MikroTik

I...Maybe make an expander module that can be mounted on the front or back of the rack, via a fiber optic cable and connected power back to the switch. Would make it easy to have a top of rack back and front switch ports....

Just PoE powering. No need for next PSU.

Do you imagine this FAT-FAT-FAT cable boundle which you try to move to slide out/in a switch? How to organize them to ease slide device out and not to have big gnarl when slided in? How to protect cables against braking down RJ45 connectors? How many empty Us above device needed to organize cables? ...

How your ptoblem is connected to Mikrotik?

Safe mode is good solution but having Plan-B is even better if you commit "safe" configuration.

Start with:

/interface list
add name=WAN_LIST
/interface list member
add interface=YouRWANInterface list=WAN_LIST
/ip firewall raw
add action=drop chain=prerouting dst-port=53 in-interface-list=WAN_LIST log-prefix=UDP53ALL protocol=udp

What do you want to check?
Filesystem? Bad sectors?

Read this: viewtopic.php?f=2&t=102483&p=508981&hil ... IC#p508981

Why do you use public IPs in internal network?

Why to waste time? Netinstall and import configuration via script if you have one.

Why do you use x86? Isn't it better to buy Mikrotik device like https://mikrotik.com/product/RB750Gr3

A. Do bridge both interfaces and then filter traffic between interfaces.
or
B. Divide 192.168.2.0/24 subnet to two 192.168.2.0/25 subnets for each interface and then filter traffic

More impressive statisctic for 42 days of up-time.
RAW2 registers IPs which "revisist" router and are still registered with RAW1 rule.

Firewall.PNG

Micron Enterprise SSD 9200 MAX 6.4TB NVMe U.2 3 500$ gross

Let's check ... the generic example I've found in Poland: SSD Crucial MX500 500GB for 100$ is too expensive?

A. What if forum moderators hardly speak Spanish? Should we accept post in eg. Katakana or Hindi or Hebrew alphabets? B. Moderators do "complain" about non English posts. C. If English is not your "best friend" then you can always use translator or write/ask on non English forum. D. This forum has s...

What are NAT rules and Firewall?
Connections shows that there is some traffic from LAN to WAN ... do you have DNS properly configured?

It is log for 25 days since reboot so this router drops circa 15k connections per day. Most of them are for 22,23,8291 ports.

MM.PNG

Have you looked at firewall settings? Do they use 192.168.1.x instead a.b.88.x?

Time for "Best before sticker" :-( I have client which sells car components. We wondered why eg. spark plugs have "Best before date" info and "Production date" as there is nothing what could be expected to detoriate when they are waiting on a shelf packed/sealed/protected by manufacturer. Now I know...

Try to lower MTU for WAN interface.

Have you netinstalled?

Have you checked https://blog.mikrotik.com/security/wpa2 ... ttack.html ?

It was already discussed. Who do call customers? End users or admins? End users? ... most of them do not even know that they have Mikrotik device installed as gateway to Internet. Forget them. Admins? ... real admins reading Mikrotik's site or forum should be/are aware of these problems but the main...

Why do you think that it is router problem?
Do you think that js:Miner-AL[pup] is installed in your router?
Are you shure that your computer or any other local one are not infected with js:Miner-AL[pup]?

Docmarius .. thank you for explanation but what USB U3 has common with ROS? What does he want to beta test with U3?

This change makes router more secure as it is not possible to connect to WinBox service with standard port.

You cannot RDP from WAN lan or LOCAL lan?

Read this: https://wiki.mikrotik.com/wiki/Manual:IP/Firewall/NAT

Use this https://mikrotik.com/product/RBmAPL-2nD.

Tenable story is different ... they mounted ROS filesystem system to other Linux, made changes to files and then explored RouterOS. You have to have physical access to such system you want to break in. All Linuxes without encrypted filesystem are volunerable ... you can just mount root partition, re...

Congratulations to Tenable !!! They should also send list of affected routers. - it is SARCASM.

IMHO it is totally irresponsible.

You can.

A. You can filter connections for SMTP ports
B. Make Torch buffer time longer than 3 sec.

or

C. Make firewals rules adding src address to SMTPsenders list for PC's starting traffic to any SMTP port

Do not use WebFig ... use Winbox instead. It's proper tool.

Check computers, servers etc. behind your router if they are sending emails. Just observe connections in the firewall or torch WAN interface.

disconnect router from Internet
review configuration
export configuration to file
netinstall
set new admin password
add new user with admin privileges
remove admin
import configuration
connect to Internet

https://wiki.mikrotik.com/wiki/Manual:S ... our_Router

https://blog.mikrotik.com/security/winb ... ility.html
viewtopic.php?f=21&t=119308#p587512

search.php?keywords=radius+6.43

Please add:

MAC address lists
Port lists in Firewall

Id like to find out about helping with the Beta test on this...Ive used the big program for many years now, and have been on the Beta list for quite some time. I just started using PE, as Ive changed employers, and my new job wont allow me to install anything on my computer there, but I can use USB...

If you configured local LAN as 194.168.1.0/24 instead of 192.168.1.0/24 then DNS name of your gateway is resolved to external name.
You didn't show your configuration so it is just a guess.

Try to change channel width.

viewtopic.php?f=7&t=96472&p=544170&hili ... tp#p544170

The only way is to ask support@mikrotik.com for help.

What do you want to say? Have you example of hacked 6.42.7 or are you just guessing and making noise?

Have you ever tried Serach function ?

search.php?keywords=PMKID+

Have you tried to try http://lmgtfy.com/?q=mikrotik+email+backup

@msatter: Is it joke or not?

https://mikrotik.com/product/rb4011igs_5hacq2hnd_in

What about
https://mikrotik.com/product/rbm33g
+
https://mikrotik.com/product/CA433U
+
https://mikrotik.com/product/r11e_lte

Start from here: https://wiki.mikrotik.com/wiki/Manual:S ... g#Keywords

You need to read WPA2 property with "get". Property is not a traditional variable.
Setting property is also not so simple as you tried .. look here for example viewtopic.php?f=9&t=138893

Have you tried search function of this forum?

search.php?keywords=Winbox+keeps+disconnecting

Search found 1593 matches