Community discussions

Search found 67 matches

by pants6000
Sun Aug 25, 2019 2:23 am
Forum: Announcements
Topic: Newsletter #90
Replies: 53
Views: 16344

Re: Newsletter #90

I wonder what CPU arch these new CCRs will use, should they exist...
by pants6000
Thu Jun 13, 2019 2:03 am
Forum: RouterBOARD hardware
Topic: PW48V-12V85W in a first-generation CCR1036?
Replies: 0
Views: 359

PW48V-12V85W in a first-generation CCR1036?

Does it fit/work?
by pants6000
Mon Apr 08, 2019 5:50 pm
Forum: Announcements
Topic: Newsletter 88, April 2019
Replies: 15
Views: 7551

Re: Newsletter 88, April 2019

Always nice to see new telco powered stuff!

The new CCR-1036es, do they use soldered-in RAM or DIMMs or something else?
by pants6000
Fri Nov 02, 2018 5:43 pm
Forum: General
Topic: Feature requests
Replies: 1160
Views: 208014

Re: Feature requests

Actual tcpdump.

I know and use the existing local and remote sniffing tools, but they are not a satisfying replacement for a quick and simple "tcpdump -X" from the CLI.
by pants6000
Wed Oct 03, 2018 11:16 pm
Forum: RouterBOARD hardware
Topic: mikrotik LAN tester?
Replies: 3
Views: 564

Re: mikrotik LAN tester?

Fine for me, such things won't get very far with The Boss and "techs", though, who are not particularly technical. Want something that I can just say "buy 10 of these" and be done with it. Such things exist but they are either very pricey or of questionable... everything. Perhaps Mikrotik could do b...
by pants6000
Wed Oct 03, 2018 8:35 pm
Forum: RouterBOARD hardware
Topic: mikrotik LAN tester?
Replies: 3
Views: 564

mikrotik LAN tester?

How about a little hand-held box with a touch-screen and ethernet port for network testing? Test/display DHCP, PPPOE, etc., along with basic MII info and stats? Bandwidth test? POE testing/info? Really it'd just be stuffing a ROS router into an appropriate box with a battery, and some UI work for th...
by pants6000
Thu Sep 27, 2018 12:36 am
Forum: Announcements
Topic: v6.40.9 [bugfix] is released!
Replies: 56
Views: 15224

Re: v6.40.9 [bugfix] is released!

Possible bug:
I have installed a fresh CHR with 6.40.9; the SIP helper port config is completely missing in webfig. It is present (and was enabled by default) in the ROS cli.
by pants6000
Wed Aug 09, 2017 9:59 pm
Forum: General
Topic: Feature request Evolution Nstreme
Replies: 6
Views: 1022

Re: Feature request Evolution Nstreme

Try disabling CSMA if you haven't:
/interface wireless nstreme
set wlan1 disable-csma=yes enable-nstreme=yes
The fine manual suggests that NV2 disables it automatically.
by pants6000
Fri May 19, 2017 8:11 am
Forum: Announcements
Topic: v6.37.5 [bugfix] is released!
Replies: 35
Views: 13384

Re: v6.37.5 [bugfix] is released!

'export' command is not including the wireless SSID as expected on RBSXTG-5HPnD-HGr2 with an nstreme network configured/connected/working. /interface wireless set [ find default-name=wlan1 ] band=5ghz-onlyn channel-width=20/40mhz-Ce country="united states" disabled=no \ frequency=auto frequency-mode...
by pants6000
Sat Nov 19, 2016 12:37 am
Forum: General
Topic: User with default Safe Mode
Replies: 16
Views: 8435

Re: User with default Safe Mode

I think this would be an awesome feature!
by pants6000
Mon Mar 28, 2016 8:28 pm
Forum: General
Topic: Feature Request : DSCP on DHCP packets
Replies: 17
Views: 3927

Re: Feature Request : DSCP on DHCP packets

+1, IMHO, DHCP traffic should probably be marked as high-priority regardless of (kinda stupid) ISP requirement.
by pants6000
Wed Feb 24, 2016 7:40 am
Forum: General
Topic: Feature request for v7.x
Replies: 269
Views: 63650

Re: Feature request for v7.x

A source-address option for bandwidth test would be nice!
by pants6000
Wed Feb 24, 2016 3:08 am
Forum: Announcements
Topic: v6.32.4 [bugfix] is released!
Replies: 24
Views: 13070

Re: v6.32.4 [bugfix] is released!

FWIW, working beautifully on my 951Ui-2HnD at home. Don't see an inordinate number of sector writes, either.
by pants6000
Thu Feb 18, 2016 3:23 am
Forum: General
Topic: 6.16 import stops when there is a duplicate entry
Replies: 15
Views: 6688

Re: 6.16 import stops when there is a duplicate entry

If you pay attention to what line of the config it stopped on, you can continue the import with "import from-line=", just increment the line number that it stopped on by 1.

But something like "continue import on error" would be a nice feature. +1
by pants6000
Thu Jan 28, 2016 3:13 am
Forum: RouterBOARD hardware
Topic: CCR - Secondary PSU
Replies: 58
Views: 21337

Re: CCR - Secondary PSU

Gonna resurrect this thread again... I got a CCR-1036 and the secondary power supply connector is not actually installed on the board, though I can see where it obviously goes. Other than having no connector, will the secondary supply work on the CCR-1036 as it does the other CCRs?
by pants6000
Tue Jan 12, 2016 6:53 pm
Forum: RouterBOARD hardware
Topic: regular (non +) SFPs in CCR1036-8G-2S+EM SFP+ ports -- will it work?
Replies: 2
Views: 489

Re: regular (non +) SFPs in CCR1036-8G-2S+EM SFP+ ports -- will it work?

Ahh, didn't see that when I was searching before... gonna order one now. Thanks!
by pants6000
Tue Jan 12, 2016 5:27 pm
Forum: RouterBOARD hardware
Topic: regular (non +) SFPs in CCR1036-8G-2S+EM SFP+ ports -- will it work?
Replies: 2
Views: 489

regular (non +) SFPs in CCR1036-8G-2S+EM SFP+ ports -- will it work?

Just want to confirm this before I spend my boss's money on one... thanks!
by pants6000
Fri Dec 04, 2015 7:32 pm
Forum: General
Topic: Feature requests
Replies: 1160
Views: 208014

Re: Feature requests

Being able to set the RADIUS source IP to an interface instead of an explicit IP address would be useful... for me, at least! We have ROS boxen that speak RADIUS over a VPN to our freeradius servers; if I could set the RADIUS request source IP to the VPN interface, it would make for simpler "cookie ...
by pants6000
Tue Aug 04, 2015 3:14 am
Forum: General
Topic: CCR model suggestion
Replies: 2
Views: 445

CCR model suggestion

Something like one of the 1016 or 1036 boards that can take lots of RAM, but in a chassis with dual power supplies. Ideally one would just get a 1072 for such features, but the ~$1k price point is a much easier sell to stingy bosses than the $3k price point, especially if I want several (or more :D ...
by pants6000
Thu Jul 23, 2015 8:17 am
Forum: General
Topic: CCR 1036- Max number of PPPoE Support
Replies: 10
Views: 2442

Re: CCR 1036- Max number of PPPoE Support

What happens if we leave 2 PPPoE servers (CCRs) on the same L2 network ? Does the lowest load server accepts the incoming pppoe sessions faster than the one with more load ? Do they naturally balance each other ? I have done this (with other routers) and yes, it works that way, more or less. The cl...
by pants6000
Thu Jul 23, 2015 8:09 am
Forum: General
Topic: DNS is changing to 195.3.144.115
Replies: 6
Views: 657

Re: DNS is changing to 195.3.144.115

Do you have UPNP enabled on these routers?
by pants6000
Thu Jul 23, 2015 8:04 am
Forum: General
Topic: Blocking non-DHCP addressses
Replies: 2
Views: 353

Re: Blocking non-DHCP addressses

Check this out, it might work for you:
http://wiki.mikrotik.com/wiki/How_to_bl ... e_firewall
by pants6000
Thu Jul 16, 2015 4:42 am
Forum: Announcements
Topic: v6.30.x bugfix release
Replies: 136
Views: 33688

Re: v6.30.1 bugfix release

Does "bug fixes" include security issues? If so, how long will a given release be supported?
by pants6000
Mon Jul 06, 2015 8:47 am
Forum: General
Topic: Problem with router with new ISP bandwith Movistar in Spain to 300 Mb for download fasttrack work wosrst
Replies: 71
Views: 11988

Re: Problem with router with new ISP bandwith Movistar in Spain to 300 Mb for download fasttrack work wosrst

Also if your modem offers "ppp-ip extension", you should definitely try that--it will terminate the PPPOE session on the modem and bridge (well, not really bridge but the idea is the close enough) the IP data to the LAN port. That will relieve your Mikrotik from dealing with PPPOE so it can use the ...
by pants6000
Mon Jul 06, 2015 8:24 am
Forum: General
Topic: TRUNK over Eoip tunnel
Replies: 6
Views: 2833

Re: TRUNK over Eoip tunnel

It's kind of gross, but you could set up a port with your trunks on it and plug it into another port on the same box that did the EOIP tunneling...
by pants6000
Wed Jul 01, 2015 8:00 am
Forum: General
Topic: Accessing 2 separate businesses on same ISP, same subnet, blocked.
Replies: 2
Views: 527

Re: Accessing 2 separate businesses on same ISP, same subnet, blocked.

So it sounds like though you're in the same same IP subnet, you don't actually have a real L2 path between each other--it's probably vlan-per-customer, and the routes are /32s pointed at q-in-q interfaces. As a result, your ARP requests for the "other side" go unheard. If that's the case, you're doi...
by pants6000
Thu Jun 25, 2015 9:16 pm
Forum: General
Topic: DNS Record Type Request
Replies: 16
Views: 8244

Re: DNS Record Type Request

+1 I use a whole special PC (+ UPS & switch) with Linux & tinydns for that important task... but this is MINI-task and totally overkill for my up to 10 lines of DNS config. Would be great feature to little Mikrotik boxes. Not as simple but I think metarouter + openwrt could replace your linux box i...
by pants6000
Wed Jun 24, 2015 7:09 am
Forum: RouterBOARD hardware
Topic: RB2011UAS Console Port to Cisco SW
Replies: 6
Views: 2274

Re: RB2011UAS Console Port to Cisco SW

Have you tried a regular straight-through cat5?
by pants6000
Mon Jun 08, 2015 8:29 am
Forum: General
Topic: FT232 works with RB750UP
Replies: 2
Views: 553

Re: FT232 works with RB750UP

I'm curious, how are you using the RB to access the TTL? I have a few highway signs that use serial to ethernet interfaces, plus a RB. I would love to be able to use the RB's USB port and drop one more device.
Check this out: http://wiki.mikrotik.com/wiki/Manual:Port#Remote_Access
by pants6000
Thu Apr 30, 2015 8:23 am
Forum: General
Topic: Looking for contractor
Replies: 2
Views: 584

Re: Looking for contractor

Tell us more, won't you?
by pants6000
Thu Apr 30, 2015 8:12 am
Forum: General
Topic: Version 6.27 software?
Replies: 4
Views: 776

Re: Version 6.27 software?

Where can we download version 6.27 software for several of our PPC and Mipsbe devices?
http://download2.mikrotik.com/routeros/ ... e-6.27.npk
http://download2.mikrotik.com/routeros/ ... c-6.27.npk

Yay for sensible/predictable URLs!
by pants6000
Sat Mar 21, 2015 6:25 am
Forum: General
Topic: CCR-1036 limitations
Replies: 8
Views: 2129

Re: CCR-1036 limitations

Maybe your conn. tracking table is filling up or something similar? Try turning the values in ip/firewall/connections/tracking down, especially the tcp established timeout.
by pants6000
Fri Mar 06, 2015 7:26 am
Forum: General
Topic: Prioritize ACK frames over traffic in ADSL environment
Replies: 1
Views: 1237

Re: Prioritize ACK frames over traffic in ADSL environment

I mangle tcp packets with the ack flag set and size < 64, then put those high up in my queue tree, which has an upload bandwidth slightly lower than the actual speed so as to avoid drops/buffering by the modem. Try this on: /ip firewall mangle add action=mark-packet chain=forward new-packet-mark=ack...
by pants6000
Wed Mar 04, 2015 7:28 pm
Forum: General
Topic: Firewall issues with RouterOS and VoIP system
Replies: 13
Views: 2498

Re: Firewall issues with RouterOS and VoIP system

Well, let's see what that capture looks like when you can get one... and us seeing as much of "/ip firewall export" as you're comfortable with may be helpful as well.
by pants6000
Wed Mar 04, 2015 6:45 pm
Forum: General
Topic: Firewall issues with RouterOS and VoIP system
Replies: 13
Views: 2498

Re: Firewall issues with RouterOS and VoIP system

Your ISP (or modem?) is giving you an RFC1918 "fake" IP, which is icky at best. I wonder if something upstream if you is at fault here... any chance of getting a real IP on your 'tik?
by pants6000
Wed Mar 04, 2015 5:41 pm
Forum: General
Topic: Firewall issues with RouterOS and VoIP system
Replies: 13
Views: 2498

Re: Firewall issues with RouterOS and VoIP system

Can you get a packet capture of this happening for us to ogle?
by pants6000
Wed Mar 04, 2015 7:11 am
Forum: General
Topic: Firewall issues with RouterOS and VoIP system
Replies: 13
Views: 2498

Re: Firewall issues with RouterOS and VoIP system

Have you tried turning SIP ALG off in IP/firewall/service ports? Just disable the 'sip' entry on port 5060.
by pants6000
Wed Feb 25, 2015 8:48 am
Forum: General
Topic: VoIP loses registration with ADSL
Replies: 5
Views: 868

Re: VoIP loses registration with ADSL

Are your ADSL modems also routers or are they just bridges?
by pants6000
Tue Feb 24, 2015 8:34 pm
Forum: General
Topic: Feature requests
Replies: 1160
Views: 208014

Re: Feature requests

PPTP/PPPOE interfaces (all PPP? more?) are disconnected then re-connected when clicking "OK" on their /webfig/#Interfaces.Interface page, even if nothing has changed. It probably shouln't do that.
by pants6000
Wed Feb 18, 2015 3:22 am
Forum: General
Topic: Feature requests
Replies: 1160
Views: 208014

Re: Feature requests

I've got some: Configurable view of ip/firewall fields in webfig like in winbox (I really could use to see the "address list" fields in the list!) text config export from webfig's file menu per-interface RPF & RPF logging "safe mode by default" option so I can *never* be locked out of a remote route...
by pants6000
Mon Feb 16, 2015 9:03 am
Forum: General
Topic: Prevent accidential disabling of interface
Replies: 3
Views: 728

Re: Prevent accidential disabling of interface

It'd be cool if there was a way that Safe Mode could be configured to be enabled from the very beginnig of a session, and you'd have to turn it off intentionally if you wanted/needed to (call it "cat mode".)
by pants6000
Thu Feb 12, 2015 7:45 pm
Forum: General
Topic: ROS DSCP -> COS mapping
Replies: 0
Views: 356

ROS DSCP -> COS mapping

Is there a way to see/change the DSCP to 802.1p COS map? Specifically I'd like DSCP 46 to map to COS 5 instead of COS 6.
by pants6000
Fri Feb 06, 2015 7:40 am
Forum: General
Topic: RouterOS v6.26!
Replies: 72
Views: 24332

Re: RouterOS v6.26!

[admin@HGW] > system routerboard print routerboard: yes model: 951Ui-2HnD serial-number: XXXXXXXXXXXX current-firmware: 3.22 upgrade-firmware: 3.22 [admin@HGW] > system health print [admin@HGW] > ======================================= [admin@hq-ccr1] > system routerboard print routerboard: yes mode...
by pants6000
Sun Feb 01, 2015 8:56 am
Forum: General
Topic: IPSec - Will RouterOS copy QoS-flag (DSCP/TOS)
Replies: 1
Views: 856

Re: IPSec - Will RouterOS copy QoS-flag (DSCP/TOS)

A little late here... but in my testing (just now, on 6.25 between two CCRs), ROS does indeed copy the original DSCP value to the new header. You can also mangle it like any other traffic if you need to set/change the value. Lovely!
by pants6000
Tue Jan 20, 2015 9:12 am
Forum: General
Topic: RouterOS v6.25
Replies: 110
Views: 32165

Re: RouterOS v6.25

*) improved boot times;
Reboot dropped from 42 to 32 seconds on my RB951Ui! Sweet!
by pants6000
Sun Nov 30, 2014 2:57 am
Forum: Beginner Basics
Topic: Whole subnet automatically on VPN
Replies: 6
Views: 1394

Re: Whole subnet automatically on VPN

No, this config is for doing it in a routed manner. Your 'tiks DHCP server will do its usual thing, using local IP addresses, and the magling and routing will select and send the traffic you want over the VPN. I'm not sure that you can bridge over PPTP like that.
by pants6000
Sat Nov 29, 2014 8:26 am
Forum: Beginner Basics
Topic: different gateways for Vlans
Replies: 2
Views: 1410

Re: different gateways for Vlans

Marking packets and then routing based on the mark is what you want, I think: ip firewall mangle add action=mark-routing chain=prerouting new-routing-mark=use-artgw src-address=192.168.10.0/24 ip route add distance=1 gateway=192.168.0.253 routing-mark=use-artgw ip firewall mangle add action=mark-rou...
by pants6000
Sat Nov 29, 2014 8:20 am
Forum: Beginner Basics
Topic: Whole subnet automatically on VPN
Replies: 6
Views: 1394

Re: Whole subnet automatically on VPN

You should be able to just route whatever you want out your pptp connection, something like this: ip firewall mangle add action=mark-routing chain=prerouting new-routing-mark=use-vpn src-address=10.0.0.0/8 ip route add distance=1 gateway=pptp-server routing-mark=use-vpn Your pptp server will either ...
by pants6000
Tue Nov 18, 2014 8:05 am
Forum: General
Topic: 6.22 released!
Replies: 151
Views: 54818

Re: 6.22 released!

FWIW, IPv6 seems to be working fine for me on 6.22.
by pants6000
Mon Nov 17, 2014 7:44 pm
Forum: General
Topic: winbox/linux/wine - can I use interfaces other than eth0?
Replies: 0
Views: 593

winbox/linux/wine - can I use interfaces other than eth0?

Subect really nails it. Is there a way to get winbox running on linux under wine to use interfaces other than eth0?
by pants6000
Fri Nov 14, 2014 11:47 pm
Forum: RouterBOARD hardware
Topic: X86 Server performance
Replies: 4
Views: 2669

Re: X86 Server performance

What kind of load did you have at 20% CPU load? How does CPU load scale with forwarding load?
by pants6000
Fri Nov 07, 2014 6:24 pm
Forum: General
Topic: v6.21.1 released
Replies: 112
Views: 27548

Re: v6.21.1 released

Using webfig on 6.20, I can't correctly add a new DHCP network in IP/dhcp server/networks. The only field that will stay populated is the address field, the rest are cleared when I press apply. Tried from two different browsers. CLI/winbox work fine.
by pants6000
Thu Nov 06, 2014 9:46 pm
Forum: RouterBOARD hardware
Topic: -48vdc router
Replies: 12
Views: 2219

Re: -48vdc router

found the thread http://forum.mikrotik.com/viewtopic.php?f=3&t=89246&hilit=psu+ccr Sweet... so what CCR models would that work on? Could one replace the single PS of the 1009-8G-1S with one of these? Or both PSes in a dual-PS model? (My boss is *very* telco-oriented, I think this just sold him on a...
by pants6000
Wed Nov 05, 2014 11:30 pm
Forum: Beginner Basics
Topic: VLAN Help, or, why is mikrotik VLAN so weird!!
Replies: 9
Views: 5272

Re: VLAN Help, or, why is mikrotik VLAN so weird!!

Yeah, the web interface in particular is pretty starkly commented/annotated in a lot of places. In this case (just to make it weirder?), if you want to do a qinq stack of VLANs with the outer ethertype of 0x8100, you don't use the "service tag" option--rather just add the inner VLAN as usual, specif...
by pants6000
Wed Nov 05, 2014 8:20 am
Forum: Beginner Basics
Topic: VLAN Help, or, why is mikrotik VLAN so weird!!
Replies: 9
Views: 5272

Re: VLAN Help, or, why is mikrotik VLAN so weird!!

"Use service tag" is for 802.1ad stacked vlans, and sets the outer tag ethertype to 0x88a8.
by pants6000
Sun Nov 02, 2014 8:25 pm
Forum: RouterBOARD hardware
Topic: -48vdc router
Replies: 12
Views: 2219

Re: -48vdc router

++ here as well!
by pants6000
Wed Oct 29, 2014 7:23 am
Forum: Beginner Basics
Topic: Is there a way to do basic logging of addresses? upgrade too
Replies: 10
Views: 1017

Re: Is there a way to do basic logging of addresses? upgrade

Just go grab the right file, upload it to the router, reboot... easy! There's a firmware upgrade that you can do after the OS upgrade (from system/routerboard) that comes bundled with the OS package.
by pants6000
Wed Oct 29, 2014 6:35 am
Forum: Beginner Basics
Topic: Is there a way to do basic logging of addresses? upgrade too
Replies: 10
Views: 1017

Re: Is there a way to do basic logging of addresses? upgrade

For logging, you could use torch for real-time info, or put a firewall rule on the wifi interface with a target of LOG and stash that somewhere (hopefully not on your flash!) with syslog, or use netflow export, or do the sniffing thing... and probably about half a dozen more. 5.26 is at the end of d...
by pants6000
Fri Oct 24, 2014 11:04 pm
Forum: Beginner Basics
Topic: VPN to other location (pptp)
Replies: 10
Views: 1958

Re: VPN to other location (pptp)

If you can put routes in the NAS, put in a route to 192.168.88.0/24 with the Mikrotik's VPN interface (10.10.10.1) as the next-hop.

It's no big deal here though, since it's unlikely the NAS will have to open connections to machines on your LAN.
by pants6000
Fri Oct 24, 2014 7:48 pm
Forum: Beginner Basics
Topic: VPN to other location (pptp)
Replies: 10
Views: 1958

Re: VPN to other location (pptp)

Sweet! It's kind of a dirty hack but it'll work for this just fine.
by pants6000
Fri Oct 24, 2014 8:42 am
Forum: Beginner Basics
Topic: VPN to other location (pptp)
Replies: 10
Views: 1958

Re: VPN to other location (pptp)

The VPN server probably doesn't have a correct route back to your LAN at 192.168.88.1. You might try setting up a rule on the mikrotik to masqurerade connections going out the pptp interface, that way the VPN server doesn't need a route back to you.
by pants6000
Wed Oct 15, 2014 6:37 am
Forum: RouterBOARD hardware
Topic: RB2011 BGP
Replies: 3
Views: 1141

Re: RB2011 BGP

What's your CPU usage like? Which ethernet ports are you using?
by pants6000
Sat Oct 04, 2014 12:19 am
Forum: General
Topic: Mikrotik routers unsuitabke replacement where sip handsets?
Replies: 2
Views: 722

Re: Mikrotik routers unsuitabke replacement where sip handse

Are you accepting "established" and "related" connections in the forward chain?

Can you post your config?

What ROS version are you using?
by pants6000
Fri Sep 26, 2014 6:01 am
Forum: General
Topic: 6.20 release candidate special version
Replies: 36
Views: 20197

Re: 6.20 release candidate special version

NM my firefox problem, clearing the cache fixed it! (duh!)
by pants6000
Fri Sep 26, 2014 5:37 am
Forum: General
Topic: 6.20 release candidate special version
Replies: 36
Views: 20197

Re: 6.20 release candidate special version

I was feeling adventurous tonight and upgraded my 751G-2HnD from 5.26. I can't login to webfig with firefox now, I get an "ERROR: Internal Server Error". Chromium works, winbox works, telnet/ssh works... tried another reboot and resetting the password, no luck. My GRE tunnel (to a C6500) seems to be...