Community discussions

Search found 456 matches

  • 1
  • 2
by scampbell
Mon Oct 07, 2019 12:28 am
Forum: RouterBOARD hardware
Topic: DISC Lite5 ac PtP NV2 Hickups and generally disapointing performance
Replies: 15
Views: 3778

Re: DISC Lite5 ac PtP NV2 Hickups and generally disapointing performance

@scampbell JUST test bridge ARM<=>ARM still works like crap even pure 802.11 in LAB. U need ONE MIPS BE MIPSBE<=>ARM for works but this speed :D.
I agree NV2 and ARM are not best friends but here is a quick Btest across a pair of SXTsq AC's running NV2:
sxtsqac.jpg
by scampbell
Sat Oct 05, 2019 11:44 pm
Forum: Wireless Networking
Topic: NV3
Replies: 125
Views: 14236

Re: NV3

Guys I am mikrotik fun we are on the same sinking boat we have to talk about real world where mikrotik losses in both scenarios PtP and PtMP and where other vendors outperforms it We still use mikrotik for PtMP on new towers but we have to split a 60° AP in 2 or 3 QRT ac to have the same performace...
by scampbell
Sat Oct 05, 2019 11:30 pm
Forum: Wireless Networking
Topic: NV3
Replies: 125
Views: 14236

Re: NV3

A real example please scampel. If we don't believe it. we are art theory See my last post for an example of an LHG XL 5 set to a 5MHz Channel :-) Unfortunately I am guilty of oversharing my knowledge on some of the things Mikrotik's are capable of. I shouldn't have mentioned the 30Mhz feature as th...
by scampbell
Sat Oct 05, 2019 11:27 pm
Forum: RouterBOARD hardware
Topic: DISC Lite5 ac PtP NV2 Hickups and generally disapointing performance
Replies: 15
Views: 3778

Re: DISC Lite5 ac PtP NV2 Hickups and generally disapointing performance

Welcome, there is nothing wrong on your Setup, Limit transmit Power would possible gives a Bit more speed (you are about -34, this is to much, -50 ist ideal) But for real ac Speed you Choose the wrong vendor I agree on the TX-Power. Also what method of speed test is being used and are you running i...
by scampbell
Sat Oct 05, 2019 11:13 pm
Forum: RouterBOARD hardware
Topic: DISC Lite5 ac PtP NV2 Hickups and generally disapointing performance
Replies: 15
Views: 3778

Re: DISC Lite5 ac PtP NV2 Hickups and generally disapointing performance

I am not sure what is wrong in your config but I agree the signal strength is too high (devices yelling at each other) - please publish your wireless config so we can see what country, regulatory settings, tx-power and aerial gain you are using. Below is a shot of a NetMetal running Ceee AC with con...
by scampbell
Sat Oct 05, 2019 2:01 am
Forum: Wireless Networking
Topic: NV3
Replies: 125
Views: 14236

Re: NV3

A real example please scampel. If we don't believe it. we are art theory See my last post for an example of an LHG XL 5 set to a 5MHz Channel :-) Unfortunately I am guilty of oversharing my knowledge on some of the things Mikrotik's are capable of. I shouldn't have mentioned the 30Mhz feature as th...
by scampbell
Sat Oct 05, 2019 1:48 am
Forum: Wireless Networking
Topic: NV3
Replies: 125
Views: 14236

Re: NV3

https://wiki.mikrotik.com/wiki/Manual:Wireless_Advanced_Channels @scampbell, Wireless Advanced Channels feature has a rather limited applicability, meaning just a small number of (mostly outdated) boards support it. Just check this out: Wireless hardware table . Hi Andriys, Thank you for your feedb...
by scampbell
Fri Oct 04, 2019 10:58 pm
Forum: Wireless Networking
Topic: NV3
Replies: 125
Views: 14236

Re: NV3

before the easy 500-700 megabytes and now 5-10-30 mhz are you sure you are talking about mikrotik or other sellers?
https://wiki.mikrotik.com/wiki/Manual:W ... d_Channels
by scampbell
Fri Oct 04, 2019 3:35 am
Forum: Wireless Networking
Topic: NV3
Replies: 125
Views: 14236

Re: NV3

it is not clear to me if mikrotik is still betting on the wisp or not ... Mikrotik have many advantages for small WISP's - their low cost CPE and low cost AP's are great. 120 Degree sectors work really well for low density rural sites, Ive been involved in deploying many mANT15's and we get 20-50Mb...
by scampbell
Thu Oct 03, 2019 5:17 am
Forum: Wireless Networking
Topic: NV3
Replies: 125
Views: 14236

Re: NV3

This is my configuration. I have asked you to recommend a firware and they have not done so I consider that anyone is good and I do not think I have to change that, right ?, On the other hand that accuses me of spaner. I will not stop telling the truth because others like you deny reality. To the o...
by scampbell
Fri Jul 05, 2019 7:54 am
Forum: General
Topic: Bridge is resetting CoS to 0 (was: Setting CoS from DSCP on PPPoE server)
Replies: 8
Views: 802

Re: Bridge is resetting CoS to 0 (was: Setting CoS from DSCP on PPPoE server)

Hi Nathan, While counter-intuitive it seems Clearing Priority of a packet as it passes through a bridge has been a "default" in RoS for a long time. Logically setting priority from ingress would make more sense as a default action to me too...... For any QoS structure we use both ingress priority as...
by scampbell
Fri Jul 05, 2019 7:44 am
Forum: Beginner Basics
Topic: Cannot access Hikvision NVR remotely
Replies: 4
Views: 458

Re: Cannot access Hikvision NVR remotely

Please post your dst-nat rule.

Hikvision works fine with Mikrotik, both for web and IVMS client
by scampbell
Fri Jul 05, 2019 7:32 am
Forum: Beginner Basics
Topic: TX Sector Info - Alignment of RBwAPG-60ad
Replies: 3
Views: 348

Re: TX Sector Info - Alignment of RBwAPG-60ad

Hi Dirks, The aerial for the WAP60AD is a 8x8 multi-sector array starting at top left 0 ending bottom right 63 (think in terms of a 8x8 grid or table) so sector 27 or 35 is roughly in the middle while sector 34 is meaning a little to the left and perhaps down a bit. This is indicated in the client t...
by scampbell
Thu Jun 13, 2019 2:31 am
Forum: Forwarding Protocols
Topic: ❗️❓ UNSTABLE VPLS on Wireless networks
Replies: 13
Views: 1166

Re: ❗️❓ UNSTABLE VPLS on Wireless networks

I comment on simple for any future readers like me (Correct me if I'm wrong). 1. OSPF interface [network type] from broadcast change to point to point , do this in Routers . 2. OSPF interface , enable Use BFD 3. Wlan interface , [Multicast Helper] from default to full . Hi ViREnG, Network type=poin...
by scampbell
Wed Jun 12, 2019 3:41 am
Forum: Forwarding Protocols
Topic: ❗️❓ UNSTABLE VPLS on Wireless networks
Replies: 13
Views: 1166

Re: ❗️❓ UNSTABLE VPLS on Wireless networks

Even if VPLS tunnels go down for some reason, they typically only take 10 seconds to come back, not 60. The 60 seconds makes me suspect that it is actually something else that is going down, most likely something like OSPF, or possibly LDP neighbor. You should be prioritizing OSPF and LDP over the ...
by scampbell
Thu Oct 11, 2018 10:57 pm
Forum: Wireless Networking
Topic: ARM devices and NV2 protocol
Replies: 579
Views: 60193

Re: ARM devices and NV2 protocol

LDF5 (802.11n) is available in Germany
LDF5 is in stock in New Zealand too - we can ship worldwide :-)
by scampbell
Thu Sep 27, 2018 8:10 am
Forum: General
Topic: Feature requests
Replies: 1160
Views: 207648

Re: Feature requests

I would like to see an "add comment" feature on any rule that allows you to add an address to an address list so the created address list entry has info about why it was added. e.g /ip firewall filter add action=add-src-to-address-list address-list=Blacklist address-list-timeout=5d chain=input proto...
by scampbell
Sat Sep 08, 2018 6:17 am
Forum: Wireless Networking
Topic: wifi timer
Replies: 3
Views: 411

Re: wifi timer

iPhones will usually disconnect when they go to sleep too....
by scampbell
Mon Jun 25, 2018 6:06 am
Forum: Wireless Networking
Topic: CAPsMan Version
Replies: 4
Views: 858

Re: CAPsMan Version

CAPsMAN v2 is included within the Wireless package. Just make sure you have the latest RoS and you are running the latest CAPsMAN :-)
by scampbell
Mon Jun 25, 2018 6:03 am
Forum: RouterBOARD hardware
Topic: Mikrotik VDSL / DSL Modem?
Replies: 314
Views: 87546

Re: Mikrotik VDSL / DSL Modem?

We distribute the Metanoia V5311-T-R in New Zealand and are working on this with the manufacturers. We have the V5311-T-R working now on NZ EUBA ADSL in a test environment currently. Once all tests are done we will contact customers directly with the necessary updates. What method do you use to rea...
by scampbell
Fri Jun 15, 2018 6:00 am
Forum: RouterBOARD hardware
Topic: Mikrotik VDSL / DSL Modem?
Replies: 314
Views: 87546

Re: Mikrotik VDSL / DSL Modem?

I've recently purchased this to use with ADSL, but I can't seem to get it working. The LED is green which seems to indicate SHOWTIME. I've set up an interface on my CPE as VLAN 6 (matching VCI/VPI 0/100 which is what I need) and used a PPPoE client, but it doesn't receive any packets on the interfa...
by scampbell
Wed May 16, 2018 9:47 pm
Forum: Wireless Networking
Topic: CAPsMAN VLAN assigment
Replies: 2
Views: 2668

Re: CAPsMAN VLAN assigment

On your AP I would suggest disabling the bridge vlan features and try again. Here is a sample config that supports VLAN's on an wAP AC with management on VLAN 1001 /interface bridge add name=bridge-trunk /interface wireless set [ find ] disabled=no /interface vlan add interface=bridge-trunk name=vla...
by scampbell
Sun May 13, 2018 6:11 am
Forum: Beginner Basics
Topic: PPTP - Cannot access device in LAN
Replies: 9
Views: 2055

Re: PPTP - Cannot access device in LAN

If you are logging into your LAN via PPTP and assigning your remote connection an IP address from the local LAN range then you will not be able to see devices in the local LAN like you report. The reason is due to your subnet and ARP. Your remote device gets an ip address like 192.168.88.77 with a n...
by scampbell
Sun May 13, 2018 5:59 am
Forum: Forwarding Protocols
Topic: Static routing help needed
Replies: 4
Views: 677

Re: Static routing help needed

There should be no further action on the Mikrotik needed (assuming no restrictive firewall rules). It should show two routes with flags DAC for both 172.30.30.0/30 and 172.29.29.0/30 When routing traffic your source device need a route to your destination and your destination device needs a route ba...
by scampbell
Wed May 09, 2018 1:43 am
Forum: Wireless Networking
Topic: Wireless woes and how to fix em :)
Replies: 16
Views: 2862

Re: Wireless woes and how to fix em :)

For 2.4GHz only use 20MHz and channels 2412, 2437 or 2462. Also add in two access list rules, one to accept connections between -80..120 and another to reject signals -120..120. This aids handoff from one AP to the other and feel free to alter the -80 threshhold. Also you may want to reduce the tx-p...
by scampbell
Wed May 09, 2018 1:37 am
Forum: Wireless Networking
Topic: Use AES-CCM only (unicast & group ciphers)
Replies: 4
Views: 1110

Re: Use AES-CCM only (unicast & group ciphers)

In addition to what R1CH says, TKIP and/or WPA (not WPA2) if used, will drop performance on Wireless N networks to no more than 54Mbps - if we see TKIP and/or WPA-PSK anywhere we disable it :-) If a device requires TKIP that represents a sales opportunity to replace the device ..... Here is an inter...
by scampbell
Tue Jan 09, 2018 9:19 pm
Forum: Announcements
Topic: v6.41 [current]
Replies: 304
Views: 77833

Re: v6.41 [current]

I have upgraded a CRS125, wAP AC and RB751U all to 6.41 on the same network. All devices upgraded OK and are working but only two devices showed the new 6.41 Routerboard F/W. The RB751U interestingly shows a blank where you would expect to see the new F/W (6.41). Is this a limtitation of the older h...
by scampbell
Tue Jan 02, 2018 10:53 pm
Forum: Beginner Basics
Topic: Route all ethernet interface
Replies: 3
Views: 623

Re: Route all ethernet interface

You state you want to redirect the destination ip address (subnet) 172.16.0.0/24 to the ether1 port 172.16.0.0/24. I beleive in this example ether1 should already have an IP address in the 172.16.0.0/24 network (and not 172,16.0.1/24 presumably) ? If this is the case a dynamic route to the 172.16.0....
by scampbell
Mon Oct 23, 2017 11:21 pm
Forum: Wireless Networking
Topic: wlan DHCP server RED color
Replies: 6
Views: 5153

Re: wlan DHCP server RED color

If you do not have any registered clients on your WLAN1 interface it will not show a Running Flag (R). Consequently any IP Address and DHCP-Server will be in an inactive state. As soon as a client registers the DHCP Server should change colour and start working. If you were to create a bridge, add t...
by scampbell
Fri Oct 20, 2017 4:19 am
Forum: Wireless Networking
Topic: Combining two radios into one antenna
Replies: 27
Views: 2253

Re: Combining two radios into one antenna

I haven't tried these but may do the job ?

http://www.l-com.com/bandpass-filter-rf ... an-systems
by scampbell
Wed Oct 18, 2017 5:45 am
Forum: Wireless Networking
Topic: Point to Point
Replies: 3
Views: 623

Re: Point to Point

Hi Tommy, Have you tried 802.11 protocol instead of NV2 for the backhauls ? I have found this can outperform NV2 in a P2P situation - let me know if it helps :-) Set station end protocol to "nv2-nstreme-802.11" first then change the bridge end to 802.11 for the test. Don't forget to create a wireles...
by scampbell
Tue Oct 10, 2017 12:29 am
Forum: Wireless Networking
Topic: omni to increase range of signal
Replies: 15
Views: 1727

Re: omni to increase range of signal

Also consider that as the gain of an Omni aerial increases the vertical coverage decreases i.e coverage below the horizontal plane of the aerial. So if you have a 3 dB Omni you get not so much distance but coverage is good below the aerial. As this gain increases the distance improves but coverage b...
by scampbell
Mon Oct 09, 2017 9:36 pm
Forum: Wireless Networking
Topic: Wifi 2.4GHz is not working with "auto" frequency
Replies: 4
Views: 992

Re: Wifi 2.4GHz is not working with "auto" frequency

Auto settings on 20/40MHz in area with 30+ 2.4Ghz network works just fine with mine rb951, so it should for him For sure it should work, but currently it does not. So to fault find it is best to go to basic methods and settings, check frequency usage and other AP's in the area and get stability. On...
by scampbell
Mon Oct 09, 2017 9:25 pm
Forum: Wireless Networking
Topic: Wireless probe
Replies: 15
Views: 3603

Re: Wireless probe

Try this.... the resultant file "sniffer.cap" can be viewed in Wireshark and shows mac and signal strength. I couldn't set the duration of the test (interval only allows up to 5 seconds) so some trial and error required. [admin@test] /interface wireless sniffer> sniff wlan1 append as-value do file ...
by scampbell
Mon Oct 09, 2017 9:24 pm
Forum: Wireless Networking
Topic: Wireless probe
Replies: 15
Views: 3603

Re: Wireless probe

Try this.... the resultant file "sniffer.cap"can be viewed in Wireshark and shows mac and signal strength. I couldn't set the duration of the test (interval only allows up to 5 seconds) so some trial and error required. [admin@test] /interface wireless sniffer> sniff wlan1 append as-value do file in...
by scampbell
Mon Oct 09, 2017 9:00 pm
Forum: Wireless Networking
Topic: Wifi 2.4GHz is not working with "auto" frequency
Replies: 4
Views: 992

Re: Wifi 2.4GHz is not working with "auto" frequency

I would not use "auto" frequency. Do a scan and choose the best channel (ideally 2412,2437 or 2462) .

I would also recommend not to use 20/40MHz - try 20MHz only, especially if you are in an urban area with many adjacent AP's.
by scampbell
Mon Oct 09, 2017 8:49 pm
Forum: Wireless Networking
Topic: cAP Lite in Hotel: 14 Access Point Setting
Replies: 16
Views: 6122

Re: cAP Lite in Hotel: 14 Access Point Setting

In a hotel situation for 2.4GHz be sure to only use 20MHz channels, protocol=802.11, set distance=indoors, ht-guard-interval=long and only use channels 1,6 & 11 (2412,2437 and 2462). The access rules you already know about. Why to use 20 Mhz and why 1,6 and 11 channel? Can you please explain? In th...
by scampbell
Mon Oct 09, 2017 8:21 pm
Forum: Wireless Networking
Topic: What is connect-list and why do I need it?
Replies: 1
Views: 1109

Re: What is connect-list and why do I need it?

The connect list controls what ap’s the wireless card can connect to. It allows you to specify multiple ssid’s and security profiles. On an Ap using WDS it can be used to control which other ap’s it will link with.
by scampbell
Thu Oct 05, 2017 8:10 am
Forum: General
Topic: DHCP Option 82 / DHCP-Snooping
Replies: 9
Views: 10739

Re: DHCP Option 82 / DHCP-Snooping

So a new CRS326 running SWoS 2.5 against an RoS Router DHCP does send through the port info on first connect of a client device.... But if I pull the cable and then reconnect via a different port it does not always send through the Relay-Agent-Info through to the DHCP-Server. So this feature works b...
by scampbell
Thu Sep 28, 2017 7:34 am
Forum: Wireless Networking
Topic: cAP Lite in Hotel: 14 Access Point Setting
Replies: 16
Views: 6122

Re: cAP Lite in Hotel: 14 Access Point Setting

In a hotel situation for 2.4GHz be sure to only use 20MHz channels, protocol=802.11, set distance=indoors, ht-guard-interval=long and only use channels 1,6 & 11 (2412,2437 and 2462).

The access rules you already know about.
by scampbell
Wed Sep 27, 2017 12:04 am
Forum: Wireless Networking
Topic: Signal values
Replies: 4
Views: 715

Re: Signal values

Easiest way is by having someone monitor the registration for you while you adjust - this can be done from either radio - just watch the CH0 and CH1 registration and adjust for best signal. You will need to do both ends of the link to get the best result. You could do it your self if you can juggle ...
by scampbell
Tue Sep 26, 2017 2:07 am
Forum: Wireless Networking
Topic: Signal values
Replies: 4
Views: 715

Re: Signal values

You have 16dB difference between your chain 0 and chain 1 settings - I would resolve that first.

Check alignment and clear line of sight.

Image
by scampbell
Tue Sep 26, 2017 1:54 am
Forum: Wireless Networking
Topic: Connecting 2 houses with internet connection wirelessy [SOLVED]
Replies: 4
Views: 766

Re: Connecting 2 houses with internet connection wirelessy [SOLVED]

Any of the 5GHz SXT's would do the job - if you want more than 100Mbps make sure you choose one with a Gigabit ethernet interface.

You can configure them as a bridge or routers - that is the flexibility of Mikrotik :-)
by scampbell
Mon Sep 25, 2017 1:44 am
Forum: Wireless Networking
Topic: Transparent WiFi AP
Replies: 2
Views: 927

Re: Transparent WiFi AP

You might also wish to set the Wireless Protocol to 802.11 instead of "any" :-)
by scampbell
Mon Sep 25, 2017 12:08 am
Forum: Wireless Networking
Topic: Do Capsman adjust TX-power?
Replies: 4
Views: 1582

Re: Do Capsman adjust TX-power?

Capsman can set the TX power but does not automatically adjust the TX power. Typically we set TX power to 17-20 dBM for all AP's
by scampbell
Mon Sep 25, 2017 12:06 am
Forum: Wireless Networking
Topic: Multicast-helper=full
Replies: 7
Views: 6904

Re: Multicast-helper=full

Multicast package must be installed
I do not believe this is correct - Multicast package is for PIM and IGMP Snooping.

This topic is relating to OSPF Multicasts and Wireless handling of the packets.

In Winbox under Wireless you need to enable the advanced button to see the Multicast settings.
by scampbell
Fri Sep 22, 2017 1:50 am
Forum: Beginner Basics
Topic: Redirect Hotspot Users
Replies: 2
Views: 537

Re: Redirect Hotspot Users

You can redirect on login to a specific site - and then users can go to whichever site they wish. https://aacable.wordpress.com/tag/mikro ... ful-login/
by scampbell
Fri Sep 22, 2017 1:45 am
Forum: Beginner Basics
Topic: How to Force Wlan Users to Use Specific DNS servers?
Replies: 3
Views: 1173

Re: How to Force Wlan Users to Use Specific DNS servers?

Use only source subnet in your rules should resolve that.

You can use in-interface as well but from your earlier post I thought test.wlan was an SSID not an interface ?
by scampbell
Thu Sep 21, 2017 4:57 am
Forum: Wireless Networking
Topic: QRT Bridge - Extensive data loss
Replies: 4
Views: 863

Re: QRT Bridge - Extensive data loss

On your RB2011 if your ethernet ports are either bridged or switched together then the vlans will be passed between them transparently - same as in the wireless config. In respect to the mangle Priority tags are not passed through a bridge so you need a Mangle rule to achieve that on the QRT (and RB...
by scampbell
Thu Sep 21, 2017 2:38 am
Forum: Wireless Networking
Topic: CAPSMAN - How to persuade clients to choose 5GHz over 2GHz?
Replies: 7
Views: 1451

Re: CAPSMAN - How to persuade clients to choose 5GHz over 2GHz?

Access lists will allow you to control what device connects to which AP but you have to manually decide. Perhaps you could do some OUI lookup to determine 5GHZ capable devices or deny access for a while and see if they connect to 5GHz and if not then allow 2GHz ? It would be a good trick if we could...
by scampbell
Thu Sep 21, 2017 2:31 am
Forum: Beginner Basics
Topic: How to Force Wlan Users to Use Specific DNS servers?
Replies: 3
Views: 1173

Re: How to Force Wlan Users to Use Specific DNS servers?

in-interface must be an actual interface e.g wlan1, wlan2 etc. It cannot be an ssid. Also you can only redirect to one DNS server, so one rule for UDP and one rule for TCP. add action=dst-nat chain=dstnat dst-port=53 in-interface=wlan1 protocol=udp to-addresses=DNS1 to-ports=53 add action=dst-nat ch...
by scampbell
Thu Sep 21, 2017 2:26 am
Forum: Wireless Networking
Topic: Wireless bridge to send video signal from a 2km distance
Replies: 3
Views: 713

Re: Wireless bridge to send video signal from a 2km distance

The biggest issue I can see with WiFi is it only works line of site. If it were me I would install an omnidirectional AP on the car (assumes a racetrack or similar) with client devices connected to it (sector aerials) and use mesh (HWMP+) to get you access to the camera stream. There was a presentat...
by scampbell
Tue Sep 19, 2017 7:11 am
Forum: Wireless Networking
Topic: Question about Home&Office hardware with AC support
Replies: 6
Views: 1188

Re: Question about Home&Office hardware with AC support

In marketing terms how does the hAP AC compare to D-links etc? I mean in terms of AC1900, AC3200 and so on. The hAP AC is a 2 chain 2.4 Ghz and 3 chain 5 GHz router, so 2 x 150 + 3 x 433.3 = 1600 which would be AC1600 The hAP AC lite is a 2 chain 2.4 GHz and 1 chain 5 GHz router, so 2 x 150 + 433.3...
by scampbell
Tue Sep 19, 2017 2:43 am
Forum: Wireless Networking
Topic: OmniTik on windowsills?
Replies: 4
Views: 632

Re: OmniTik on windowsills?

The new Wireless Wire would be perfect for that - even supposed to work through windows......https://download2.mikrotik.com/news/news_78.pdf
by scampbell
Tue Sep 19, 2017 2:04 am
Forum: Beginner Basics
Topic: EoIP with public IP
Replies: 11
Views: 1640

Re: EoIP with public IP

For EoIP on Public interfaces do not forget to allow GRE (47) on your input rules.
by scampbell
Tue Sep 19, 2017 2:02 am
Forum: Wireless Networking
Topic: QRT Bridge - Extensive data loss
Replies: 4
Views: 863

Re: QRT Bridge - Extensive data loss

I am looking at the config and it seems you shouldn't need all these VLAN's and bridges - in Bridge<->Station-Bridge mode the QRT's will pass all the VLAN's directly (i.e transparent bridge.) to your RB2011's. /interface bridge add name=bridge-trunk /interface bridge ports add interface=ether1 bridg...
by scampbell
Sun Sep 17, 2017 2:47 am
Forum: Wireless Networking
Topic: RouterBoard hAP AC Slow wireless performance.
Replies: 35
Views: 10772

Re: RouterBoard hAP AC Slow wireless performance.

If you compare your Tx and Rx rates in the registration table they are approx 60% different which matches your real world result. Antenna polarisation may be influencing this - perhaps use an extension USB and adjust position of the adapter to get a better registration. Also data rate of wireless is...
by scampbell
Sun Sep 10, 2017 10:58 pm
Forum: RouterBOARD hardware
Topic: RB751U-2HnD - poor wireless performance & problems
Replies: 113
Views: 114049

Re: RB751U-2HnD - poor wireless performance & problems

1. Use a current RoS 2. Set tx power to 17dBm 3. Use Channel width=20MHz - 20/40MHz is not universally accepted by all devices and uses a lot of spectrum 4. Set distance=indoors 5. Disable TKIP in your security profiles - it limits speed to 54Mbps 6. Set ht-tx-chain=0,1 and ht-rx-chain=0,1 where su...
by scampbell
Fri Aug 18, 2017 12:04 am
Forum: Announcements
Topic: Wireless link calculator updated
Replies: 67
Views: 31522

Re: Wireless link calculator updated

Currently the map appears to start in Riga (not sure why ?? hehe ) but it would be nice to have it default to the users default location ? Or allow passing start point via URL so we could add a link on our website and have it default to our own country ? +1 for change default location to user curre...
by scampbell
Thu Aug 17, 2017 5:12 am
Forum: Announcements
Topic: Wireless link calculator updated
Replies: 67
Views: 31522

Re: Wireless link calculator updated

Currently the map appears to start in Riga (not sure why ?? hehe ) but it would be nice to have it default to the users default location ? Or allow passing start point via URL so we could add a link on our website and have it default to our own country ? +1 for change default location to user curre...
by scampbell
Thu Aug 10, 2017 8:20 am
Forum: Wireless Networking
Topic: Capsman + ccr1009 + wAP ac
Replies: 1
Views: 658

Re: Capsman + ccr1009 + wAP ac

You need two unique datapaths configured in capsman, one for each SSID. On the CAPsMAN Controller create two bridges, apply unique IP and DHCP combo on each bridge. Then create two datapaths, one for each bridge. Specify which datapath to use with which ssid (done in CAPsMAN Configuration) CAPsMAN w...
by scampbell
Thu Aug 10, 2017 8:11 am
Forum: Wireless Networking
Topic: Bonding Wireless
Replies: 18
Views: 8176

Re: Bonding Wireless

If you are testing SXT's in one room I would recommend reducing Tx Power on all radios so they perform better. Default Tx power in one room gives terrible results. Make sure you choose different non-conflicting channels for each radio pair, use scan or frequency usage to choose the best two channels...
by scampbell
Thu Aug 10, 2017 4:30 am
Forum: Announcements
Topic: Wireless link calculator updated
Replies: 67
Views: 31522

Re: Wireless link calculator updated

Start point - Well I guess I now live in Wellington - where ever that is or what country it is in.
Out of missile range we hope :-)
by scampbell
Thu Aug 10, 2017 4:22 am
Forum: Announcements
Topic: Wireless link calculator updated
Replies: 67
Views: 31522

Re: Wireless link calculator updated

Currently the map appears to start in Riga (not sure why ?? hehe ) but it would be nice to have it default to the users default location ? Or allow passing start point via URL so we could add a link on our website and have it default to our own country ? UPDATE: It actually does this now e.g: https...
by scampbell
Thu Aug 10, 2017 4:19 am
Forum: Announcements
Topic: Wireless link calculator updated
Replies: 67
Views: 31522

Re: Wireless link calculator updated

Currently the map appears to start in Riga (not sure why ?? hehe ) but it would be nice to have it default to the users default location ? Or allow passing start point via URL so we could add a link on our website and have it default to our own country ?
by scampbell
Mon Aug 07, 2017 12:39 am
Forum: Announcements
Topic: Wireless link calculator updated
Replies: 67
Views: 31522

Re: Wireless link calculator updated

Nice work. Thank you
by scampbell
Mon Jun 26, 2017 9:42 pm
Forum: Announcements
Topic: v6.40rc [release candidate] is released!
Replies: 231
Views: 45768

Re: v6.40rc [release candidate] is released!

NV2 Sync appears to be working ok on my trial site, but... While you can only configure it with CLI to work, if you change anything else in Winbox relating to Wireless it loses the CLI configured NV2 settings on close. Can we get this fixed ASAP please ? Also /interface wireless monitor 0 shows the ...
by scampbell
Thu May 18, 2017 1:49 am
Forum: Wireless Networking
Topic: cAP mode button changes poll
Replies: 17
Views: 4133

Re: cAP mode button changes poll

Sorry - I thought they were proposing including WLAN in the bridge ? 2) proposed change: put the management ether1 port also into the same bridge with wireless and rest of the ethernet interfaces and place the dhcp-client on the bridge interface. Agree the rest of what I want is the same as the prop...
by scampbell
Thu May 18, 2017 1:24 am
Forum: Wireless Networking
Topic: cAP mode button changes poll
Replies: 17
Views: 4133

Re: cAP mode button changes poll

My preferred config would be : 1. ether1 in BridgeLocal only (no WLAN - leave that for Capsman Datapath to sort) 2. Cap enable, Bridge=BridgeLocal, Discovery Interface=BridgeLocal 3. DHCP-Client on BridgeLocal And my biggest wish - this be the Factory Default for all wAP and cAP products. Have E1 fi...
by scampbell
Thu May 11, 2017 1:33 am
Forum: General
Topic: Bypass Radius
Replies: 4
Views: 793

Re: Bypass Radius

If the first radius returns it will revert back to responding first.

See viewtopic.php?t=85474
by scampbell
Thu May 11, 2017 1:28 am
Forum: The Dude
Topic: Adding Winbox Tool
Replies: 26
Views: 14081

Re: Adding Winbox Tool

I found one site (W10 Desktop) required additional parentheses (as below) - not sure why but it sorted a file not found error. 8) Windows ???? :lol:

"%HOMEPATH%\Desktop\winbox.exe" [Device.FirstAddress] "[Device.UserName]" "[Device.Password]"
by scampbell
Tue Apr 11, 2017 1:19 pm
Forum: General
Topic: routerOs 6.38.5 - pcie modem - step to send receive sms
Replies: 8
Views: 1527

Re: routerOs 6.38.5 - pcie modem - step to send receive sms

There is a setting under system ports to disable firmware. I tried this followed by a reboot but no joy on lte devices.....


Sent from my iPhone using Tapatalk
by scampbell
Tue Apr 11, 2017 1:18 pm
Forum: General
Topic: routerOs 6.38.5 - pcie modem - step to send receive sms
Replies: 8
Views: 1527

Re: routerOs 6.38.5 - pcie modem - step to send receive sms

I tried this today and no lte device could send Sms but 3G devices that show as ppp could send or receive Sms provided the ppp interface was disabled. I think it is a limitation of LTE ? I even tried an sxt lte from
Mikrotik [emoji3]


Sent from my iPhone using Tapatalk
by scampbell
Tue Apr 11, 2017 1:11 pm
Forum: General
Topic: Forwarding packets on input chain
Replies: 6
Views: 996

Re: Forwarding packets on input chain

Mangle can work in prerouting, input, forward, output or postrouting chains.....


Sent from my iPhone using Tapatalk
by scampbell
Tue Apr 11, 2017 1:10 pm
Forum: General
Topic: Bypass Radius
Replies: 4
Views: 793

Re: Bypass Radius

Mikrotik will check ppp secret then radius. So you can either duplicate your accounts and activate them using net watch or set up a backup radius server


Sent from my iPhone using Tapatalk
by scampbell
Tue Apr 11, 2017 11:33 am
Forum: Beginner Basics
Topic: Winbox connect to MAC
Replies: 14
Views: 5425

Re: Winbox connect to MAC

Check no av, firewall or virtual box on pc. Also try a fixed IP address....


Sent from my iPhone using Tapatalk
by scampbell
Tue Apr 11, 2017 11:20 am
Forum: Beginner Basics
Topic: Winbox connect to MAC
Replies: 14
Views: 5425

Re: Winbox connect to MAC

Try accessing via another router using ip neighbour and then right-click to open with Mac-telnet


Sent from my iPhone using Tapatalk
by scampbell
Tue Apr 11, 2017 11:18 am
Forum: General
Topic: /ip route with named gateway doesn't work
Replies: 6
Views: 1046

Re: /ip route with named gateway doesn't work

Named interfaces only work on interfaces point to point (ppp) addresses otherwise there are too many possible valid hosts to know which one is the next hop.


Sent from my iPhone using Tapatalk
by scampbell
Wed Apr 05, 2017 9:09 pm
Forum: Beginner Basics
Topic: Pass Through Port in (RB951Ui-2Hnd)
Replies: 2
Views: 567

Re: Pass Through Port in (RB951Ui-2Hnd)

Also note the PoE out port is Passive 24v PoE not 802.3af/at PoE (48V). What standard does your device use ?
by scampbell
Wed Apr 05, 2017 9:42 am
Forum: Beginner Basics
Topic: routing problem
Replies: 8
Views: 792

Re: routing problem

The example was so Winbox could be accessed via either WAN. Note also a Remote VPN can connect via either WAN (subject to firewall rules) and then any VPN traffic will automatically flow over the correct WAN. If you are doing a site to site VPN that's another issue that will require routes or IPSEC....
by scampbell
Wed Apr 05, 2017 12:32 am
Forum: Beginner Basics
Topic: routing problem
Replies: 8
Views: 792

Re: routing problem

Hi Farshad, If you use connection-marks to identify traffic FROM a specific WAN t0 allow the response to then return through the correct WAN then passthrough=yes is required. So for just Winbox and VPN you would say: /ip mangle /ip firewall mangle add action=mark-connection chain=input comment=In-Ne...
by scampbell
Wed Apr 05, 2017 12:16 am
Forum: General
Topic: dynDNS SCRIPT THAT WORKS
Replies: 13
Views: 20948

Re: dynDNS SCRIPT THAT WORKS

Could you have a solution for multi WAN enviromment? Can I choose what WAN interface would be bind to that service? IP Cloud will use the WAN with the smallest distance by default. If you want to specifically use a different WAN then you would need to use a Mangle Rule on the Output Chain to captur...
by scampbell
Mon Apr 03, 2017 10:46 pm
Forum: Beginner Basics
Topic: routing problem
Replies: 8
Views: 792

Re: routing problem

Please post an export e.g "/ip firewall export" and paste the results in here.

Here is an excellent article on how to set up dual wan that may also assist :-) https://aacable.wordpress.com/2013/12/0 ... oe-server/
by scampbell
Wed Mar 22, 2017 4:33 am
Forum: Announcements
Topic: v6.37.5 [bugfix] is released!
Replies: 35
Views: 13372

Re: v6.37.5 [bugfix] is released!

I think that this version has problems with: - Winbox session can't be established - The Dude has massive Datastore usage - There is no way to upload file in "The Dude -> Files" Copying files across via Winbox drag 'n drop seems to work ok. I recall reading that is the way forward now. No more drag...
by scampbell
Fri Feb 10, 2017 10:36 pm
Forum: General
Topic: Poor Bandwidth over RouterBoard WLAN
Replies: 2
Views: 507

Re: Poor Bandwidth over RouterBoard WLAN

Try setting channel to 20MHz Ceee and protocol=802.11. Also check no other wireless devices are using 5180 Ceee.

Ensure your wireless security profile does not use TKIP. Just AES is best and wpa2-psk only.


Sent from my iPhone using Tapatalk
by scampbell
Fri Feb 10, 2017 10:31 pm
Forum: Beginner Basics
Topic: EOIP over IPSEC TWO RB750
Replies: 21
Views: 12609

Re: EOIP over IPSEC TWO RB750

If you are sure firewall is not stopping any packets then enable IPSec in the logs and see what is happening.


Sent from my iPhone using Tapatalk
by scampbell
Fri Feb 10, 2017 10:28 pm
Forum: Beginner Basics
Topic: EOIP over IPSEC TWO RB750
Replies: 21
Views: 12609

Re: EOIP over IPSEC TWO RB750

If you enable IPSec you also need to allow Protocol 50 and UDP 500 & 4500 in the Input chain on both routers. Hope this helps.


Sent from my iPhone using Tapatalk
by scampbell
Wed Jan 04, 2017 9:22 pm
Forum: General
Topic: Feature request: CAPsManager - roaming
Replies: 79
Views: 23181

Re: Feature request: CAPsManager - roaming

I understand this topic is roaming, but I also get asked a lot about band steering on Capsman ? This would also be a nice feature to have ?


Sent from my iPhone using Tapatalk
by scampbell
Wed Jan 04, 2017 9:07 pm
Forum: General
Topic: ARM has no user-manager ?
Replies: 9
Views: 2929

Re: ARM has no user-manager ?

http://wiki.mikrotik.com/wiki/User_Manager/Introduction#What_is_User_Manager "The MikroTik User Manager works on x86, MIPS, PowerPC and TILE processor based routers and CHR devices" UM is not supported on ARM, MMIPS and SMIPS currently. Is there a timeframe please ? The RB3011 or RB750GR3 would be ...
by scampbell
Tue Dec 20, 2016 10:19 pm
Forum: General
Topic: Problem with Simple Queue Graphs
Replies: 4
Views: 696

Re: Problem with Simple Queue Graphs

please check the out put of "/queue simple export" ?
by scampbell
Mon Dec 19, 2016 9:13 pm
Forum: Beginner Basics
Topic: IP Route not working
Replies: 3
Views: 613

Re: IP Route not working

Please check your cisco will actually reply to an ICMP Ping ? Also check if the interface the IP address 22.22.22.1/24 is attached to is active. If not then the IP may also not be active. What about pinging 22.22.22.2 ? does this work ? What about traceroute ? The cisco is physically attached to bot...
by scampbell
Wed Nov 09, 2016 12:26 am
Forum: General
Topic: Efficient Wireless Bridging
Replies: 7
Views: 936

Re: Efficient Wireless Bridging

Here is a presntation from one of the MUM's - check out page 11 onwards -it describes most of the limitations and benefits of the different methods :D

http://mum.mikrotik.com/presentations/P ... 012-PL.pdf
by scampbell
Wed Nov 09, 2016 12:19 am
Forum: Beginner Basics
Topic: FW rule to block port 22, but still can ssh in
Replies: 11
Views: 2951

Re: FW rule to block port 22, but still can ssh in

The current rule set works. You are correct it works - but I would still recommend removing that section of the rule as it is not required WithTcpFlag.PNG It is common when rules have been checked in Winbox and options opened but not actually filled in for entries like that to get left behind as or...
by scampbell
Tue Nov 08, 2016 8:21 pm
Forum: General
Topic: Efficient Wireless Bridging
Replies: 7
Views: 936

Re: Efficient Wireless Bridging

You cannot bridge mode-station. You can't, but you can bridge an EoIP tunnel layered over it. You can, true, but it is not as efficient as a simple bridge. If you really wanted to layer a tunnel over that type of link vpls offers a 60% faster solution than eoip and full unfragmented Mtu of 1500 or ...
by scampbell
Tue Nov 08, 2016 11:30 am
Forum: General
Topic: CAPsMAN info needed
Replies: 5
Views: 644

Re: CAPsMAN info needed

DHCP is a layer2 function so connect clients to specific client interface/vlan with a suitable DHCP-server and pool.


Sent from my iPhone using Tapatalk
by scampbell
Tue Nov 08, 2016 11:30 am
Forum: General
Topic: CAPsMAN info needed
Replies: 5
Views: 644

Re: CAPsMAN info needed

DHCP is a layer2 function so connect clients to specific client interface/vlan with a suitable DHCP-server and pool.


Sent from my iPhone using Tapatalk
by scampbell
Tue Nov 08, 2016 11:15 am
Forum: General
Topic: Problem with Simple Queue Graphs
Replies: 4
Views: 696

Re: Problem with Simple Queue Graphs

Check /ip services http is still enabled on port 80 ? Also firewall for http traffic ?

Perhaps Somone has disabled these ?


Sent from my iPhone using Tapatalk
by scampbell
Tue Nov 08, 2016 11:11 am
Forum: RouterBOARD hardware
Topic: wAP AC (General questions and experience)
Replies: 118
Views: 44358

wAP AC (General questions and experience)

Thanks for your feedback, that is really appreciated. The area I need to cover is a harbour of about 120 x 260 meters. In the harbour their are a lot of boats (obviously) with masts (sailboats) as wel as metal boats. The requirement is that there is good WIFI reception inside the boat. Cabling is n...
by scampbell
Tue Nov 08, 2016 11:05 am
Forum: General
Topic: Poweboxes !
Replies: 6
Views: 866

Re: Poweboxes !

Sounds like the switch chip is still working but routeros has hung. I'd suggest sending a supout to Mikrotik.......


Sent from my iPhone using Tapatalk
by scampbell
Tue Nov 08, 2016 11:00 am
Forum: General
Topic: Efficient Wireless Bridging
Replies: 7
Views: 936

Re: Efficient Wireless Bridging

Station-wds is not optimal in an 802.11n environment as it does not work well with packet aggregation ampdu etc which gives the higher speeds


Sent from my iPhone using Tapatalk
by scampbell
Tue Nov 08, 2016 10:58 am
Forum: General
Topic: Efficient Wireless Bridging
Replies: 7
Views: 936

Re: Efficient Wireless Bridging

You cannot bridge mode-station. If mikrotik to mikrotik wireless use mode=station-bridge to connect to mode=bridge or mode=Ap/bridge



Sent from my iPhone using Tapatalk
by scampbell
Tue Nov 08, 2016 10:56 am
Forum: Beginner Basics
Topic: FW rule to block port 22, but still can ssh in
Replies: 11
Views: 2951

Re: FW rule to block port 22, but still can ssh in

Your default input drop rule has a setting of tcp-flags=""

This is probably the problem. Remove any reference to tcp-flags and it should then catch anything not specifically allowed before that.


Sent from my iPhone using Tapatalk
by scampbell
Mon Nov 07, 2016 9:49 am
Forum: Beginner Basics
Topic: FW rule to block port 22, but still can ssh in
Replies: 11
Views: 2951

Re: FW rule to block port 22, but still can ssh in

I would enable rules 3 and 8. These will block all internet access to your router and protect your LAN.

Do check that e1 is your wan interface as it may not be if you run pppoe or a vlan to get to the internet.


Sent from my iPhone using Tapatalk
by scampbell
Sun Oct 30, 2016 7:52 pm
Forum: Beginner Basics
Topic: Problem with load balans RB433AH
Replies: 2
Views: 393

Re: Problem with load balans RB433AH

If you want the system to fail over should one or the other WAN stop then you need to add a backup route for each WAN (being the other WAN and a higher distance. You have done this for the main routing table but not for the to_WAN1 or to_WAN2 tables. #Main Routes add check-gateway=ping comment=Telne...
by scampbell
Fri Sep 30, 2016 6:59 am
Forum: Announcements
Topic: v6.37 [current] is released!
Replies: 197
Views: 34859

Re: v6.37 [current] is released!

I just had a really strange problem with the upgrade from 6.36 to 6.37 When I did the upgrade (using the Mikrotik check-for-upgrade via winbox), the Mikrotik (RB435G) did the upgrade to 6.37 however in Winbox, there was no Wireless section In packages there were two wireless packages, one was 6.37 ...
by scampbell
Fri Sep 30, 2016 6:57 am
Forum: Announcements
Topic: v6.37 [current] is released!
Replies: 197
Views: 34859

Re: v6.37 [current] is released!

I just had a really strange problem with the upgrade from 6.36 to 6.37 When I did the upgrade (using the Mikrotik check-for-upgrade via winbox), the Mikrotik (RB435G) did the upgrade to 6.37 however in Winbox, there was no Wireless section In packages there were two wireless packages, one was 6.37 ...
by scampbell
Thu Sep 29, 2016 4:26 am
Forum: Announcements
Topic: v6.37 [current] is released!
Replies: 197
Views: 34859

Re: v6.37 [current] is released!

I can also confirm the wireless upgrade problem when upgrading to 6.37. In this case going from 6.24 using wireless-fp, the upgrade went through but afterward I had wireless 6.37, wireless 6.24 and wireless-fp 6.24 all present and disabled. Uninistalling via CLI did not remove them. Downgrading to B...
by scampbell
Wed Sep 28, 2016 3:41 am
Forum: Announcements
Topic: v6.37 [current] is released!
Replies: 197
Views: 34859

Re: v6.37 [current] is released!

Hello Folks! We have been running an wireless enterprise environment for many years, we had to fully stop the update of all our devices since it has been announced that DFS mode has been put on based on which country you set. But how can I see if DFS is activated on my devices which I tested to upg...
by scampbell
Sat Sep 24, 2016 5:57 am
Forum: Beginner Basics
Topic: Multiple EoIP tunnels or VLANs
Replies: 2
Views: 940

Re: Multiple EoIP tunnels or VLANs

Beware of mtu's though. if you push multiple vlans through an eoip tunnel you decrease the mtu as the vlan headers take up 8 bytes.


Sent from my iPhone using Tapatalk
by scampbell
Sat Sep 24, 2016 5:54 am
Forum: General
Topic: Reset HAP AC doesn't seem to work
Replies: 2
Views: 1740

Re: Reset HAP AC doesn't seem to work

There is a Winbox packaged up for Mac on this forum which works nicely :-)

Makes sure initial connection is not via ether1 as this is fire walled by default.


Sent from my iPhone using Tapatalk
by scampbell
Sat Sep 24, 2016 5:52 am
Forum: Beginner Basics
Topic: PPTP stopped working
Replies: 6
Views: 2294

Re: PPTP stopped working

Enable PPTP logging in /system logging add topic=PPTP and see if that gives better information. Also make sure your input firewall rules are allowing PPTP or setup etc. ensure no dst-nat rule is redirecting the traffic too [emoji12] Allow tcp 1723 and gre in the input chain. MikroTik PPTP is pretty ...
by scampbell
Wed Sep 21, 2016 4:56 am
Forum: General
Topic: Web proxy redirect rules
Replies: 2
Views: 1167

Re: Web proxy redirect rules

MikroTik web proxy does not support 443


Sent from my iPhone using Tapatalk
by scampbell
Fri Sep 02, 2016 6:51 am
Forum: Forwarding Protocols
Topic: OSPF default route
Replies: 4
Views: 1795

Re: OSPF default route

Well I found the problem it was related to a third party firewall in the network which was causing some issues and its now resolved. Apparently it was blocking all traffic to Port 89, as soon as I had put an exception everything started working normally
That'll do it :lol:
by scampbell
Fri Sep 02, 2016 6:49 am
Forum: Wireless Networking
Topic: How to disable WPS button in RB951Ui-2nD with rOS 6.32.4?
Replies: 9
Views: 5378

Re: How to disable WPS button in RB951Ui-2nD with rOS 6.32.4?

enable wireless-cm2 and reboot - WPS should be back. :-)
by scampbell
Fri Sep 02, 2016 6:45 am
Forum: The Dude
Topic: The Dude, v6.37rc test builds.
Replies: 92
Views: 17770

Re: The Dude, v6.37rc test builds.

Would this include access to /tool sms and /tool e-mail for example ?? :-) Pretty much that. However email tool is already accessible for use with notifications. http://wiki.mikrotik.com/images/f/fc/Dude-email-notif.PNG Haha - of course e-mail is there - sorry. How long until we may see access to t...
by scampbell
Tue Aug 23, 2016 9:52 pm
Forum: RouterBOARD hardware
Topic: Q2 2016 But still no Gigabit PoE Routerboard...
Replies: 53
Views: 8755

Re: Q2 2016 But still no Gigabit PoE Routerboard...

Yup,

we also have lots of inquirys about 24port poe switch...
+1 !!
by scampbell
Tue Aug 23, 2016 9:50 pm
Forum: The Dude
Topic: The Dude, v6.37rc test builds.
Replies: 92
Views: 17770

Re: The Dude, v6.37rc test builds.

@dimsoft

That is not possible at the moment. However we do intend to add some access to server host ROS side for better notification options.
Would this include access to /tool sms and /tool e-mail for example ?? :-)
by scampbell
Fri Aug 05, 2016 2:17 am
Forum: General
Topic: how to make the unit reboot in script?
Replies: 3
Views: 1791

Re: how to make the unit reboot in script?

I concur with BlackVS.

We often create a scheduler to reboot router at midnight with just "/system reboot" as the only command - it works well and is only "interactive" when run from a console.
by scampbell
Mon Jul 25, 2016 3:59 am
Forum: General
Topic: Windows 10 and netinstall
Replies: 19
Views: 15577

Re: Windows 10 and netinstall

False alarm. I have installed new Win10, and now everything working great. The question is what peace of software killed netinstall last time. I will do step by step app install... This is going to sound stupid... but have you tried changing its name? No joke! After installing Windows 10, I had the...
by scampbell
Mon Jun 20, 2016 11:42 pm
Forum: General
Topic: SXT AC best settings
Replies: 82
Views: 49926

Re: SXT AC best settings

/interface wireless set [ find default-name=wlan1 ] band=5ghz-a/n Perhaps setting wireless mode to 5GHz-onlyac or 5ghz-a/n/ac might also help (on both ends) ? My bench testing with registration signal of -50dB is giving 450-500 Mbps UDP - but only 120Mbps TCP on 802.11 80Mhz Ceee WPA2-PSK I'll be t...
by scampbell
Fri May 27, 2016 8:13 am
Forum: RouterBOARD hardware
Topic: wAP AC (General questions and experience)
Replies: 118
Views: 44358

Re: wAP AC (General questions and experience)

deleted - off topic
by scampbell
Thu May 26, 2016 9:38 am
Forum: RouterBOARD hardware
Topic: wAP AC (General questions and experience)
Replies: 118
Views: 44358

Re: wAP AC (General questions and experience)

Mikrotik. I have to say, this is one of the nicest pieces of hardware you have designed. My only real feedback is that a LED visible from the outside would be welcome. This way we can see at a glance if the unit is operational. We use the LED all the time on our Motorola, AeroHive and Ubiquity AP's...
by scampbell
Sun May 15, 2016 6:16 am
Forum: Wireless Networking
Topic: How to disable WPS button in RB951Ui-2nD with rOS 6.32.4?
Replies: 9
Views: 5378

Re: How to disable WPS button in RB951Ui-2nD with rOS 6.32.4?

Also try /system package print

You may be using wireless-fp which does not support WPS anyway :-)
by scampbell
Thu May 05, 2016 11:02 pm
Forum: RouterBOARD hardware
Topic: CRS226 SFP LINK PROBLEMS WITH RB260GSP
Replies: 1
Views: 741

Re: CRS226 SFP LINK PROBLEMS WITH RB260GSP

Did you get anywhere with this ?

I just tried to link a CRS226 via SFP1 and S-RJ45 to ether25 on a CRS125 and no traffic would pass.

Going to look into this further and will see what I find :-)
by scampbell
Thu May 05, 2016 8:33 am
Forum: Wireless Networking
Topic: wAP WOES
Replies: 9
Views: 1369

Re: wAP WOES

This installation is for a hotel, therefore I dont think that enabling local forwarding would make any sense
We use these in hotels with local forwarding. If you use managed switches then it shouldn't be an issue and you can use VLAN's if necessary for isolation.
by scampbell
Thu May 05, 2016 12:45 am
Forum: Wireless Networking
Topic: wAP WOES
Replies: 9
Views: 1369

Re: wAP WOES

Local forwarding has been disabled in the CAPsMAN settings, for all APs All RB912 on the same network are configured with a bridge containing both ether1 and wlan1, and they are functionning quite nicely; it is only the wAPs that seem to have a problem with this setup Lastly, I don't see the purpos...
by scampbell
Wed May 04, 2016 12:52 pm
Forum: General
Topic: blocking dhcp over eoip tunnel, but allow local dhcp
Replies: 10
Views: 1862

blocking dhcp over eoip tunnel, but allow local dhcp

Input is to the router and output is from the router. If you want to stop dhcp from
Goin through the bridge the forward chain would be where I place those rules on the bridge filter


Sent from my iPhone using Tapatalk
by scampbell
Wed May 04, 2016 7:43 am
Forum: Wireless Networking
Topic: Mikrotik Outdoor Wireless Network signal test
Replies: 2
Views: 983

Re: Mikrotik Outdoor Wireless Network signal test

Tx/Rx Signal Strength: When aligning the endpoints you want this as high as possible ( -40 to -65 dBm say) Tx/Rx CCQ: This shows how many packets get through , so 50% means half are getting dropped. Good TX/RX Signal and poor CCQ is a sign of interference - try a different channel Signal To Noise: T...
by scampbell
Wed May 04, 2016 7:35 am
Forum: Wireless Networking
Topic: Non-Overlapping Channels?
Replies: 1
Views: 928

Re: Non-Overlapping Channels?

Google is your friend - https://en.wikipedia.org/wiki/List_of_WLAN_channels :D Ce or Ceee mean centre channel plus next channel (or channels). So 2412 Ce would be 2412 + 2432 - note on 2.4GHz we recommedn only 1 (2412), 6 (2437) & 11 (2462) with 20Mhz Channel widths to avoid overlapping coverage in ...
by scampbell
Wed May 04, 2016 7:20 am
Forum: Wireless Networking
Topic: wAP WOES
Replies: 9
Views: 1369

Re: wAP WOES

Thanks for your response Uldis On the wAPs the bridge systematically ends up using wlan1's MAC address. I did try to set the bridge's admin MAC address but as with the wireless' MAC address, the interface isn't reachable via layer 3. I don't understand why it works at the moment, that is, by not ad...
by scampbell
Wed May 04, 2016 7:16 am
Forum: RouterBOARD hardware
Topic: wAP AC (General questions and experience)
Replies: 118
Views: 44358

Re: wAP AC (General questions and experience)

It would be good if wireless-rep became the default and they deprecated all the other wireless packages :) Mikrotik confirmed to me last night wireless-cm2 would be the default on the next batch which is something. No doubt wireless-rep will become the only package at some point but hopefully they ...
by scampbell
Wed May 04, 2016 6:58 am
Forum: RouterBOARD hardware
Topic: wAP AC (General questions and experience)
Replies: 118
Views: 44358

Re: wAP AC (General questions and experience)

When they arrive they have the default config with firewall on ethernet and open wireless. So if you want to manage them you need to connect to the wifi, or reset them into CAP mode. To reset into CAP mode, power them up whilst holding the reset button in. The wireless lan lights will flash, and af...
by scampbell
Fri Apr 15, 2016 3:42 am
Forum: Announcements
Topic: v6.35rc [release candidate] is released, new wireless package!
Replies: 537
Views: 105660

Re: v6.35rc [release candidate] is released, new wireless package!

Is it possible to add more information about connected user to CAPSMAN view with wireless-rep package? e.g. user name being used, auto-translation of vendor part of MAC (well it´s a gimmick) http://fs5.directupload.net/images/160414/nfdarvre.png If your were to create access lists based on the OUI ...
by scampbell
Thu Apr 14, 2016 8:13 am
Forum: General
Topic: vlan with dhcp server
Replies: 7
Views: 1118

Re: vlan with dhcp server

Show your config for ether5 and the VLAN. my config on ether5 and vlan is exactly like my 1st post. Interface vlan40 add to ether5 and i created dhcp server for vlan40. Unless your PC is using inserting Vlan Tags it will be looking for DHCP on ether5. Use the Torch function with all options enabled...
by scampbell
Tue Apr 12, 2016 8:22 am
Forum: Forwarding Protocols
Topic: OSPF default route
Replies: 4
Views: 1795

Re: OSPF default route

Assuming this router is running OSPF it is strange there are no known OSPF routes at all in the routing table ? They should show with a flag of "o" ?

Perhaps "/route ospf export" and "/ip add pr" from the router with the default route and the one wishing to receive it please. :-)
by scampbell
Tue Apr 12, 2016 8:15 am
Forum: Forwarding Protocols
Topic: can pptp server accept multiple client from same public ip ???
Replies: 2
Views: 1543

Re: can pptp server accept multiple client from same public ip ???

If you mean can you receive and process a PPTP connection request from multiple clients masqueraded behind one remote public IP then yes that should work as each connection will have a unique src-port. For example 10 of your staff are staying in a hotel and all want to connect back to the office via...
by scampbell
Tue Apr 12, 2016 6:23 am
Forum: Announcements
Topic: v6.35rc [release candidate] is released, new wireless package!
Replies: 537
Views: 105660

Re: v6.35rc [release candidate] is released, new wireless package!

Did someone try to this new feature? >> wireless background scan I wanted to script a background scan for known Wifi-APs and if found, connect to it automatically. The Microtik is in a car, and I know several Wifi along the road (while stopping the car!). The Idea was: Scan for known ssid's (or MAC...
by scampbell
Mon Apr 11, 2016 7:30 am
Forum: Beginner Basics
Topic: hAP ac slow Ethernet Internet performance
Replies: 20
Views: 8140

Re: hAP ac slow Ethernet Internet performance

It is sometimes worth disabling RSTP on the bridge as well...... for whatever reason I have noticed RSTP sometimes incorrectly disables ethernet ports on the newer versions of RoS. I've not been able to "pin" this down but by disabling it when I am getting ethernet issues the performance has been be...
by scampbell
Thu Mar 17, 2016 9:59 pm
Forum: General
Topic: DHCP Relay VLANs on RB751U-2HnD
Replies: 11
Views: 2747

Re: DHCP Relay VLANs on RB751U-2HnD

Hi SSI, I would suggest following this example http://wiki.mikrotik.com/wiki/Manual:IP/DHCP_Relay#Example_setup Also check your HP Switches support L2MTU 1594 ? From what I can see your example is pretty much like the above except that you are using an MS server as primary DHCP. Here is my interprea...
by scampbell
Tue Mar 15, 2016 12:23 am
Forum: General
Topic: Slow speeds from CRS125
Replies: 57
Views: 4263

Re: Slow speeds from CRS125

Thanks for the help! Here are the results for mturoute: http://imgur.com/8Iqq4ar.jpg And here is the mtupath results: http://imgur.com/jjnmK64.jpg I would check the MTU and MSS of your WAN too - just to be sure...... 1. download MTUPATH.EXE ( http://www.iea-software.com/products/mtupath.cfm ) and s...
by scampbell
Mon Mar 14, 2016 11:23 pm
Forum: General
Topic: Slow speeds from CRS125
Replies: 57
Views: 4263

Re: Slow speeds from CRS125

I would check the MTU and MSS of your WAN too - just to be sure...... 1. download MTUPATH.EXE ( http://www.iea-software.com/products/mtupath.cfm ) and see what the results for MSS are; 2. download MTUROUTE.EXE (http://www.elifulkerson.com/projects/mturoute.php ) and see what it finds It may be a VLA...
by scampbell
Mon Mar 14, 2016 11:05 pm
Forum: Announcements
Topic: Winbox3.3 released!
Replies: 37
Views: 9494

Re: Winbox3.3 released!

Quick work !! :-)

Windows Smartscreen does not like it though - reports it as an unrecognised app from an unknown publisher on Windows10. You have to force Windows to run anyway.....
by scampbell
Fri Mar 11, 2016 4:39 am
Forum: General
Topic: Slow speeds from CRS125
Replies: 57
Views: 4263

Re: Slow speeds from CRS125

Try disabling any simple queues and changing the WAN port interface queue type as per http://forum.mikrotik.com/viewtopic.php?t=103542
by scampbell
Fri Mar 11, 2016 4:34 am
Forum: Announcements
Topic: Winbox3.2 released!
Replies: 59
Views: 11549

Re: Winbox3.2 released!

AVG again !!! Grrr. Why does this keep happening I wonder ? Perhaps AVG have some shares in another vendor starting with U :-)
by scampbell
Tue Mar 08, 2016 2:15 am
Forum: Forwarding Protocols
Topic: Redirect port 80 for external web administration
Replies: 2
Views: 3380

Re: Redirect port 80 for external web administration

For port 80 traffic from anywhere /ip firewall add action=dst-nat chain=dstnat comment="Web Server" disabled=no dst-port=80 protocol=tcp in-interface=ether1-gateway to-addresses=192.168.1.50 For remote router access via external Port 9000 /ip firewall add action=redirect chain=dstnat comment="Web Se...
by scampbell
Tue Mar 08, 2016 2:08 am
Forum: Forwarding Protocols
Topic: MPLS vpls tunnel - MTU problem - wifi i think
Replies: 3
Views: 1140

Re: MPLS vpls tunnel - MTU problem - wifi i think

It looks like something is stealing 4 bytes :-) Your client bridge shows only 1496 actual bytes so I suspect an interface involved in the bridging is dragging it down. Try removong wlan1 from the client bridge (assuming you have local access of course) and see if the bridge actual-MTU increases. Per...
by scampbell
Tue Mar 08, 2016 2:01 am
Forum: Announcements
Topic: v6.35rc [release candidate] is released, new wireless package!
Replies: 537
Views: 105660

Re: v6.35rc [release candidate] is released, new wireless package!

6.35rc19 has been released! *) winbox - added /interface wireless setup-repeater; Nice feature !! When you use this setup repeater button it currently creates a new bridge (called bridge1) and adds WLAN1 plus the new Virtual WLAN into it. Perhaps this could be modified to ask for a bridge to use (i...
by scampbell
Mon Feb 29, 2016 8:06 am
Forum: Wireless Networking
Topic: 100mbps TCP Full duplex link using 4 dish ( NV2 )
Replies: 9
Views: 2681

Re: 100mbps TCP Full duplex link using 4 dish ( NV2 )

Hi , it's a 3 years posts but i'm going to answer it !! it's not so easy , but you can do it with OSPF routing protocol !! that's all if you are not friend;t with OSPF , use static routing , but in this case you will loose redundancy , with OSPF you could have full duplex and redundancy in case of ...
by scampbell
Fri Feb 19, 2016 5:28 am
Forum: Beginner Basics
Topic: Passing all traffic on to proxy server
Replies: 4
Views: 4592

Re: Passing all traffic on to proxy server

/ip firewall nat add chain=dstnat action=dst-nat to-address=proxyIP to-ports=8080 protocol=TCP, dst-port=80,443 in-interface=bridge-lan This will redirect any HTTP and HTTPS to your proxy on port 8080. Doesn't transparent proxy give certificate issues with SSL? I am on a network that requires the u...
by scampbell
Fri Feb 19, 2016 4:10 am
Forum: General
Topic: Some websites not loading on 2 routers
Replies: 6
Views: 1398

Re: Some websites not loading on 2 routers

I've seen that before :-) When an EOIP tunnel is added to the bridge the bridge MTU automatically drops to equal the smallest MTU of the interface in it.. There is a setting on the bridge to "not" automatically adjust MTU but this can lead to fragmentation. Soemtimes the best solution for an office ...
by scampbell
Fri Feb 19, 2016 12:50 am
Forum: General
Topic: Some websites not loading on 2 routers
Replies: 6
Views: 1398

Re: Some websites not loading on 2 routers

If you are connecting via PPPoE ensure your profile is set to allow MSS Clamping. The quick way to check if this is active is to see if there are two Dynamic Forward Mangles rules. If not then it's not running. Here is a link to another forum post on the subject - http://forum.mikrotik.com/viewtopic...
by scampbell
Fri Feb 19, 2016 12:46 am
Forum: Beginner Basics
Topic: EOIP over IPSEC TWO RB750
Replies: 21
Views: 12609

Re: EOIP over IPSEC TWO RB750

FASTTRACK!!!! Disable it and packets pass. Web Pages load. Grrrrr. Spent all day messing with this. I have not gone back to EOIP yet. Just standard IPSec config and its working. Finally. Some progress then :-) Yeah, Fasttrack breaks all kinds of things as the packets bypass the routing engine as su...
by scampbell
Thu Feb 18, 2016 9:29 pm
Forum: General
Topic: dynDNS SCRIPT THAT WORKS
Replies: 13
Views: 20948

Re: dynDNS SCRIPT THAT WORKS

For simple DDNS requirements there is the built in DDNS under /ip cloud ? It's free and it works :-)

It's url is serial_numer.sn.mynetname.net
by scampbell
Thu Feb 18, 2016 9:21 pm
Forum: General
Topic: IP Routes gateway becomes unreachable after PPTP connection restarts
Replies: 7
Views: 2308

Re: IP Routes gateway becomes unreachable after PPTP connection restarts

I have 4 LAN's that I need to access on the other end, as you can see in my previous post. How can I add the 4 LAN's in the route field?
You can add multiple routes in the secret :-

/ppp secret
add name=changeme password=changeme routes=192.168.1.0/24,192.168.7.0/24,192.168.5.0/24,........
by scampbell
Thu Feb 18, 2016 9:15 pm
Forum: Beginner Basics
Topic: Passing all traffic on to proxy server
Replies: 4
Views: 4592

Re: Passing all traffic on to proxy server

You need to create a dstnat rule with

/ip firewall nat
add chain=dstnat action=dst-nat to-address=proxyIP to-ports=8080 protocol=TCP, dst-port=80,443 in-interface=bridge-lan

This will redirect any HTTP and HTTPS to your proxy on port 8080.

Change settings to suit your proxy :-)
by scampbell
Thu Feb 18, 2016 9:09 pm
Forum: Beginner Basics
Topic: How to detect when default gateway changes?
Replies: 3
Views: 629

Re: How to detect when default gateway changes?

Hi Geeko, If you are behind NAT'ed routers then that is the correct way to do it. It also enables a more complex check than just next-hop :-) If you only need to check next-hop then there is also a setting in the default route called "check-gateway" which can use ping. No use if you are connected to...
by scampbell
Thu Feb 18, 2016 9:00 pm
Forum: Beginner Basics
Topic: EOIP over IPSEC TWO RB750
Replies: 21
Views: 12609

Re: EOIP over IPSEC TWO RB750

Hmmm, ok well you have the basics right it seems. I did some looking around and found this link which may help - http://forum.mikrotik.com/viewtopic.php?t=88033 I wonder if you have some peer settings left over from earlier attempts. Try the following and see if it helps... 1. Disable IPSEC in the E...
by scampbell
Wed Feb 17, 2016 10:37 pm
Forum: Beginner Basics
Topic: IPsec site 2 site VPN. Ping fails in one direction.
Replies: 36
Views: 12997

Re: IPsec site 2 site VPN. Ping fails in one direction.

To get rid of fasttrack there is a firewall rule created by default directly below the two rules to allow established and related with an action=fasttrack-connection. The rule looks like this:- "add action=fasttrack-connection chain=forward comment="default configuration" \ connection-state=establis...
by scampbell
Wed Feb 17, 2016 10:28 pm
Forum: Announcements
Topic: v6.34.1 [current] is released!
Replies: 59
Views: 16111

Re: v6.34.1 [current] is released!

I've noticed an issue running 6.34.1 and Winbox 3.1. If I set the email server in Winbox > Tools > Email > Server to either the fqdn or ip of my mail server then try send an email I get an error connecting entry in the logs. "/tool e-mail print" didn't show a server address entry. "/tool e-mail set...
by scampbell
Wed Feb 17, 2016 10:26 pm
Forum: Beginner Basics
Topic: EOIP over IPSEC TWO RB750
Replies: 21
Views: 12609

Re: EOIP over IPSEC TWO RB750

I can't seem to get this to work. The "easier" EOIP. I setup EoIP selected a secret. Made sure the tunnel IDs were the same. All I see it this in my logs 10:28:18 ipsec,error failed to pre-process ph2 packet. Do I need additions to the firewall filter and nat too? Ensure your firewall is allowing i...
by scampbell
Tue Feb 16, 2016 9:01 pm
Forum: General
Topic: Using EoIP as the connector.
Replies: 8
Views: 893

Re: Using EoIP as the connector.

Could you not have used src-nat to fool the pbx that any packets received from a remote network were instead locally sent ? This would eliminate the need for eoip Eric and possibly simpler ? Also where we see sip issues the packet sniffer is the best tool as you can save to a file, called sip.cap fo...
by scampbell
Mon Feb 15, 2016 8:02 pm
Forum: Announcements
Topic: v6.34.1 [current] is released!
Replies: 59
Views: 16111

Re: v6.34.1 [current] is released!

It appeared in v6.34 and is already fixed in v6.35rc. It is just a cosmetic bug that aes-256 is displayed as aes-128 Maybe cosmetic but I have just wasted an hour on it migrating a router and wondering why my scripts dont work. If I specify in CLI to add a peer with enc-algorythm=aes-128 and then r...
by scampbell
Mon Feb 15, 2016 12:49 am
Forum: Wireless Networking
Topic: WDS or not WDS?
Replies: 3
Views: 1748

Re: WDS or not WDS?

Pasted from Uldis slide pg 34: http://mum.mikrotik.com/presentations/PL12/workshop-wireless-2012-PL.pdf 802.11n and WDS • 802.11n frame aggregation can’t be used together with WDS • Max transmit speed drops from 220Mbps to 160Mbps using WDS (UDP traffic) • Station-bridge has the same speed limitatio...
by scampbell
Mon Feb 15, 2016 12:30 am
Forum: Wireless Networking
Topic: Printer Access with "client to client forwarding" disabled
Replies: 6
Views: 1253

Re: Printer Access with "client to client forwarding" disabled

Use the "access list" feature and allow client to client forwarding for specific hosts and the printers. This allows the default action of no-forwarding except for the hosts you specify by mac-address in the access-list. TIP: You can identify specific hosts in the registration table and copy them to...
by scampbell
Mon Feb 15, 2016 12:24 am
Forum: Wireless Networking
Topic: Chromecast problems!
Replies: 8
Views: 3886

Re: Chromecast problems!

We use CAPsMan with our Chromecast so perhaps you need to publish your CAPsMan Controller config and your AP Config.

As you have correctly noted you cannot set the mode to AP/Bridge in Capsman - only AP. This should not be an issue for you as Chromecast connects as a Station anyway.
by scampbell
Thu Feb 04, 2016 11:39 pm
Forum: Announcements
Topic: Winbox3.1 released!
Replies: 50
Views: 26495

Re: Winbox3.1 released!

We have found issue with hAP lite and missing information. We will fix it in next release. Toigoweb - what does "lot of bug" mean? Can you give examples? Everyone - please report to support@mikrotik.com with description of your problem and screen shots. Forum is for users. If you want to have resol...
by scampbell
Thu Feb 04, 2016 10:44 pm
Forum: Beginner Basics
Topic: Email settings
Replies: 13
Views: 1830

Re: Email settings

Please try setting your e-mail server using the CLI. We have found setting this in Winbox does not work in the RoS 6.34 or 6.33.5 and reported it to Mikrotik.

/tool e-mail set address=x.x.x.x
by scampbell
Thu Feb 04, 2016 12:28 pm
Forum: Wireless Networking
Topic: Mikrotik AC PtP - Nstreme will NOT connect at all but NV2 will???
Replies: 53
Views: 8926

Mikrotik AC PtP - Nstreme will NOT connect at all but NV2 will???

AP config: /interface wireless security-profiles set [ find default=yes ] supplicant-identity=MikroTik add authentication-types=wpa2-psk,wpa2-eap management-protection=allowed \ mode=dynamic-keys name=NPP supplicant-identity="" wpa2-pre-shared-key=\ ********* /interface wireless set [ find default-...
by scampbell
Thu Feb 04, 2016 12:17 pm
Forum: Wireless Networking
Topic: Mikrotik AC PtP - Nstreme will NOT connect at all but NV2 will???
Replies: 53
Views: 8926

Mikrotik AC PtP - Nstreme will NOT connect at all but NV2 will???

I couldn't help but notice one of the radios had default-authenticate=no and I couldn't see any mention of access or connect lists. If this is correct and no connect or access list then you won't get a connection :-) Please double check - hope this helps... [edit] a closer look and I saw an access l...
by scampbell
Thu Feb 04, 2016 11:54 am
Forum: Scripting
Topic: Script to disable 3g backup
Replies: 2
Views: 730

Script to disable 3g backup

Use a higher distance for your 3G default route and if 3G is PPPoE set dial on demand=yes
by scampbell
Wed Feb 03, 2016 1:27 am
Forum: Beginner Basics
Topic: Sending E-mail when IP is added to address list
Replies: 3
Views: 1020

Re: Sending E-mail when IP is added to address list

Use the log function in the firewall rule and have the action specified as an e-mail. /ip firewall filter add action=add-src-to-address-list address-list=PSD (insert matchers here) chain=forward log=yes log-prefix=PSD /system logging action add email-to=myaddress@somewhere.com name=emailPSD target=e...
by scampbell
Wed Feb 03, 2016 1:10 am
Forum: Beginner Basics
Topic: Help configuring station bridge.
Replies: 1
Views: 403

Re: Help configuring station bridge.

If the other AP is not a Mikrotik AP/Bridge station-bridge will not work as it is a Mikrotik proprietary mode.
by scampbell
Wed Feb 03, 2016 12:51 am
Forum: Beginner Basics
Topic: Problem with dual wan failover not moving back to primary.
Replies: 10
Views: 3395

Re: Problem with dual wan failover not moving back to primary.

dareru's excellent answer is for failover only and will work well. If you use a dynamic protocol on your WAN such as DHCP or PPPoE you will need to ensure you set the default-route-distance to something other than 0 on your backup wan for this to work If you want to be able to manage your router via...
by scampbell
Wed Feb 03, 2016 12:30 am
Forum: Beginner Basics
Topic: RB951G-2HnD bridge performance
Replies: 2
Views: 781

Re: RB951G-2HnD bridge performance

By default the RB951G-2HnD has ether2 and wlan1 in a bridge. Ether3-5 have their master-port set to ether2. Traffic between ether2-5 should occur at wirespeed 1000Mps. So perhaps set the ports back to switch and try again. Be sure to remove from the bridge before setting their master ports. If you a...
by scampbell
Wed Feb 03, 2016 12:24 am
Forum: Beginner Basics
Topic: Email settings
Replies: 13
Views: 1830

Re: Email settings

Add a topic=e-mail action=memory to your /system logging.

The additional log info should help show what is not working correctly when you send an e-mail :-)
by scampbell
Wed Feb 03, 2016 12:21 am
Forum: Beginner Basics
Topic: PPTP
Replies: 2
Views: 400

Re: PPTP

Windows uses WINS to resolve hostnames. On your remote PC's when they connect have the clients configured to use your internal Windows server as both DNS and WINS. On the remote site you may also need to suffix your hostnames with hostname.yourdomain.com to get them to correctly respond. Mikrotik ca...
by scampbell
Wed Feb 03, 2016 12:14 am
Forum: General
Topic: is there a way to block specific URL in Microtik CCR ?
Replies: 10
Views: 775

Re: is there a way to block specific URL in Microtik CCR ?

No it is not possible! Note the "https" which means "secure" communication. The communication is encrypted and the router never sees the URL. Even when you setup a proxy server, the router sees only the hostname not the part after it. So then you can block entire facebook but not one specific page....
by scampbell
Tue Feb 02, 2016 11:52 am
Forum: Wireless Networking
Topic: Wireless bridge [solved with WDS]
Replies: 6
Views: 10597

Wireless bridge [solved with WDS]

Ap-bridge mode to station-bridge is definitely the best way to do a transparent bridge over wireless.

WDS has throughout issues on Wireless N. It works but not as well as station-bridge.
by scampbell
Mon Feb 01, 2016 10:08 pm
Forum: Wireless Networking
Topic: Full Duplex PTP over 7 to 14Kms
Replies: 24
Views: 3012

Re: Full Duplex PTP over 7 to 14Kms

thank you. that looks interesting but has anyone deployed it in actual environment? I have a few sites doing that - for example we use an RB850GX2 at each end and 4 x QRT's. Set up two unique /29 subnets for each wireless link and the radio's as simple bridge (bridge/station-bridge). Apply the diff...
by scampbell
Mon Feb 01, 2016 10:02 pm
Forum: General
Topic: IPIP Tunnel MTU Problem
Replies: 7
Views: 3303

Re: IPIP Tunnel MTU Problem

Have you checked your PPPoE tunnel can pass packets with MTU=1492 natively without fragmenting ?

Some ISP's use VLAN's and we have found the MTU=1480 is the best we can achieve in this case ?
by scampbell
Mon Feb 01, 2016 8:21 am
Forum: General
Topic: IPIP Tunnel MTU Problem
Replies: 7
Views: 3303

Re: IPIP Tunnel MTU Problem

Interesting problem for sure. I would not think you would need to specify source IP as you are using /30 addressing so it should only go one direction anyway. Given your wan connections have MTU limits of either 1500 or 1492 themselves I cannot see how you can push 1600 through any tunnel without fr...
by scampbell
Mon Feb 01, 2016 7:15 am
Forum: Wireless Networking
Topic: Full Duplex PTP over 7 to 14Kms
Replies: 24
Views: 3012

Re: Full Duplex PTP over 7 to 14Kms

no mikrotik products come in full duplex modes as of today.

you need 4 radios cards 2 on each side for full duplex to work.
Or use OSPF and 4 QRT's for example and base setup on http://wiki.mikrotik.com/wiki/Dual_Setup_with_OSPF.
by scampbell
Mon Feb 01, 2016 7:06 am
Forum: Announcements
Topic: v6.34 [current] is released!
Replies: 91
Views: 22915

Re: v6.34 [current] is released!

About ARP entries - they are completely normal. They have been there forever. Incomplete entries simply were no shown. Now we just do not hide them any more. Just a thought - how hard would it be to add a tick box for "show-incomplete" in /ip arp ? This may make it easier for some users to understa...
by scampbell
Mon Feb 01, 2016 6:52 am
Forum: Announcements
Topic: Winbox3.1 released!
Replies: 50
Views: 26495

Re: Winbox3.1 released!

The issue with /tool e-mail being set in Winbox on a hAP still is happening. To reproduce this, configure in Winbox the Tool E-Mail server then open CLI and go /tool e-mail print email1.PNG Note the lack of address in the CLI. Simply issue the /tool e-mail set address=x.x.x.x followed by /tool e-mai...
by scampbell
Mon Feb 01, 2016 6:42 am
Forum: Announcements
Topic: Winbox3.1 released!
Replies: 50
Views: 26495

Re: Winbox3.1 released!

hAP Lite, RouterOS 6.34
+1 but only after updating Bios from 3.24 to 3.29 :-)
by scampbell
Thu Jan 28, 2016 6:41 pm
Forum: General
Topic: OSPF Router-ID in docs and MTCRE
Replies: 4
Views: 997

OSPF Router-ID in docs and MTCRE

I prefer to always specify a loopback address so there are no surprises [emoji41]
by scampbell
Thu Jan 28, 2016 6:34 pm
Forum: General
Topic: PPPoE Server and Proxy ARP with IPv4 and IPv6
Replies: 2
Views: 641

PPPoE Server and Proxy ARP with IPv4 and IPv6

Ospf instance can publish connected routes but using it for PPPoE can create a flood of lsa's
by scampbell
Thu Jan 28, 2016 6:32 pm
Forum: General
Topic: RB3011 missing Interface Master Slave Settings
Replies: 1
Views: 627

RB3011 missing Interface Master Slave Settings

Switch missing in winbox 3.0 is known. Try winbox 2.2.18, cli or webfig.

We are hoping this will be fixed soon [emoji41]
by scampbell
Thu Jan 28, 2016 6:28 pm
Forum: General
Topic: win10 mac-telnet
Replies: 4
Views: 864

win10 mac-telnet

Check the interface you are using has a valid IP address on it, preferably static ip. I know Mac-winbox is l2 but Windows seems to need this. Try running winbox as admin in Windows. Try disable any unused interface like wireless Disable any virtual machine like virtual box. Disable AV and firewall o...
by scampbell
Thu Jan 28, 2016 6:24 pm
Forum: General
Topic: RB2011 - How do I strip tagged VLAN 0?
Replies: 6
Views: 986

RB2011 - How do I strip tagged VLAN 0?

Edit: you can edit packet vlans in a bridge filter - not sure how with just a plain Ethernet interface so perhaps create bridge, add wan, then try bridge filter ?
by scampbell
Thu Jan 28, 2016 6:22 pm
Forum: General
Topic: RB2011 - How do I strip tagged VLAN 0?
Replies: 6
Views: 986

RB2011 - How do I strip tagged VLAN 0?

Technically vlan0 is no vlan. If you add a priority tag to your packets vlan0 is automatically inserted unless another vlan is specified.
by scampbell
Thu Jan 28, 2016 6:16 pm
Forum: General
Topic: is there a way to block specific URL in Microtik CCR ?
Replies: 10
Views: 775

is there a way to block specific URL in Microtik CCR ?

I would try using a L7 firewall rule but these are high CPU cost. Lucky you have a ccr :-)
by scampbell
Thu Jan 28, 2016 6:05 pm
Forum: Beginner Basics
Topic: Problem with basic CAPsMAN configuration
Replies: 8
Views: 9065

Problem with basic CAPsMAN configuration

It may help if you publish an export of your route capsman config and wireless config please. With capsman we do not manually bridge wlan to Ethernet. Capsman automatically will do this if required. Capsman can either local forward data or tunnel it to the controller. It sounds to me you may not be ...
by scampbell
Thu Jan 28, 2016 5:57 pm
Forum: General
Topic: Help please...periodically losing pings!
Replies: 2
Views: 322

Help please...periodically losing pings!

FYI do not use tkip unless absolutely necessary. It limits wireless throughput.
by scampbell
Thu Jan 28, 2016 5:49 pm
Forum: General
Topic: RSTP between a fiber link and wireless link ? Possible in Microtik ?
Replies: 10
Views: 901

RSTP between a fiber link and wireless link ? Possible in Microtik ?

If you are doing that much traffic then the ccr1016-12s might be a better investment. The crs switch chips are good but I'm pretty sure don't support features like RSTP or LACP yet without using the CPU which architecturally is limited to 1gps to/from the CPU. The ccr would allow you to run ospf and...
by scampbell
Wed Jan 27, 2016 7:32 pm
Forum: Announcements
Topic: v6.33.5 [current] is released!
Replies: 120
Views: 34020

Re: v6.33.5 [current] is released!

On hAP on several routers all running 6.33.5 we are seeing a problem with the /tool e-mail settings. If you set the server in Winbox to 1.1.1.1 (say) and then go to the CLI and execute /tool e-mail pring the address entry is blank. You can only seem to enter the e-mail server address via the CLI. Th...
by scampbell
Mon Jan 18, 2016 11:07 pm
Forum: Announcements
Topic: v6.33.5 [current] is released!
Replies: 120
Views: 34020

Re: v6.33.5 [current] is released!

Oh and switch menu still missing on RB3011 Winbox :-) Not in 6.34rc34 yet either FYI 6.34rc36 still missing Switch menu, Master Port on Interface General Tab & CPU Clock on System/Resources in WinBox. As well as not supporting Hardware Encryption yet! I tried connecting to my RB3011 via Winbox 2.21...
by scampbell
Mon Jan 18, 2016 8:02 am
Forum: Wireless Networking
Topic: PPPOE Request (Need Help )
Replies: 1
Views: 323

Re: PPPOE Request (Need Help )

Potentially several solutions depending on how you are handling the ports. Layer2 isolation is 1st. Disable Default Forward on your Wireless NIC's to keep clients on a single wlan from talking to each other. If in your diagram the Ethernet ports are bridged then you could use Split Horizon in the br...
by scampbell
Thu Jan 14, 2016 5:24 am
Forum: General
Topic: Problem with Bridge on CRS125-24G-1S
Replies: 6
Views: 1028

Re: Problem with Bridge on CRS125-24G-1S

When ports are bridged all LAN traffic goes through the CPU (shared 1GB link) whereas when ports are switched LAN traffic does not impact the CPU so routing performance is better.
by scampbell
Wed Jan 13, 2016 10:39 pm
Forum: Announcements
Topic: v6.33.5 [current] is released!
Replies: 120
Views: 34020

Re: v6.33.5 [current] is released!

Oh and switch menu still missing on RB3011 Winbox :-) Not in 6.34rc34 yet either FYI
by scampbell
Wed Jan 13, 2016 10:37 pm
Forum: Announcements
Topic: v6.33.5 [current] is released!
Replies: 120
Views: 34020

Re: v6.33.5 [current] is released!

I also just tried a /system packages upgrade upgrade on an SXT on 6.25 running the wireless package. The device could not be upgraded until I manually upgraded and applied the wireless-fp package which negates the auto-upgrade feature. I would suggest it should automatically change to wireless-fp or...
by scampbell
Wed Jan 13, 2016 8:49 pm
Forum: General
Topic: WinBox 3.0rc15 recognized as malware (IDP.Ares.Generic) by AVG Antivirus
Replies: 1
Views: 973

Re: WinBox 3.0rc15 recognized as malware (IDP.Ares.Generic) by AVG Antivirus

This morning AVG reported Winbox.exe 3.0 as Trojan horse Generic36.CBEY and removed it :-(
by scampbell
Tue Nov 03, 2015 8:56 pm
Forum: General
Topic: Winbox 3 RC
Replies: 639
Views: 123816

Re: Winbox 3 RC

3) After multiple requests, we decided to use default admin without password if router is selected from Neighbours list. If that should not be used, then router must be saved in Managed tab. While in some cases this makes sense we used to achieve that same result (default to admin with no password)...
by scampbell
Mon Nov 02, 2015 10:19 am
Forum: General
Topic: Is it possible for ISP to access my MikroTik?
Replies: 8
Views: 1352

Is it possible for ISP to access my MikroTik?

the default configuration of the RB951 has a firewall on the public (ISP) interface, so nobody can connect to your router from the ISP side, only from your LAN home network I agree but if you need a pppoe interface the default rules need to be changed to reflect this new wan interface. We are seein...
by scampbell
Mon Nov 02, 2015 9:52 am
Forum: Beginner Basics
Topic: Static NAT from external seems to hijack VPN traffic on same port
Replies: 4
Views: 709

Static NAT from external seems to hijack VPN traffic on same port

Add your wan address as the dst-address (not the to-address) of you Nat rule. Specifying just the incoming interface will catch IPSec traffic as well as Internet traffic.
by scampbell
Mon Nov 02, 2015 9:41 am
Forum: General
Topic: utilization of CPU via WinBox
Replies: 18
Views: 1330

utilization of CPU via WinBox

Also /tool graph where you can graph CPU and memory resources and traffic etc
by scampbell
Mon Nov 02, 2015 9:37 am
Forum: RouterBOARD hardware
Topic: Any RouterBoard with 4G LTE sim card slot available?
Replies: 11
Views: 25527

Any RouterBoard with 4G LTE sim card slot available?

Multi tech offer a miniPCIe card with inbuilt sim. HSPA+
by scampbell
Mon Nov 02, 2015 9:14 am
Forum: General
Topic: smtp port forwarding
Replies: 5
Views: 723

Re: smtp port forwarding

You are welcome :-)
by scampbell
Mon Nov 02, 2015 6:22 am
Forum: RouterBOARD hardware
Topic: RB750UP and PowerBox unable to turn on Mikrotik Devices
Replies: 7
Views: 2021

Re: RB750UP and PowerBox unable to turn on Mikrotik Devices

See the link I posted before. Yes, you can say it helps PB to power other devices, but what it actually does is disables short circuit detection on all poe out ports.
Is there a plan to include this command in Winbox ?
by scampbell
Sun Nov 01, 2015 11:59 pm
Forum: Forwarding Protocols
Topic: Issues with OSPF
Replies: 4
Views: 3419

Re: Issues with OSPF

I would try setting the Network-Type =Broadcast on all interfaces rather than Point to Point.

With Network-Type=Point to Point no router is elected as designated router under OSPF. This is good on a wireless segment of an OSPF network but perhaps not so good in your situation ?
by scampbell
Sun Nov 01, 2015 11:49 pm
Forum: Wireless Networking
Topic: CAPsMAN issue with wAP
Replies: 3
Views: 1207

Re: CAPsMAN issue with wAP

You are welcome and thanks for the rating :-)
by scampbell
Fri Oct 30, 2015 5:33 am
Forum: Wireless Networking
Topic: CAPsMAN issue with wAP
Replies: 3
Views: 1207

Re: CAPsMAN issue with wAP

Please check you have the same wireless package installed on all devices. e.g wireless-cm2

/system packages print
by scampbell
Fri Oct 30, 2015 5:21 am
Forum: General
Topic: smtp port forwarding
Replies: 5
Views: 723

Re: smtp port forwarding

You also need to mark the connection coming in from your wan ports to your mail server and ensure the reply goes back the same wan it arrived on. See the following excellent presentation from Steve Discher http://mum.mikrotik.com/presentations/US12/steve.pdf /ip firewall mangle add action=mark-conne...
by scampbell
Tue Oct 27, 2015 5:04 am
Forum: Wireless Networking
Topic: VTP and VLAN's through wireless link
Replies: 5
Views: 2014

Re: VTP and VLAN's through wireless link

If you have setup a transparent bridge and all clients are station-bridge then they will all see each other. Disabling Default Forwarding on the AP/Bridge will give some L2 isolation from clients but the AP/Bridge will see all. If you wish to seperate the customers then you may be better with a rout...
by scampbell
Tue Oct 27, 2015 3:23 am
Forum: Wireless Networking
Topic: mikrotik cAP n2 as repeater bridge
Replies: 4
Views: 2189

Re: mikrotik cAP n2 as repeater bridge

Not sure where I thought Capsman :-)

But ap/Bridge->station-bridge mode might be even better than WDS ? We use this method for transparent bridging frequently.
by scampbell
Tue Oct 27, 2015 3:20 am
Forum: Scripting
Topic: Netwatch failover script
Replies: 3
Views: 3813

Re: Netwatch failover script

Both ways work - I just like using seperate scripts so you can test them :-)
by scampbell
Fri Oct 23, 2015 5:26 am
Forum: Wireless Networking
Topic: Voucher generation and printing
Replies: 2
Views: 1075

Re: Voucher generation and printing

Handlink make a nice printer that does exactly that. www.handlink.com.tw or http://www.campbell.co.nz/index.php?main_page=product_info&cPath=9&products_id=696 We sell them here and they are easy to set up and use and have 3 buttons that can be paired with three different profiles. 1 Hr, 1 Day or 1 w...
by scampbell
Fri Oct 23, 2015 5:24 am
Forum: Wireless Networking
Topic: CapsMAN multicast
Replies: 2
Views: 1156

Re: CapsMAN multicast

And also make sure Windows Firewall is disabled too LoL :lol:
by scampbell
Fri Oct 23, 2015 5:23 am
Forum: Wireless Networking
Topic: CapsMAN multicast
Replies: 2
Views: 1156

Re: CapsMAN multicast

I use Sonos on my network with Capsman.

The secret is to ensure you allow client-to-client forwarding in your datapath setup
by scampbell
Fri Oct 23, 2015 5:15 am
Forum: Wireless Networking
Topic: Problem with setup CAPsMAN for more than two the same SSIDs on multiple CAPs
Replies: 2
Views: 993

Re: Problem with setup CAPsMAN for more than two the same SSIDs on multiple CAPs

The provisioning rules are like firewall rules and work top down, first match. If your mac filter is 00:00:00:00:00:00 for both rules the first will be used always and never reach the second. Try adding in the mac address of the radio you want with cfg3 on the appropriate provision rule and drag it ...
by scampbell
Fri Oct 23, 2015 5:10 am
Forum: Wireless Networking
Topic: How to Lock TX/RX data rates on client
Replies: 1
Views: 4415

Re: How to Lock TX/RX data rates on client

I think you are describing "rate flapping". To fix this you need to disable the higher speds in "supported rates" of radio. This is under the "data rates" section, select "configured" and unselect the top speeds. The logic is if the radio spends 80% of its time at 36Mbbps, 10% at 48Mbps and 10% at 5...
by scampbell
Fri Oct 23, 2015 5:01 am
Forum: Wireless Networking
Topic: mikrotik cAP n2 as repeater bridge
Replies: 4
Views: 2189

Re: mikrotik cAP n2 as repeater bridge

Last I looked Capsman did not support bridge. Mode=ap is the only option
by scampbell
Fri Oct 23, 2015 4:59 am
Forum: Scripting
Topic: Netwatch failover script
Replies: 3
Views: 3813

Re: Netwatch failover script

If you create you netwatch scripts in /system script with name like "up" or "down" you can then run them and see if they work. Then in /tool netwatch just specify the name of the script in the up and down menu's . EXAMPLE: /system script add name=up owner=admin policy=\ ftp,reboot,read,write,policy,...
by scampbell
Thu Oct 22, 2015 5:29 am
Forum: General
Topic: Reach device on hotspot (device has no gateway).
Replies: 2
Views: 734

Re: Reach device on hotspot (device has no gateway).

When I need to get access to a device that has no gateway but does have a valid IP in a subnet, I use a srcnat/masquerade rule so traffic to the device appears to come from it's local subnet. /ip firewall nat add chain=srcnat to-address=192.168.4.165 action=masquerade If the device is on the hotspot...
by scampbell
Thu Oct 22, 2015 5:23 am
Forum: General
Topic: DNS no resolving on failover wan
Replies: 5
Views: 811

Re: DNS no resolving on failover wan

On sites with multiple WAN interfaces and different ISP (therefore different DNS) I add a specific route for each DNS so it always uses the correct ISP. In respect to failover, a script to change the DNS may be useful approach. Using 8.8.8.8 or 8.8.4.4 does work but some CDN's do not like it and get...
by scampbell
Thu Oct 22, 2015 5:15 am
Forum: General
Topic: DHCP Flooding
Replies: 20
Views: 2671

Re: DHCP Flooding

Mikrotik support DHCP Server Alert function that can tell when a new DHCP server is found. /ip dhcp-server alert add disabled=no interface=bridge-lan on-alert="/log error \"server found\"" You can add your own script as required. It is also possible to filter DHCP on a Bridge if required. http://wik...
by scampbell
Thu Oct 22, 2015 5:11 am
Forum: Forwarding Protocols
Topic: OSPF Example Network
Replies: 18
Views: 5972

Re: OSPF Example Network

Agreed, in fact if you take this approach set the interface to passive so no routes can be injected from client side either :-)
by scampbell
Thu Oct 22, 2015 1:51 am
Forum: Beginner Basics
Topic: Routing part of network via PPTP VPN
Replies: 7
Views: 2901

Re: Routing part of network via PPTP VPN

Try adding a forward rule to allow any traffic coming in on your pptp interface.
by scampbell
Thu Oct 22, 2015 1:44 am
Forum: Forwarding Protocols
Topic: OSPF Example Network
Replies: 18
Views: 5972

Re: OSPF Example Network

For AP's it is best to avoid using OSPF to publish client facing subnets actively. As clients connect and drop it creates new LSA's across the whole network so better to not specify the client device subnet in /route ospf net and better to set the /rou ospf instance to publish connected instead. Thi...
by scampbell
Thu Oct 22, 2015 1:26 am
Forum: Wireless Networking
Topic: VTP and VLAN's through wireless link
Replies: 5
Views: 2014

Re: VTP and VLAN's through wireless link

Cisco -> E1--Bridge--Wlan1...............Wlan1--Bridge--Ether1->Cisco

So we are bridging the link through all the way. VLAN's dont route so this is how it must be.

If for some reason a link had to be routed then you could introduce an EoIP or VPLS tunnel between your endpoints instead.
by scampbell
Wed Oct 21, 2015 11:51 pm
Forum: Beginner Basics
Topic: Request for sample script
Replies: 2
Views: 396

Re: Request for sample script

# remove ether10 from switch group (usually master-port=ether6) 1. /int eth set [find name=ether10] master=none # create pppoe-client on ether10 2. /int pppoe-client add name=pppoe-out1 interface=ether10 user=changeme password=changeme use-peer-dns=yes add-def=yes dis=no # add NAT rule to pppoe-clie...
by scampbell
Wed Oct 21, 2015 11:43 pm
Forum: Beginner Basics
Topic: network scan protection
Replies: 1
Views: 647

Re: network scan protection

Use a firewall rule with the PSD matcher to add Port Scanners to an address list (for 5 days perhaps) and have another rule to drop the address list.

RTFM: http://wiki.mikrotik.com/wiki/Drop_port_scanners :D
by scampbell
Wed Oct 21, 2015 11:37 pm
Forum: Beginner Basics
Topic: SIP Phones not registering
Replies: 5
Views: 1429

Re: SIP Phones not registering

FYI Under "/ip firewall services" you will find a SIP ALG enabled by default. Sometimes disabling this can also help according to some of our local SIP Providers.
by scampbell
Wed Oct 21, 2015 11:24 pm
Forum: Wireless Networking
Topic: Computer connected by CAP has no access to local network printer.
Replies: 1
Views: 515

Re: Computer connected by CAP has no access to local network printer.

Check that Client to Client forwarding is enabled in your Capsman Datapath profile. This will give layer2 isolation between wireless devices if not enabled :-)
by scampbell
Wed Oct 21, 2015 11:21 pm
Forum: Wireless Networking
Topic: RB922UAGS-5HPacD Dual Band AP - Poor Performance
Replies: 3
Views: 1438

Re: RB922UAGS-5HPacD Dual Band AP - Poor Performance

Neither radio card has a wireless protocol correctly set. Set both to wireless-protocol=802.11 and see if that helps. R name="2gn" mtu=1500 mac-address=4C:5E:0C:11:0E:FC arp=enabled interface-type=Atheros AR9300 mode=ap-bridge ssid="radio" frequency=2447 band=2ghz-onlyn channel-width=20/40mhz-eC sca...
by scampbell
Wed Oct 21, 2015 11:13 pm
Forum: Wireless Networking
Topic: VTP and VLAN's through wireless link
Replies: 5
Views: 2014

Re: VTP and VLAN's through wireless link

If all the wireless equipment is Mikrotik and it is AP/Bridge-> Station-Bridge with all ethernet's bridged to wlan then VLAN's will pass. You can use the Torch Tool to check this at each router. Be sure to tick all the options and set the time to 30 seconds before running torch. There is an issue wi...
by scampbell
Fri Sep 18, 2015 4:16 am
Forum: Forwarding Protocols
Topic: OSPF Example Network
Replies: 18
Views: 5972

Re: OSPF Example Network

Hello, I'm continuing my testing on OSPF and I have a new question for you! May you help me to understand what is a good ip plan? I read "Burning Bridges" here: http://www.mywisptraining.com/wp-content/uploads/2013/01/BridgedToRouted.pdf I understand I have to remove switches and add router in plac...
by scampbell
Sat Sep 12, 2015 2:11 am
Forum: Beginner Basics
Topic: Port Forwarding Woes
Replies: 8
Views: 1425

Re: Port Forwarding Woes

Hello and thank you for the excellent description and for posting the relevant configurations. In RouterOS, to forward a port to a device, you need two entries in the firewall area: one for NAT and one for the actual firewall itself. You have the correct NAT rule, you are just missing the ip firewa...
by scampbell
Wed Sep 09, 2015 12:18 am
Forum: Beginner Basics
Topic: EOIP over IPSEC TWO RB750
Replies: 21
Views: 12609

Re: EOIP over IPSEC TWO RB750

It is even easier now as Mikrotik added IPSEC support to EOIP in 6.30 - now you can just specify an IPsec Secret when setting up EoIP and the IPSEC is created automatically for you.
by scampbell
Tue Sep 08, 2015 9:42 pm
Forum: Announcements
Topic: v6.32.1 released
Replies: 76
Views: 19034

Re: v6.32.1 released

+1 on various routers running 6.31 or greater. I revert to 6.30.4 and the message goes away.
by scampbell
Thu Jul 02, 2015 2:38 am
Forum: General
Topic: Leap second bug present on TILE devices?
Replies: 49
Views: 10318

Re: Leap second bug present on TILE devices?

Little too late, don't you think?
For this one, yes, but next leap second will be added in around 2 years.
Could you please tell me if you had NTP package on all the servers, or you used SNTP?
I can confirm CCR's with SNTP were OK and CCR's with NTP crashed and became unresponse.
by scampbell
Thu Jan 29, 2015 5:54 am
Forum: Wireless Networking
Topic: psuedobridge mac issue.
Replies: 5
Views: 997

Re: psuedobridge mac issue.

What is the config of the 912Client/AP ? You definitely do not want to use PseudoBridge in a hotspot as it does exactly what you are seeing. 8) If you are using a single wireless card in your final RB912 then consider the config in this example - http://wiki.mikrotik.com/wiki/Wireless_repeater If yo...
by scampbell
Thu Jan 29, 2015 2:25 am
Forum: General
Topic: Routerboard with POE in and POE out
Replies: 10
Views: 1767

Re: Routerboard with POE in and POE out

Interesting. I have an Omnitik with an SXT5 Lite working at one recent plus another with RB433 and QRT5 working so maybe some models (manufacturing runs) work better than others ?
  • 1
  • 2