MikroTik

cgood

R11e-LTE is a Cat.4 LTE modem. This means it utilizes 2x2 MIMO in downlink. Diversity here is a bit misleading, since the diversity is working only in uplink direction. Second antenna port can work for second spatial stream. If both eNB and modem support TM3 (which it should) or even TM4, you get a...

cgood

The LTE modem was not detected until LtAP mini switched power from micro-USB to power supply 24V 0.8A

cgood

Большое спасибо

Be happy now.

cgood

If you use DoH uncheck Verify DoH Certificate. This should solve the issue until MT fixes the issue.

Thanks

cgood

6.47.7 work with:

remote-id=ignore

cgood

Omg! Thanks You

cgood

Do you plan to release a product like an Amplifi/Deco/Multi/Orbi etc?

cgood

Currently it is known that OVPN interface reconnects are responsible for route cache leaks.

Hello, how to fix this issue?
Mikrotik CHR -> ip route cache full 512k .. OVPN/L2TP server

cgood

unsubscribe ...

cgood

Снимок экрана 2019-01-18 в 22.48.46.png

https://wiki.mikrotik.com/wiki/Manual:I ... Properties PSD section ...

cgood

At home i'm mangling DNS fwd+out connections and redirect to EU OVPN (CHR VPS), but DoH = peer-to-peer encryption & we all need it (=

cgood

Huh? Since DNS over HTTPS uses port 443 and there is no visual difference in traffic type, admin can't intercept or block this traffic (except by destination address).

When will the DoH appear

? Когда же?

cgood

Topic started at 30 Jan 2012 09:55 ... we wait for a miracle No. It just proves how futile is the idea of implementing nonstandard or nonstable technologies - they are gone withing few years. Where is DNScrypt today? Is it massively accepted? No. If mikrotik implemented it back then, it would be en...

cgood

+1
interesting, how many people still have to write "+1" that this gave the result?

Topic started at 30 Jan 2012 09:55 ... we wait for a miracle

cgood

And with interface-list it'll be nice to configuring ..

cgood

+1 vrf must have

cgood

+1 VRF

cgood

Hello guys! My trivial question is how to parse address-list name and convert to block of three Variables? address-list=tcp-8080-80 address=a.b.c.d => [tcp, 8080, 80] => /ip firewall nat add chain=dst-nat action=dst-nat dst-address=<WAN_IP_ADDRESS> proto=<TCP - first VAR> dst-port=<Second Var> to-po...

cgood

Hi pipl! i've next config & my caps-man wlan interfaces can't find capsman ... # apr/21/2018 00:03:35 by RouterOS 6.42 # model = RouterBOARD 952Ui-5ac2nD /caps-man manager set enabled=yes upgrade-policy=suggest-same-version /caps-man manager interface set [ find default=yes ] forbid=yes add disa...

cgood

Hi all, defconf ip firewall filter rule drop multicast flow, how to fix it? Which Rule need to add before? # mar/17/2018 11:40:27 by RouterOS 6.41.3 /ip firewall filter add action=accept chain=input connection-state=established,related,untracked add action=drop chain=input connection-state=invalid a...

cgood

ROS 6.41.1

*) ovpn - fixed resource leak on systems with high CPU usage;

cgood

+1! So, we have a tls-host and we need TLS-HOST-LIST too. Next step HOTSPOT+WEB PROXY with fully HTTPS ready functionality

!!!

cgood

Doesn't work for me either. Neither by full name, nor wildcard. P.S. Also, why is this matcher added to NAT rules? There's no info about TLS hostname in TCP SYN packets :) TLS Host does not work in RouterOS 6.41. Use last RouterOS 6.42rc15 (Release candidate). work! https://t.me/cgood/208

cgood

/interface ovpn-server server> print enabled: yes port: 1194 mode: ip netmask: 32 check your netmask in server config, for mzfk windows it must overlapping server IP and your host IP. So, linux based connect is OK: 2018-01-10 17:45:00 /sbin/ifconfig utun1 172.16.0.63 172.16.0.1 mtu 1500 netmask 255...

cgood

Just for an example. Less about OpenVPN TCP. We have more than 100 connected clients (ROS/Linux devices) to CHR (1G RAM P1 lic) - all use TCP. Speed-test between two VPS connected to CHR via ovpn-client: - - - - - - - - - - - - - - - - - - - - - - - - - [ ID] Interval Transfer Bandwidth Retr [ 4] 0....

cgood

+1 DNSCRYPT-PROXY support! Thank you!

cgood

Aruba CHR OVPN server: /interface ovpn-server server> /system resource monitor cpu-used: 100% cpu-used-per-cpu: 100% free-memory: 885812KiB /system resource print uptime: 1w3d3h13m44s version: 6.40.5 (stable) build-time: Oct/31/2017 13:05:15 free-memory: 864.9MiB total-memory: 972.9MiB cpu: Intel(R)...

cgood

That is NOT true. Here is the manual:
https://wiki.mikrotik.com/wiki/OpenVPN
Sorry , i mean UDP support. I forget some users can connect your vpn using OpenVPN over TCP.

Yes

> interface ovpn-server print count-only
113

cgood

Спасибо, работает, избавился от мозго*** с Hotspot+HTTPS /interface bridge add arp=reply-only comment=hotspot name=br1 # # /ip address add address=10.1.30.1/24 comment=hotspot interface=br1 network=10.1.30.0 # # /ip pool add name=dhcp_pool2 ranges=10.1.30.2-10.1.30.254 # /ip dhcp-server add add-arp=...

cgood

Hi guys. We just bought 8 points, one point died right after inclusion and dumping into the cap mode - at inclusion all indicators burn and ethernet isn't connected. Two points were adjusted at office but also didn't earn on an object. Connection was made from the Ubiquiti EdgeMAX ES-24-150W switchb...

Search found 30 matches

Re: LTE modem R11e-LTE antena connect

Re: LtAP mini series LTE missing.

Re: IPsec IKE2 can find valid sertificate [SOLVED]

Re: High memory usage

Re: IPSec not working [SOLVED]

Re: Home glamourous Mesh Wi-Fi?

Home glamourous Mesh Wi-Fi?

Re: ip route cache BUG

Re: RouterOS v7.0 beta1 - when?

Wiki Firewall spelling error

Re: Feature request - DNSCrypt support...

Re: Feature request - DNSCrypt support...

Re: Feature request - DNSCrypt support...

Re: Feature request - DNSCrypt support...

Re: caps-man manager interface all forbid=yes && caps-man-addresses=127.0.0.1

Re: feature request: expose variables to netwatch scripts

Re: Feature request: Netwatch - source interface/ip

Convert Address-List Name to Firewall Rules on-up PPP

caps-man manager interface all forbid=yes && caps-man-addresses=127.0.0.1

igmp-proxy vs ip firewall filter forward connection-nat-state=!dstnat

Re: OpenSSL and OpenVPN

Re: [Feature Request] hotspot walled-garden on SNI hostname / tls-host

Re: tls-host no document [SOLVED]

Re: OpenVPN and subnet for Windows Client

Re: RouterOS v7.0 beta1 - when?

Re: Feature request - DNSCrypt support...

Re: x86 ROS Device SSL process spikes router CPU to 100%

Re: OpenSSL and OpenVPN

Re: Limit WiFi client internet access by limited time per da

cAP Lite died