Community discussions

Search found 17 matches

by mlow
Thu Aug 09, 2018 3:10 pm
Forum: General
Topic: Feature requests
Replies: 1159
Views: 207370

Re: Feature requests

I'm throwing this on the list a second time. Support for RFC6939, i.e, the client link-layer address option, enabling a DHCPv6 relay to pass a client's link-layer address (MAC address) as an option (number 79) to a DHCPv6 server, whereupon the server can use that information for static lease reserva...
by mlow
Tue Mar 14, 2017 11:06 pm
Forum: General
Topic: Limiting IPv4 and IPv6 traffic together
Replies: 0
Views: 253

Limiting IPv4 and IPv6 traffic together

Hi, I want to deliver dual stack IPv4/IPv6 service to customers. I'm wondering how we'd limit both IPv4 and IPv6 traffic together - one obvious solution would be an interface queue on the interface they're connected to. however I'd prefer to do the rate limiting on our central CCR1009, which means l...
by mlow
Fri Mar 10, 2017 11:43 pm
Forum: General
Topic: Feature requests
Replies: 1159
Views: 207370

Re: Feature requests

RFC6939 for the DHCPv6 relay.
Would be extremely useful for doing MAC address based DHCPv6 reservationsRFC4649
by mlow
Fri Mar 10, 2017 6:28 pm
Forum: General
Topic: 1200 mangle rules, 300 simple queues
Replies: 0
Views: 274

1200 mangle rules, 300 simple queues

Hi, If I had for example 1 mangle rule to 'mark-connection' and another to 'mark-packet' in both IPv4 and IPv6 firewall (giving the same packet-mark in each), and a simple-queue set up to rate limit that packet-mark, and then did that for every one of my 300 users: does anyone how a CCR1009 will han...
by mlow
Fri Mar 10, 2017 5:24 am
Forum: General
Topic: Queue + mangle performance
Replies: 0
Views: 252

Queue + mangle performance

Hi all, I am looking to use Mikrotik to shape my user's IPv4 and IPv6 traffic. I want user traffic to be limited at our head end router and not at the CPE - CPE is not practical for us as we often serve multiple customers behind a dumb switch behind a single CPE - the CPE only allows interface based...
by mlow
Wed Feb 01, 2017 10:06 pm
Forum: Forwarding Protocols
Topic: Forcing VPLS to fragment on egress
Replies: 3
Views: 648

Re: Forcing VPLS to fragment on egress

Sure does!

The answer was to /interface vpls set <interface> use-control-word=yes on both routers
use-control-word=default is the default and that wasn't doing it.
by mlow
Wed Feb 01, 2017 1:20 am
Forum: Forwarding Protocols
Topic: Forcing VPLS to fragment on egress
Replies: 3
Views: 648

Forcing VPLS to fragment on egress

Hi, I have an existing VPLS network that is working great with a MTU of 1540 active on all my bridge links enabling full-sized 1514 byte ethernet frames to be encapsulated in VPLS tunnels. I just acquired a new leased L2 link between two points in my network over an infrastructure that currently onl...
by mlow
Mon Nov 21, 2016 12:47 am
Forum: General
Topic: Duplicate Address Detection Proxy
Replies: 1
Views: 688

Duplicate Address Detection Proxy

Hi all, I'm wondering if RouterOS already has the functionality of https://tools.ietf.org/html/rfc6957 built in? I'm in the situation described by this RFC, and I'll bet there's a lot of other RouterOS users that are too. It basically turns your router (which is first hop away from customer gear) to...
by mlow
Sun Sep 11, 2016 2:36 am
Forum: Wireless Networking
Topic: Help with Optimizing local WISP
Replies: 14
Views: 1718

Re: Help with Optimizing local WISP

SO! How about a screenshot of the MAIN tab of the UBNT radios (better yet post it on the UBNT forums)? I really don't expect it to be an issue with the configuration of routing, briding, NAT, etc. The 1100AHx2 should have no problem bridging 500Mbps. BUT IT IS POINTLESS TO USE A 1100AHx2 AS A BRIDGE...
by mlow
Mon May 23, 2016 10:12 pm
Forum: General
Topic: ARP "respond-to" IP address FEATURE REQUEST
Replies: 4
Views: 1043

Re: ARP "respond-to" IP address FEATURE REQUEST

Bumping since I posted on a quiet day and may not have been seen..
The "preferred src" address is a viable option if it also set the arp "reply to" address used when sending ARP requests for those routes that don't actually have an IP on the interface.
by mlow
Mon May 23, 2016 12:23 am
Forum: General
Topic: ARP "respond-to" IP address FEATURE REQUEST
Replies: 4
Views: 1043

Re: ARP "respond-to" IP address FEATURE REQUEST

Another option for me would probably be just to configure to VPN to exclude routing this one particular "lowest IP" over it, so ARPs can be responded to. I'm gonna try that next.. That worked.. but I still desire some way to set the "reply to" address. I use the same traffic redirection scheme ment...
by mlow
Mon May 23, 2016 12:09 am
Forum: General
Topic: ARP "respond-to" IP address FEATURE REQUEST
Replies: 4
Views: 1043

Re: ARP "respond-to" IP address FEATURE REQUEST

*edit* sorry for the long post, might be worth the read thou :) I just tried that, and ARPs are still being sent with the lowest IP of the bridge as the "reply to" address :( . So, since the "reply to" address being used is an IP routed over my VPN, a minute or two (when the mtik's ARP timeout expir...
by mlow
Fri May 20, 2016 9:51 pm
Forum: General
Topic: ARP "respond-to" IP address FEATURE REQUEST
Replies: 4
Views: 1043

ARP "respond-to" IP address FEATURE REQUEST

Hi guys, I'm gonna try to explain this as simply as possible (for you and me) :-D Typically an ARP request is sent out with the "reply to" address set to the IP of the interface (or in the case of multiple subnets on a single interface, from the IP of the interface that is in the same subnet as the ...
by mlow
Fri Feb 05, 2016 3:07 am
Forum: General
Topic: NAT logging with netflow9
Replies: 4
Views: 2808

Re: NAT logging with netflow9

I'm willing to share some NodeJs code I made today, it uses the library that you linked. This is my first ever Nodejs code.. It simply logs all NAT translations into a mysql table with schema: CREATE TABLE `nat_translations` ( `unixTime` int(10) unsigned NOT NULL, `lanSrcAddr` int(10) unsigned NOT N...
by mlow
Sat Jan 09, 2016 9:01 am
Forum: General
Topic: NAT logging with netflow9
Replies: 4
Views: 2808

Re: NAT logging with netflow9

I've heard of SiLK and currently use a great tool that is compatible with it: flow-viewer

Time to look into some SiLK 8)
by mlow
Mon Nov 03, 2014 11:40 pm
Forum: Forwarding Protocols
Topic: [solved] Network architecture (MPLS/VPLS)
Replies: 1
Views: 1230

Re: Network architecture (MPLS/VPLS)

Just wanted to post that I have figured this out, using the equivalent of cisco's "local proxy arp" feature. In my original post I mentioned wanting L2 communication between customers. That was wrong, I want L3 (IP) communication to be allowed and all L2 traffic to be blocked from traveling between ...
by mlow
Thu Oct 30, 2014 11:04 pm
Forum: Forwarding Protocols
Topic: [solved] Network architecture (MPLS/VPLS)
Replies: 1
Views: 1230

[solved] Network architecture (MPLS/VPLS)

Hello! I'm new here, but have been lurking the forums for a couple of weeks now.. I'm new to this kind of stuff in general, I don't have any hands-on experience with the actual design and implementation of production networks.. I've just read a lot of theory over the path handful of months. I've set...