Community discussions

Search found 48 matches

by suntelSean
Tue Feb 23, 2016 6:10 am
Forum: General
Topic: Known issues and bugs - a list
Replies: 283
Views: 111628

Re: Known issues and bugs - a list

on 6.34x

On RB2011, firmware shows 3.18 (even though I know I've updated to 3.24 before).
Tried to update again, and console shows firmware updated, but Winbox and console show 3.18 after reboot.
by suntelSean
Mon Oct 12, 2015 9:01 pm
Forum: RouterBOARD hardware
Topic: 850Gx2 recovery
Replies: 4
Views: 669

850Gx2 recovery

Factory reset and then Netinstall.


Sent from my iPhone using Tapatalk
by suntelSean
Thu Jul 30, 2015 9:17 pm
Forum: General
Topic: I set up a 2-WAN interface on Mikrotik RB750
Replies: 7
Views: 1375

Re: I set up a 2-WAN interface on Mikrotik RB750

The problem (fall off "Net") arises when I turn off the "masquerade" and prescribe: chain = srcnat action = src-nat to-addresses = 1.1.1.5 src-address = 192.168.1.0 / 24 out-interface = ether1 log = no log-prefix = "" And if you do the same on the WAN2 "srcnat" works (works, "Net" and your external...
by suntelSean
Thu Jul 30, 2015 5:34 pm
Forum: General
Topic: How to request access to the wiki?
Replies: 0
Views: 309

How to request access to the wiki?

I'd like to add some information/guides that I've learned over the past year to help other new to Mikrotik humans.
by suntelSean
Sat Jul 25, 2015 1:26 am
Forum: General
Topic: Can anyone point me to how to setup a direct IPSEC tunnel?
Replies: 5
Views: 1017

Can anyone point me to how to setup a direct IPSEC tunnel?

So let's say I have 2 mikrotiks R1- 98.98.98.98 on wan 192.168.1.1/24 on eth2 R2- 67.67.67.67 on the wan 192.168.2.1/24 on eth2 And say I see the link established (because I've gotten that far) I have a laptop on each end. 192.168.1.11 and 192.168.2.22 respectively. From each laptop I can ping the o...
by suntelSean
Fri Jul 24, 2015 1:48 am
Forum: General
Topic: Can anyone point me to how to setup a direct IPSEC tunnel?
Replies: 5
Views: 1017

Re: Can anyone point me to how to setup a direct IPSEC tunnel?

Understood, thank you for the explanation.

Do other routers 'route' IPSec tunnels for say site to site communication?

The reason I ask, I need to connect via an IPSec tunnel to an Edgewater networks Edmarc router. It's basically SIP Proxy router.

It only supports IPsec tunnels for site to site.
by suntelSean
Thu Jul 23, 2015 10:02 pm
Forum: General
Topic: Can anyone point me to how to setup a direct IPSEC tunnel?
Replies: 5
Views: 1017

Can anyone point me to how to setup a direct IPSEC tunnel?

I followed the instructions of this link... http://wiki.mikrotik.com/wiki/Routing_through_remote_network_over_IPsec I can see that the IPSec tunnel connection seems to be established, but I can seem to pass traffic to and from the 2 different routers. I'm completely new to IPSec tunnels, and so when...
by suntelSean
Wed Jul 22, 2015 1:26 am
Forum: General
Topic: IPSec tunnel with one end point behind consumer / router
Replies: 0
Views: 362

IPSec tunnel with one end point behind consumer / router

Need assistance setting up an IPSec tunnel with one end point behind consumer nat. Here is a diagram of what I want to accomplish. http://www.gliffy.com/go/publish/image/8568725/L.png I need to register this remote phones over an IPSec tunnel. The main router is an Edgwater Edgemarc router (4550) an...
by suntelSean
Tue May 19, 2015 4:02 am
Forum: Wireless Networking
Topic: Weirdly jumping TX rate and CCQ on a single device
Replies: 2
Views: 1169

Weirdly jumping TX rate and CCQ on a single device

Which wifi package is installed?


Sent from my iPhone using Tapatalk
by suntelSean
Tue May 19, 2015 3:57 am
Forum: The User Manager
Topic: UM v6.28 All messed up (once again)
Replies: 4
Views: 1155

UM v6.28 All messed up (once again)

No loss. Why deploy something that you haven't tested for your needs.

Seriously, if you could do better for cheaper, you would have. You chose Mikrotik because it has the most functionality of the product line vs cost. If you had unlimited money, you'd roll out Cisco.
by suntelSean
Wed May 13, 2015 3:56 am
Forum: RouterBOARD hardware
Topic: RB3011 Block diagram?
Replies: 230
Views: 51414

RB3011 Block diagram?

Where did you pre-order?


Sent from my iPhone using Tapatalk
by suntelSean
Wed May 13, 2015 3:53 am
Forum: Beginner Basics
Topic: can't access my dvr from outsite
Replies: 26
Views: 3662

can't access my dvr from outsite

If i understand good, you have linksys between your DVR. So port 9000 that you sayd must first forward in your linksys, and pointing to IP of Mikrtotik. Then you need to NAT the same port 9000 to 192.168.88.110 on mikrotik. Then your DVR will be accessible from everywhere. Im behind 3 routers, and ...
by suntelSean
Mon May 11, 2015 2:16 am
Forum: Beginner Basics
Topic: can't access my dvr from outsite
Replies: 26
Views: 3662

can't access my dvr from outsite

If your Internet works, it is configured to the public IP unless you're using a 3/4g modem.
Which port is your wan is your wan interface?



Sent from my iPhone using Tapatalk
by suntelSean
Fri May 01, 2015 7:06 pm
Forum: Beginner Basics
Topic: Need little help setting the network
Replies: 11
Views: 973

Re: Need little help setting the network

Also posting a diagram helps.
by suntelSean
Fri May 01, 2015 1:04 am
Forum: General
Topic: NTP Client not working in version 6.24
Replies: 10
Views: 3181

NTP Client not working in version 6.24

Export your NTP settings


Sent from my iPhone using Tapatalk
by suntelSean
Thu Apr 30, 2015 7:51 pm
Forum: Beginner Basics
Topic: RB750 Help - please
Replies: 22
Views: 2508

Re: RB750 Help - please

I'm confused with your screen shots. Which queue is for your own local network? In regards to accessing your cctv dvr, this is a 2-3 step process. 1) First, you need to make sure your dvr has a static ip. If its currently getting its IP from DHCP, go into the DHCP server and right click on the lead ...
by suntelSean
Thu Apr 30, 2015 7:07 pm
Forum: Beginner Basics
Topic: help
Replies: 4
Views: 610

Re: help

Run Winbox, hit "..." button and look for your router. Connect to your router. i am also face this problem plz help in this matter. the router didnot respond and not connect any pc laptop and winbox also plz give me advice how to connect this and reset it. Factor reset using the reset button. With ...
by suntelSean
Thu Apr 30, 2015 7:04 pm
Forum: Beginner Basics
Topic: RB2011 PPTP Help. External users cannot connect
Replies: 2
Views: 579

Re: RB2011 PPTP Help. External users cannot connect

Can you output your entire IP firewall filter?
/ip firewall filter export hide-sensitive
by suntelSean
Thu Apr 30, 2015 10:10 am
Forum: Beginner Basics
Topic: Cannot access MikroTik router from external network. SSH/Winbox/FTP - nothing works
Replies: 19
Views: 9396

Re: Cannot access MikroTik router from external network. SSH/Winbox/FTP - nothing works

Ok, took some time to test and it seems to work. I can winbox over a vpn tunnel to another Mikrotik device. Here are the steps I took. (This assumes you disable your filter drop rules during the VPN creation process so you then know how to filter out unwanted inbound internet traffic later, I'll exp...
by suntelSean
Thu Apr 30, 2015 4:02 am
Forum: Beginner Basics
Topic: Need help with routing and SIP
Replies: 4
Views: 1031

Need help with routing and SIP

Ahh. Yes, if you don't 'remove' the configuration when you first login to it , it'll have nat like a general consumer router.

Congrats on finding the issue!


Sent from my iPhone using Tapatalk
by suntelSean
Thu Apr 30, 2015 3:57 am
Forum: Beginner Basics
Topic: Cannot access MikroTik router from external network. SSH/Winbox/FTP - nothing works
Replies: 19
Views: 9396

Re: Cannot access MikroTik router from external network. SSH/Winbox/FTP - nothing works

Yep, pretty simple. On the 'client side/ ap'...Make sure the tunnel doesn't setup a additional default route. As long as the default route is left alone, literally no unwanted traffic should traverse the tunnel. Once the tunnel is established to the main router, just ssh from the main router to the ...
by suntelSean
Wed Apr 29, 2015 11:18 pm
Forum: Beginner Basics
Topic: Cannot access MikroTik router from external network. SSH/Winbox/FTP - nothing works
Replies: 19
Views: 9396

Re: Cannot access MikroTik router from external network. SSH/Winbox/FTP - nothing works

Give a whirl. If you have problems we can test between your main router and mine.
by suntelSean
Wed Apr 29, 2015 11:07 pm
Forum: Beginner Basics
Topic: RB750 Help - please
Replies: 22
Views: 2508

Re: RB750 Help - please

Ive also noticed this in the log... seems as though some type of ssh hack ? you seen this before ? Screen Shot 2015-04-29 at 7.30.31 PM.png In regards to the p2p blocking, can you to go the terminal, and do "/ip firewall mangle export" so I can see your mangle rules. Also export your filter rule "i...
by suntelSean
Wed Apr 29, 2015 10:56 pm
Forum: Beginner Basics
Topic: RB750 Help - please
Replies: 22
Views: 2508

Re: RB750 Help - please

all sorted thanks. is 19 and 20 necessary as i could just leave it to unlimited surely ? really appreciate the help, thanks again !! In regards to 19 and 20, this is how you reserve your own bandwidth. With simple queues, if my memory serves me, you cannot save the simple queue entry if you don't c...
by suntelSean
Wed Apr 29, 2015 10:18 pm
Forum: Beginner Basics
Topic: Cannot access MikroTik router from external network. SSH/Winbox/FTP - nothing works
Replies: 19
Views: 9396

Re: Cannot access MikroTik router from external network. SSH/Winbox/FTP - nothing works

I only need to be able to access one device at the time and switch between them at any given moment. Do you know of any tutorial of how to do it with MikroTik routers on both ends? It's not so much the using only 1 connection at one time, but you have to keep the tunnel up all the time for the conn...
by suntelSean
Wed Apr 29, 2015 3:39 pm
Forum: Beginner Basics
Topic: RB750 Help - please
Replies: 22
Views: 2508

Re: RB750 Help - please

Ahh... sorry about that. Instead of pre-routing, use the forward chain. I was up late typing it all out and forgot that if you're matching both the in/output, its forward chain.
by suntelSean
Wed Apr 29, 2015 3:35 pm
Forum: Beginner Basics
Topic: Cannot access MikroTik router from external network. SSH/Winbox/FTP - nothing works
Replies: 19
Views: 9396

Re: Cannot access MikroTik router from external network. SSH/Winbox/FTP - nothing works

Should be no problem. You should probably invest in a higher end RB if you're going to have a few dozen tunnels open at once. The RB850Gx2 is probably the best choice / value. There's a new RB coming out later this year (in a month or 2), the RB3011. An update to the RB2011, with all 10 Gbit ether p...
by suntelSean
Wed Apr 29, 2015 9:09 am
Forum: Beginner Basics
Topic: RB750 Help - please
Replies: 22
Views: 2508

Re: RB750 Help - please

p.s. I'm unsure how long the diagram will be online, so you may want to download it.
by suntelSean
Wed Apr 29, 2015 9:02 am
Forum: Beginner Basics
Topic: RB750 Help - please
Replies: 22
Views: 2508

Re: RB750 Help - please

I've drawn a diagram on how I would set this up. http://www.gliffy.com/go/publish/image/7955583/L.png Now, with this said, your neighbors will need to trust you and they'll need to turn of DHCP on their AP/Routers, and make sure that your feed to them is on a switch port, not a wan port of the AP/Ro...
by suntelSean
Wed Apr 29, 2015 1:44 am
Forum: Beginner Basics
Topic: Can't open port. Firewall issue?
Replies: 9
Views: 2757

Re: Can't open port. Firewall issue?

Then use this and change the port as you need. add action=dst-nat chain=dstnat dst-port=32400 in-interface=ether1-gateway \ protocol=tcp to-addresses=192.168.88.169 How I started is first, set up your NAT rules, THEN setup your filter rules. (turn them all off initially) This way you can see things ...
by suntelSean
Wed Apr 29, 2015 1:40 am
Forum: Beginner Basics
Topic: Mikrotik as layer 3 switch?
Replies: 1
Views: 1350

Re: Mikrotik as layer 3 switch?

I created a diagram of how I would do it with 1 router. http://www.gliffy.com/go/publish/image/7953623/L.png On the mikrotik router, create 2 Mangle rules. /ip firewall mangle add action=mark-routing chain=prerouting new-routing-mark=PCRoute src-address=\ 10.10.10.0/24 /ip firewall mangle add action...
by suntelSean
Wed Apr 29, 2015 1:11 am
Forum: Beginner Basics
Topic: Cannot access MikroTik router from external network. SSH/Winbox/FTP - nothing works
Replies: 19
Views: 9396

Re: Cannot access MikroTik router from external network. SSH/Winbox/FTP - nothing works

What do you have on the other end to act as a VPN server? Also, does it have a static ip or DDNS setup? Right now I don't have anything. I just figured out few minutes ago that my mobile carrier doesn't assign public IPs and a quick google search pointed me in the direction of VPNs. I really know n...
by suntelSean
Wed Apr 29, 2015 1:08 am
Forum: Beginner Basics
Topic: Can't open port. Firewall issue?
Replies: 9
Views: 2757

Re: Can't open port. Firewall issue?

OP, Do you just need the NAS to be able to download, or do you need to make it accessible from the outside? If you don't need to make it accessible from the outside, then you don't need to get rid of your forward drop rule. I have a PC that torrents from time to time, and I also run a Plex server. H...
by suntelSean
Wed Apr 29, 2015 1:00 am
Forum: Beginner Basics
Topic: Firewall rules for LAN PCs connected to external switch
Replies: 2
Views: 662

Re: Firewall rules for LAN PCs connected to external switch

What he said^^ If your switch supports VLANs, you can segregate them by however many VLANs (separations) you need. If you're looking for a swiss army knife of mikrotiks, you may want to look at the CRS125-24G-1S-IN. 24 ports. Can be configured as a switch, router, or a combination of both. All ports...
by suntelSean
Wed Apr 29, 2015 12:55 am
Forum: Beginner Basics
Topic: Cannot access MikroTik router from external network. SSH/Winbox/FTP - nothing works
Replies: 19
Views: 9396

Re: Cannot access MikroTik router from external network. SSH/Winbox/FTP - nothing works

Well, I was asking if you needed encryption or any particular mode... but since it doesn't really matter in this scenerio, then a PPP tunnel should do the job.

What do you have on the other end to act as a VPN server? Also, does it have a static ip or DDNS setup?
by suntelSean
Wed Apr 29, 2015 12:50 am
Forum: Beginner Basics
Topic: Need help with routing and SIP
Replies: 4
Views: 1031

Re: Need help with routing and SIP

Also, who provides the E-Lan circuit? If you're paying for the circuit, they should be providing you some basic installation / support test functionality. In theory, if E-lan is setup, you should be able to ping across to each buildings router. I'm a VoIP provider / PBX installer and SIP phones just...
by suntelSean
Wed Apr 29, 2015 12:32 am
Forum: Beginner Basics
Topic: RB750 Help - please
Replies: 22
Views: 2508

Re: RB750 Help - please

Agreed. Also, update Router OS. 5.x is old and is missing some great fixes/features. (such as blocking p2p with a single firewall rule) I'd look into your design plan as well. "the plan is to have my 2 neighbors access internet via my setup" Do you want them to be able to access your own LAN or just...
by suntelSean
Wed Apr 29, 2015 12:23 am
Forum: Beginner Basics
Topic: Cannot access MikroTik router from external network. SSH/Winbox/FTP - nothing works
Replies: 19
Views: 9396

Re: Cannot access MikroTik router from external network. SSH/Winbox/FTP - nothing works

I've just figured out what's wrong... As it turns out my mobile operator doesn't assign public IPs and blocks all the incomming connections with it's firewall. I've heard this can be somehow bypassed using VPN. Does anybdy know what kind of VPN do I need for that and how to configure it in RouterOS...
by suntelSean
Wed Apr 29, 2015 12:15 am
Forum: Beginner Basics
Topic: Testing Cross Route communication
Replies: 6
Views: 882

Re: Testing Cross Route communication

Tested this between 2 pc's on different subnets (with firewall off) and it worked as expected.

Thank you!

I'll pay it forward!
by suntelSean
Tue Apr 28, 2015 3:03 pm
Forum: Beginner Basics
Topic: Testing Cross Route communication
Replies: 6
Views: 882

Testing Cross Route communication

If subnets are located in the same router then routing table is automagically populated with dynamic information coming from address and masks and therefore routing is done internally and only unknown subnets need to be inserted into routing table. Thank you for taking the time to go over static ro...
by suntelSean
Tue Apr 28, 2015 5:40 am
Forum: Beginner Basics
Topic: Testing Cross Route communication
Replies: 6
Views: 882

Re: Testing Cross Route communication

I'm confused... so pardon me if I'm asking anything less than smart. Say this was 2 routers instead of just the one... PC1 - R1 <--> R2 - PC2 If I set up static cross routes on each router, I can get this to work as expected. (Pc's behind each router can communicate/ping one another). Is masquerade ...
by suntelSean
Tue Apr 28, 2015 2:02 am
Forum: Beginner Basics
Topic: Testing Cross Route communication
Replies: 6
Views: 882

Testing Cross Route communication

I'm trying to test cross route communication for personal exploration. Devices: Router: Mikrotik Rb2011 Windows PC (8.1) - 192.168.88.169 Aruba vpn gateway. - 192.168.99.199 Port 1: Wan port to Fios internet Port 2: connected to WinPC Port 3: connected to Aruba gateway. (interface IP 192.168.99.1/24...
by suntelSean
Wed Mar 04, 2015 6:24 pm
Forum: The Dude
Topic: The Dude is dead. Move on.
Replies: 106
Views: 36672

Re: The Dude is dead. Move on.

I would love it if Mikrotik would either update The Dude or release another similar product. The main issue for me with the Dude is how slow the map become when adding more than just a few devices.

That and the email component won't work with authentication, which basically nixes email alerts.
by suntelSean
Sat Jan 10, 2015 11:41 pm
Forum: Announcements
Topic: 6.24 released
Replies: 91
Views: 35176

Re: 6.24 released

Since a year I had a bad idea to change my old HP Proliant with FreeBSD and MPD (PPTP concentrator) with a new ,faboulous and powerfull CCR1016-12G... Tryed all ROs and firmware, but when occur a massive disconnection/reconnection or when some users for a long time reach the speed limit the CCR goe...
by suntelSean
Sat Jan 10, 2015 11:27 pm
Forum: Beginner Basics
Topic: Why is it so hard to set up internet access to Webfig?
Replies: 10
Views: 2771

Re: Why is it so hard to set up internet access to Webfig?

@howdey57
could you export your firewall and nat config, so I can see them? :D
If he doesn't, I can if you need help.
by suntelSean
Sat Jan 10, 2015 1:58 pm
Forum: General
Topic: NTP Client not working in version 6.24
Replies: 10
Views: 3181

Re: NTP Client not working in version 6.24

Works on mine as well (at least in Unicast)
2011UiAS-2HnD Soho unit

I just set the SNTP servers to the IPs of the known NTP servers and voila, insta work.
by suntelSean
Sun Jan 04, 2015 11:43 am
Forum: Scripting
Topic: DIY - Automate DShield Block List W/ Python
Replies: 15
Views: 3925

Re: DIY - Automate DShield Block List W/ Python

The topip list is so simple to parse you may as well do it with scripting alone. Here's one code that I haven't actually tested, but should probably work. /system scheduler add name=DShield_top interval=1d on-event={ :local addressListName "DShield_TOP"; :local addressListTimeout 1d; /tool fetch ke...
by suntelSean
Mon Oct 20, 2014 7:18 am
Forum: General
Topic: Port Forwarding done right?
Replies: 17
Views: 9929

Re: Port Forwarding done right?

For those that are having problems with Plex etc. I'm a newbie to RouterOS, so for the time being I've relied heavily on the RouterOS by Example book. However, as a Plex user myself, I soon found out that just setting up a port forward isn't enough. First in your Filter Rules Also, this MUST be abov...