their cloud datacenters
Replies: 33
Views: 32707

Re: MikroTik used by Amazon in their cloud datacenters

Sadly, it looks like the footage was probably all from inside the Raging Wire data center and not an AWS data center. It was still good to see it being used though. Ragingwire is part of NTT, they are data center operator and they are in business of leasing data center space and infrastructure to c...
by bratislav
Thu Nov 02, 2017 10:39 am
Forum: Announcements
Topic: MikroTik used by Amazon in their cloud datacenters
Replies: 33
Views: 32707

Re: MikroTik used by Amazon in their cloud datacenters

Sadly, it looks like the footage was probably all from inside the Raging Wire data center and not an AWS data center. It was still good to see it being used though. Ragingwire is part of NTT, they are data center operator and they are in business of leasing data center space and infrastructure to c...
by bratislav
Mon Oct 30, 2017 1:05 pm
Forum: Announcements
Topic: v6.40.4 [current]
Replies: 103
Views: 45104

Re: v6.40.4 [current]

It surely works in winbox.
Maybe on your routerboard. On rb922 (and others) don´t work
Interesting ... What versions of WinBox/Windows are you using?
by bratislav
Mon Oct 23, 2017 7:07 pm
Forum: Announcements
Topic: RouterOS (v6.39.3, v6.40.4, v6.41rc) NOT affected by WPA2 vulnerabilities
Replies: 58
Views: 150047

Re: RouterOS (v6.39.3, v6.40.4, v6.41rc) NOT affected by WPA2 vulnerabilities

Also just to be clear on MikroTik APs mitigation is not yet available and the only option is to patch the clients and that maybe impossible especially with Android devices that probably will never receive a patch, so maybe a suggestion for MikroTik to develop something like this and make it availab...
by bratislav
Mon Oct 23, 2017 10:45 am
Forum: Announcements
Topic: RouterOS (v6.39.3, v6.40.4, v6.41rc) NOT affected by WPA2 vulnerabilities
Replies: 58
Views: 150047

Re: RouterOS (v6.39.3, v6.40.4, v6.41rc) NOT affected by WPA2 vulnerabilities

To summarize, the client does connect to the fake AP. That's why the researcher enabled ip forwarding on his linux box. Actually there are AP's that will do this (mitigate the 4-way handshake problem). I'm not sure it will break anything with compatibility but we administer a ton of AP's and they a...
by bratislav
Fri Oct 20, 2017 11:09 am
Forum: Announcements
Topic: RouterOS (v6.39.3, v6.40.4, v6.41rc) NOT affected by WPA2 vulnerabilities
Replies: 58
Views: 150047

Re: RouterOS (v6.39.3, v6.40.4, v6.41rc) NOT affected by WPA2 vulnerabilities

Apparently AP can mitigate this by "bending" the standard 4-way handshake and instead of re-transmitting message 3... It does not re-transmit anything during attack. It's an attacker who replays the message 3 that was originally transmitted by the real AP. It does actually ... the attacke...
by bratislav
Fri Oct 20, 2017 10:35 am
Forum: Announcements
Topic: RouterOS (v6.39.3, v6.40.4, v6.41rc) NOT affected by WPA2 vulnerabilities
Replies: 58
Views: 150047

Re: RouterOS (v6.39.3, v6.40.4, v6.41rc) NOT affected by WPA2 vulnerabilities

The demo from the researcher clearly indicates a man-in-the-middle attack. It is shown in the video on his website around 1:54 https://youtu.be/Oh4WURZoR98 Hence, the client does connect to the malicious AP. You seem to claim the client does not need to connect to the fake AP? You should have also ...
by bratislav
Thu Oct 19, 2017 6:58 pm
Forum: Announcements
Topic: RouterOS (v6.39.3, v6.40.4, v6.41rc) NOT affected by WPA2 vulnerabilities
Replies: 58
Views: 150047

Re: RouterOS NOT affected by WPA2 vulnerabilities

You can fix the 4-way handshake issue either at the client side or at the Access Point side. ... So it's good practice to also fix it at the AP side:-). Wrong!!! KRACK is a pure client-side attack. Patching AP will give you nothing. Worse!!! Patching AP will just give some people false sense of sec...
by bratislav
Tue Oct 17, 2017 6:49 pm
Forum: Announcements
Topic: RouterOS (v6.39.3, v6.40.4, v6.41rc) NOT affected by WPA2 vulnerabilities
Replies: 58
Views: 150047

Re: RouterOS NOT affected by WPA2 vulnerabilities

You can fix the 4-way handshake issue either at the client side or at the Access Point side. ... So it's good practice to also fix it at the AP side:-). Wrong!!! KRACK is a pure client-side attack. Patching AP will give you nothing. Worse!!! Patching AP will just give some people false sense of sec...
by bratislav
Thu Sep 14, 2017 6:44 pm
Forum: Announcements
Topic: Newsletter 78 with 1GBPS WIRELESS PRODUCT ANNOUNCEMENT!
Replies: 109
Views: 49485

Re: Newsletter 78 with 1GBPS WIRELESS PRODUCT ANNOUNCEMENT!

Are you sure that you don't confusing "RB1100AHx4 Dude Edition" with one that is announced here "RB1100AHx4" Yes it is Dude Edition dude ... it is advertised here on top banner at $349.00 ... and that is way cheaper than what we have to pay here ... but enough of me whining :)
by bratislav
Thu Sep 14, 2017 5:08 pm
Forum: Announcements
Topic: Newsletter 78 with 1GBPS WIRELESS PRODUCT ANNOUNCEMENT!
Replies: 109
Views: 49485

Re: Newsletter 78 with 1GBPS WIRELESS PRODUCT ANNOUNCEMENT!

I would really prefer if you did not announce the prices ... Local distributors here are selling Mikrotik gear way times more expensive, for example RB1100AHX4 is currently 570$ or 475$ before taxes, so it is pretty annoying to find out that we are being robbed like that, it is better just not to kn...
by bratislav
Tue Sep 05, 2017 12:33 pm
Forum: Announcements
Topic: v6.40.3 [current]
Replies: 95
Views: 43485

Re: v6.40.3 [current]

Please plan some method to phase-out bundle package. (i.e. install separate packages from the factory, in some new version replace bundle package with the separate packages from the bundle) Why should Mikrotik do that? Packages are already available separately if you prefer it that way, but bundles...
by bratislav
Mon Sep 04, 2017 2:54 pm
Forum: Announcements
Topic: v6.40.3 [current]
Replies: 95
Views: 43485

Re: v6.40.3 [current]

Thank you! I rebooted the router. Free memory 7.4 MB. I updated the firmware, all ok. You are welcome ... on the other hand this make me wonder ... Seems that hAP lite is very tight with RAM memory and that new upgrades can barely fit so problems like yours should be expected in the future ... Mayb...
by bratislav
Sat Sep 02, 2017 1:15 pm
Forum: Announcements
Topic: v6.40.3 [current]
Replies: 95
Views: 43485

Re: v6.40.3 [current]

Hi all. I can not update the Mikrotik hAP lite firmware. Error: not enought disk space. It worked fine for me ... although I uploaded the npk file to router manually ... As far as I know files for upgrades are stored temporarily in RAM so there must be something hogging your memory ... You could us...
by bratislav
Thu Aug 31, 2017 3:33 pm
Forum: General
Topic: IPSEC aes-gcm shows as none in Winbox
Replies: 0
Views: 1136

IPSEC aes-gcm shows as none in Winbox

Has anybody noticed this ... RouterOS 6.38.7 in WinBox does not show anything for encryption algorithm if using aes-gcm: gcmwbox.jpg Everything is actually working and command line shows encryption correctly: ip ipsec installed-sa print Flags: A - AH, E - ESP 0 E spi=0x0000000 src-address=1.2.3.4 ds...
by bratislav
Wed Aug 30, 2017 2:26 pm
Forum: Virtualization
Topic: CHR suggestions for new functionality
Replies: 157
Views: 57579

Re: CHR suggestions for new functionality

Make CHR to run on barebone switches. :-) http://www.edge-core.com/productsInfo.p ... 143&id=264
It wouldn't be Cloud Hosted Router than and Mikrotik already has "barenone" hardware that is running RouterOS ...
by bratislav
Mon Aug 28, 2017 8:50 pm
Forum: Virtualization
Topic: CHR suggestions for new functionality
Replies: 157
Views: 57579

Re: CHR suggestions for new functionality

We are mostly VMware customers ... so for me some kind of VCenter integration, for example webfig access, would be really appreciated ...
by bratislav
Mon Aug 14, 2017 7:10 pm
Forum: Announcements
Topic: v6.40.1 [current]
Replies: 74
Views: 38619

Re: v6.40.1 [current]

Maybe false alert, seems to be NOT related to 6.40.1. I had a chance to test with a friend's hEX. Worked reliably with 6.40, likewise with 6.40.1, both RouterBOOT 3.35. Thanks for the update ... I was too reluctant to go for 6.40.1 after your post ... now I may reconsider :) Anyways seems to me tha...
by bratislav
Sat Aug 12, 2017 3:31 pm
Forum: Announcements
Topic: v6.40.1 [current]
Replies: 74
Views: 38619

Re: v6.40.1 [current]

Are you sure about RouterBOOT version? There is no such version at: https://wiki.mikrotik.com/wiki/RouterBOOT_changelog Also it seems to me that you have to update RouterBOOT separately by issuing system routerboard upgrade and then reboot ... Updated from 6.39.2 to 6.40.1 on a hEX (RouterBOOT 3.35 ...
by bratislav
Fri Aug 11, 2017 6:04 pm
Forum: General
Topic: a virus scanner on the router board
Replies: 14
Views: 11144

Re: a virus scanner on the router board

Absolutely agree ... and even the most powerful NGFW can not inspect SSL/TLS encrypted packets anyway (without meddling with Cert Store on each end user devices) ... I'm willing to bet that these virus scanning routers are only slightly better than worthless at actually providing real security from ...
by bratislav
Sat Jul 29, 2017 2:13 pm
Forum: Announcements
Topic: v6.41rc [release candidate] is released! New bridge implementation!
Replies: 561
Views: 207606

Re: v6.41rc [release candidate] is released! New bridge implementation!

It does not work even if I put my vlan on ether1 or 2. It should be like this ... (if your vlans 20 and 30 are on ether2 ): /interface bridge add name=bridge1 add name=bridge2 add name=bridge3 /interface vlan add interface=ether2 name=vlan20 vlan-id=20 add interface=ether2 name=vlan30 vlan-id=30 /i...
by bratislav
Fri Jul 28, 2017 6:53 pm
Forum: Announcements
Topic: v6.41rc [release candidate] is released! New bridge implementation!
Replies: 561
Views: 207606

Re: v6.41rc [release candidate] is released! New bridge implementation!

Shouldn't VLAN be created on Ethernet port, not the bridge ...
Or you are trying Bridge VLAN Filtering and vlan-ids ...
I'm creating VLAN20 on Bridge1 - there's still ok.
But when I add VLAN20 to Bridge2, RB is unavailable on these two ports.
by bratislav
Wed Jul 19, 2017 12:10 pm
Forum: Announcements
Topic: v6.40rc [release candidate] is released! (New bridge implementation delayed till 6.41rc)
Replies: 207
Views: 65171

Re: v6.40rc [release candidate] is released! (New bridge implementation)

You got this wrong ... flash chips are declared in Megabits ... so the prices you found are for 4MB, 32MB and 128MB respectively ... I'm with you guys. I'm not sure what class embedded designers are taught to use tiniest flash chip available on the market but I'd like to alter that curriculum. That ...
by bratislav
Tue Jul 18, 2017 12:31 pm
Forum: Announcements
Topic: v6.40rc [release candidate] is released! (New bridge implementation delayed till 6.41rc)
Replies: 207
Views: 65171

Re: v6.40rc [release candidate] is released! (New bridge implementation)

I really think Mikrotik should discuss using partitions in addition to backups.
Can I make partition(s) on my mAP Lite? It has only 32MB disk space.
Are you sure about that? mAP lite should have 64MB RAM and 16MB flash ... and no you cant use partitions ...
by bratislav
Wed Jul 05, 2017 10:47 am
Forum: Announcements
Topic: v6.38.7 [bugfix] is released!
Replies: 24
Views: 27066

Re: v6.38.7 [bugfix] is released!

100% CPU and can't connect How do you know that CPU is at 100% if you cant connect? And if you can somehow see this could you also check what is hogging CPU? Anyways it may be some DOS attack issue, my advice would be, if you have one spare port, to disconnect router from the network and plug only ...
by bratislav
Sun Apr 30, 2017 2:42 pm
Forum: Announcements
Topic: v6.39 [current]
Replies: 89
Views: 53721

Re: v6.39 [current]

Upgrade went well on RB750GL but DNS has gone berserk check whether you're being used as an attack amplifier look whether /ip dns cache is filled with junk entries Actually you are right ... on that particular router i forgot to close input from internet ...and it was literally bombarded by million...
by bratislav
Sat Apr 29, 2017 4:34 pm
Forum: Announcements
Topic: v6.39 [current]
Replies: 89
Views: 53721

Re: v6.39 [current]

Upgrade went well on RB750GL but DNS has gone berserk NAME CPU USAGE firewall-mgmt 3% ethernet 0.5% console 1% dns 82% firewall 2.5% networking 2% winbox 3% logging 0% management 6% routing 0% queuing 0% telnet 0% bridging 0% unclassified 0% total 100%
by bratislav
Mon Apr 24, 2017 10:56 pm
Forum: General
Topic: v6.39rc80 [release candidate] is released!
Replies: 63
Views: 22532

Re: v6.39rc76 [release candidate] is released!

So again with RSTP on a VLAN that is attached to a Bridge, it is going to send out the BPDU packets to the interface, regardless of VLAN, right? Isn't that how RSTP works on most switches? Unless MSTP or PVSTP is implemented, this is now normal operation mode which is 'normal' to switches operating...
by bratislav
Mon Apr 24, 2017 10:53 pm
Forum: General
Topic: v6.39rc80 [release candidate] is released!
Replies: 63
Views: 22532

Re: v6.39rc76 [release candidate] is released!

Would having MSTP option solve this issue?
Unfortunately Mikrotik is just ignoring this issue and sticks with 16 years old RSTP standard ...
by bratislav
Fri Mar 17, 2017 6:17 pm
Forum: General
Topic: Multiple Spanning Tree Protocol MSTP/PVST+
Replies: 2
Views: 2094

Re: Multiple Spanning Tree Protocol MSTP/PVST+

No it does not ...
It has been requested but to no avail>
viewtopic.php?t=44921
by bratislav
Sat Feb 18, 2017 12:15 am
Forum: Announcements
Topic: Winbox 3.11 released!
Replies: 94
Views: 359741

Re: Winbox 3.11 released!

wireless snooper result don't indented in winbox 3.x
What do you mean ...
Image
It seams OK to me ...
by bratislav
Mon Feb 06, 2017 6:56 pm
Forum: Announcements
Topic: Winbox 3.10 released!
Replies: 69
Views: 58291

Re: Winbox 3.10 released!

Could you please add a scroll bar to some windows?
It is unusable on smaller screens ... You could use WebFig for now ...
by bratislav
Thu Feb 02, 2017 10:22 am
Forum: Announcements
Topic: Newsletter 75, January 2017
Replies: 55
Views: 28741

Re: Newsletter 75, January 2017

SwOS Features: Rapid Spanning Tree Protocol (only) Is this really a feature in these day and age ... It seams to me MSTP is obligatory option (same as VLAN) for enterprise network switches ... I don't know of any ''serious" switch that does not support MSTP ... and every other vendor supports i...
by bratislav
Sat Jan 28, 2017 5:35 pm
Forum: Announcements
Topic: Winbox 3.10 released!
Replies: 69
Views: 58291

Re: Winbox 3.10 released!

Actually there is one small annoyance in the latest versions of winbox ... If I click on a new session (menu/session/new) it does more or less nothing except deleting the IP address from the session text box and I stay connected to the same router but I am unable to close winbox any more ... or exit...
by bratislav
Thu Jan 26, 2017 6:20 pm
Forum: Announcements
Topic: Winbox 3.10 released!
Replies: 69
Views: 58291

Re: Winbox 3.10 released!

I will ask once again..... This problem can be solved? It seems it was promised in version 3.0 http://fs5.directupload.net/images/170124/jswmnnj5.png You should check your display settings, custom screen font or similar, it works fine for the rest of us ... http://fs5.directupload.net/images/170126...
by bratislav
Wed Oct 26, 2016 7:59 pm
Forum: Announcements
Topic: v6.36.4 [bugfix] is released!
Replies: 51
Views: 26778

Re: v6.36.4 [bugfix] is released!

Looks good so far ... upgrade from routeros-mipsbe-6.34.6 went without any issues and everything works fine ...
by bratislav
Wed Oct 19, 2016 3:21 pm
Forum: Announcements
Topic: v6.37.1 [current] is released!
Replies: 143
Views: 59314

Re: v6.37.1 [current] is released!

Where can I configure LLDP, I cant find anything related to it in "/ip neighbor" or anywhere else. It seams still unimplemented http://forum.mikrotik.com/viewtopic.php?f=1&t=24690&start=50 They have already changed the documentation so we can only hope that it will "magically...
by bratislav
Wed Sep 28, 2016 6:17 pm
Forum: Announcements
Topic: v6.37 [current] is released!
Replies: 197
Views: 67370

Re: v6.37 [current] is released!

My upgrade went well but the problem I have is that I can not disable wireless package, that is I can flag it for disablement but after reboot it is enabled again. Everyone who did lose wireless package or sees it as disabled after upgrade - can you please write to support@mikrotik.com and provide p...
by bratislav
Fri Sep 23, 2016 1:13 pm
Forum: Announcements
Topic: v6.37 [current] is released!
Replies: 197
Views: 67370

Re: v6.37 [current] is released!

how do we enable/disable/check status of new feature loop from winbox? i cant find them in my rb2011 interface menu. is this only from terminal? It seems Loop protect feature is not available in this release ... from winbox 3.5 at least ... But it is working from command line: [admin@MikroTik2H] /i...
by bratislav
Fri Jul 22, 2016 10:27 am
Forum: Announcements
Topic: v6.36 [current] is released!
Replies: 183
Views: 72587

Re: v6.36 [current] is released!

After upgrade to 6.36 wireless-fp got removed as expected, but wireless-rep is missing. I got only wireless-cm2 atm. Where i can get wireless-rep from and is it backward compatible with older wireless packages?  You can find it in Extra packages zip archive, it is backward compatible but you should...
by bratislav
Sat Jun 04, 2016 3:31 pm
Forum: Announcements
Topic: v6.34.5 [bugfix] is released!
Replies: 23
Views: 14863

Re: v6.34.5 [bugfix] is released!

Upgrade from v6.34.2 to v6.34.5 deleted and disabled SSTP client configuration ... /interface sstp-client> print Flags: X - disabled, R - running 0 X name="sstp-rtv" max-mtu=1500 max-mru=1500 mrru=disabled connect-to=255.255.255.255:443 http-proxy=0.0.0.0:443 cert verify-server-certificate...
by bratislav
Wed May 25, 2016 7:17 pm
Forum: General
Topic: LLDP
Replies: 136
Views: 68942

Re: LLDP

Please specify what info would you like to get from LLDP?
You can start from here :D :
http://vincentbernat.github.io/lldpd/features.html

The license for lldpd is permissive enough that you can even reuse the source ... and it is smart enough to support various protocols not only LLDP ...
by bratislav
Mon Nov 16, 2015 10:10 pm
Forum: General
Topic: LLDP
Replies: 136
Views: 68942

Re: LLDP

There is an ISC-licensed, open source implementation of LLDP called lldpd (obvioulsy :D ) that also supports CDP and other L2 discovery protocols. It is available on most Linuxes, Openwrt and others and it seams to me that MikroTik could use this to deliver LLDP in no time ... there is also ladvd th...