Community discussions

Search found 100 matches

by spippan
Fri Jan 04, 2019 5:21 pm
Forum: Beginner Basics
Topic: CRS (Cloud Router Switch) - setup wireless with VLAN
Replies: 1
Views: 487

Re: CRS (Cloud Router Switch) - setup wireless with VLAN

...
I can not figure out hot to create an Wireless port (wlan1) to operate in vlanID=100?
..
add a virtual AP which then acts as a "device" like a normal port. handle the virtual AP like your etherX devices.

nb: after adding the virtual AP it appears under your main/master wireless interface
by spippan
Mon Oct 29, 2018 6:46 pm
Forum: Beginner Basics
Topic: Running Netinstall from MacOs using Wine
Replies: 5
Views: 2094

Re: Running Netinstall from MacOs using Wine

also tried this to get working on MacOS X for years....
still no success ...

is there any "official" way (maybe a step-by-step guide for how to build with winebottler) to get NETINSTALL working on Mac OS X?
by spippan
Thu Oct 18, 2018 4:21 pm
Forum: General
Topic: Feature Request: OpenVPN [ovpn] udp tunnels
Replies: 250
Views: 90733

Re: Feature Request: OpenVPN [ovpn] udp tunnels

LZO is deprecated, so you should be asking for LZ4 instead
well ...

Image
by spippan
Thu Oct 18, 2018 4:12 pm
Forum: General
Topic: ** WE WANT A LTE BRIDGE-MODE **
Replies: 80
Views: 22538

Re: ** WE WANT A LTE BRIDGE-MODE **

need working passthrough on a SXT LTE (rOS 6.41.2 stable) --> https://forum.mikrotik.com/viewtopic.php?f=2&t=113562&p=644608#p644608 SXT LTE doesn't have pass-though support. but why? is it a software limitation or is it because of hardware boundaries?? this is a pitty, because the SXT LTE would be...
by spippan
Thu Oct 18, 2018 4:05 pm
Forum: General
Topic: Is it possible to run a script on login?
Replies: 44
Views: 15028

Re: Is it possible to run a script on login?

i don't know if this fits in here correctly .... but, i'm looking for a way to run a comand (or script - in that case with one line) as soon as i login to my MT via SSH i mean i log in and i see the banner and the "/system note" (see below) what i want to display here is the output of "/ppp active p...
by spippan
Fri Oct 05, 2018 9:31 am
Forum: General
Topic: Feature Request: OpenVPN [ovpn] udp tunnels
Replies: 250
Views: 90733

Re: Feature Request: OpenVPN [ovpn] udp tunnels

Hmm, alpha... it looks like we may get something ready for this thread's 10th anniversary. I just hope that other nice OpenVPN features will also make it to the party. LZO compression and SHA2 (SHA512) authentication come to mind... wondering why one would go with ShA512 ... what is the big benefit...
by spippan
Wed Aug 01, 2018 11:21 am
Forum: General
Topic: ** WE WANT A LTE BRIDGE-MODE **
Replies: 80
Views: 22538

Re: ** WE WANT A LTE BRIDGE-MODE **

need working passthrough on a SXT LTE (rOS 6.41.2 stable) --> https://forum.mikrotik.com/viewtopic.php?f=2&t=113562&p=644608#p644608 SXT LTE doesn't have pass-though support. but why? is it a software limitation or is it because of hardware boundaries?? this is a pitty, because the SXT LTE would be...
by spippan
Tue Mar 20, 2018 3:12 pm
Forum: Wireless Networking
Topic: Mikrotik 4G LTE bridge mode?
Replies: 10
Views: 6640

Re: Mikrotik 4G LTE bridge mode?

I've been trying to get hold of a wAP LTE Kit, but no luck yet. I believe it can do bridging, but I can't find a reference now. Here is the current list: https://wiki.mikrotik.com/wiki/Manual:Peripherals#Cellular_modems Look for the Passthrough Support: Y SXT LTE is not going to be supported. I bel...
by spippan
Tue Mar 20, 2018 3:11 pm
Forum: General
Topic: ** WE WANT A LTE BRIDGE-MODE **
Replies: 80
Views: 22538

Re: ** WE WANT A LTE BRIDGE-MODE **

need working passthrough on a SXT LTE (rOS 6.41.2 stable) --> https://forum.mikrotik.com/viewtopic.php?f=2&t=113562&p=644608#p644608 SXT LTE doesn't have pass-though support. but why? is it a software limitation or is it because of hardware boundaries?? this is a pitty, because the SXT LTE would be...
by spippan
Tue Mar 20, 2018 3:00 pm
Forum: Wireless Networking
Topic: Roaming mesh, fast convergence. WDS or AP-AP? Bridging or Routing?
Replies: 1
Views: 848

Re: Roaming mesh, fast convergence. WDS or AP-AP? Bridging or Routing?

i have a similar approach planned with a site to cover with wifi with one SSID and roaming from AP to AP... plan so far is, to have 4 (or more) APs wired up via eth to a switch with a VLAN for the APs and this VLAN is then transported from the switch to a router via trunk-port i want to manage the A...
by spippan
Tue Mar 06, 2018 1:59 pm
Forum: General
Topic: Hotspot HA and load sharing with VRRP
Replies: 4
Views: 767

Re: Hotspot HA and load sharing with VRRP

..... tell to the DHCP server "give this client gateway A, this one gateway B". .... maybe you can do this with DHCP Options (Option 4 ? ) - so lease Client1 has Option 4 with router A, lease Client2 has Option 4 with router B, ...and so on for DHCP options this list may help https://www.iana.org/a...
by spippan
Mon Feb 26, 2018 12:06 pm
Forum: General
Topic: ** WE WANT A LTE BRIDGE-MODE **
Replies: 80
Views: 22538

Re: ** WE WANT A LTE BRIDGE-MODE **

need working passthrough on a SXT LTE (rOS 6.41.2 stable)

--> viewtopic.php?f=2&t=113562&p=644608#p644608
by spippan
Mon Feb 26, 2018 10:27 am
Forum: General
Topic: SXT-LTE bridged mode?
Replies: 19
Views: 7123

Re: SXT-LTE bridged mode?

No, this functionality is commonly called "DHCP Half-Bridge" but is currently unavailable on SXT-LTE. Hopefully Mikrotik can do this after they have v7 out. so, like, "never"? did a try yesterday with a SXT LTE and a RB922 interconnected .... here the post in detail: (found this topic after i poste...
by spippan
Mon Feb 26, 2018 10:21 am
Forum: General
Topic: MikroTik LTE "bridge-mode" to ETHER1
Replies: 9
Views: 3579

Re: MikroTik LTE "bridge-mode" to ETHER1

Has anyone figured out how to do this? Best Regards! MikroTik introduced new feature called "passthrough" in 6.41rc. However, it is not the passthrough we really wanted. It only passes through the IP, that your modem gives. So, if your modem is HiLink(with NAT) than it gives an address like 192.168...
by spippan
Fri Feb 23, 2018 6:42 pm
Forum: Wireless Networking
Topic: Mikrotik 4G LTE bridge mode?
Replies: 10
Views: 6640

Re: Mikrotik 4G LTE bridge mode?

Nope, you can't. Bridging LTE is an upcoming feature of 6.41 but SXT LTE is not going to be supported: https://forum.mikrotik.com/viewtopic.php?f=21&t=123936&p=618088&hilit=lte+sxt+bridge#p617931 so what kind of sense does this have then? i am having a constellation at home of 1x SXT LTE 1x RB922UA...
by spippan
Fri Jan 19, 2018 3:01 pm
Forum: General
Topic: MACSEC and or MikrotikSec
Replies: 1
Views: 1789

Re: MACSEC and or MikrotikSec

I would love to se some hardware L2 encryption when: 1. talking to other mikrotik devices (should be simple clickbox and transparent to all other protocols) but ensures no ears dropping on that link. 2. MacSec implementation for inter brand taks. I think this would be a given extension after we hav...
by spippan
Wed Jul 12, 2017 12:31 pm
Forum: Scripting
Topic: Script for Date and Time
Replies: 12
Views: 23376

Re: Re:

:put [/system clock get date] or :local datetime [/system clock get date] Sam and other day and month and year :local fecha [/system clock get date] :local dia [ :pick $fecha 4 6 ] :local mes [ :pick $fecha 0 3 ] :local year [ :pick $fecha 7 11 ] :log info "date format : $dia $mes $year" :local arc...
by spippan
Thu Apr 13, 2017 2:44 pm
Forum: Scripting
Topic: ppp on-up/on-down variables
Replies: 5
Views: 5511

Re: ppp on-up/on-down variables

Hi, I've struggled for quite a bit to get the variables working that is exposed by the ppp on-up and on-down scripts, because variable names includes dashes: local-address, remote-address, caller-id, called-id interface variable isn't the interface's name So after a while I have managed to reconstr...
by spippan
Fri Feb 24, 2017 3:58 pm
Forum: Beginner Basics
Topic: SNTP Client Issues - Does not update
Replies: 18
Views: 9287

Re: SNTP Client Issues - Does not update

got also a problem in syncing. time does not update automatically the used ip addresses are for 0.at.pool.ntp.org 1.at.pool.ntp.org [spippan@RP-AT-Hivemind] > sys clo pr # manually set today.... time: 14:55:06 date: feb/24/2017 time-zone-autodetect: no time-zone-name: Europe/Vienna gmt-offset: +01:0...
by spippan
Mon Feb 13, 2017 9:32 am
Forum: Scripting
Topic: Check Connections per Host (src-address) for firewall rule/address list
Replies: 7
Views: 2179

Re: Check Connections per Host (src-address) for firewall rule/address list

. . . we have troubles in our LAN with one or more hosts which randomly tries to establish 16k+ connections LAN->WAN yeah i know, the client needs to be fixed. we are on it (but it's a bit complicated because it's the CEOs laptop ... oh the irony...) . . . Trojan or/and backdoor perhaps? I would be...
by spippan
Fri Feb 10, 2017 5:28 pm
Forum: Scripting
Topic: Check Connections per Host (src-address) for firewall rule/address list
Replies: 7
Views: 2179

Re: Check Connections per Host (src-address) for firewall rule/address list

Use firewall/mangle 'connection-limit' matcher to add host to address list. HTH, saved my day :) thank you very much does the job perfectly fine: add action=add-src-to-address-list address-list=lock address-list-timeout=1m chain=forward comment="Lock-Clients in ADDR.List \"lock\"" connection-limit=...
by spippan
Fri Feb 10, 2017 4:55 pm
Forum: Scripting
Topic: Check Connections per Host (src-address) for firewall rule/address list
Replies: 7
Views: 2179

Re: Check Connections per Host (src-address) for firewall rule/address list

Use firewall/mangle 'connection-limit' matcher to add host to address list. HTH, thanks for the hint i never used that function, so did not think of it i'll try it and i guess HERE then i also found results in the forum after searching for that firewall function http://forum.mikrotik.com/viewtopic....
by spippan
Fri Feb 10, 2017 3:45 pm
Forum: Scripting
Topic: Check Connections per Host (src-address) for firewall rule/address list
Replies: 7
Views: 2179

Check Connections per Host (src-address) for firewall rule/address list

hi i need to find a solution to get all active LAN clients (ip-address) which connect from LAN to WAN so every connection which is established from "192.168.0.x" to external IP addresses we have troubles in our LAN with one or more hosts which randomly tries to establish 16k+ connections LAN->WAN ye...
by spippan
Sat Dec 24, 2016 7:57 pm
Forum: General
Topic: LTE ME909u-521 Mini-PCIe
Replies: 53
Views: 35131

Re: LTE ME909u-521 Mini-PCIe

is your RouterOS up to date? the ME909s-120 requires 6.28. Also, do you have the LTE package installed? I would also recommend buying a Mini-PCIe to USB adaptor to test the card on a Windows computer. I have this one, and it works well. WWAN USB Adaptor hi yes 6.35.4 and i also tested with 6.36rc33...
by spippan
Wed Sep 07, 2016 1:28 pm
Forum: General
Topic: Problem with Huawei E3372 4G modem
Replies: 68
Views: 128744

Re: Problem with Huawei E3372 4G modem

The best thing would be when mikrotik is importing the ncm driver from the e3372 stick. ;) Its working really nice with openwrt. At the moment i am using a router with openwrt firmwar in brdige mode with the mikrotik. Not beautiful but working well THAT'S a nice way of a workaround ;) it's yet beau...
by spippan
Fri Jul 15, 2016 6:48 pm
Forum: General
Topic: Feature request: OpenVPN compression LZO and UDP
Replies: 200
Views: 93477

Re: Feature request: OpenVPN compression LZO and UDP

is there any rOS7 RC or beta version available? i'd like to test OVPN with a RB2011 over LTE and another over a FTTH connection....
AFAIK it is in alfa stage - not even beta. So, no public access.
too bad ... i'm doing a lot on ovpn testing and site-to-site infrastructures....
by spippan
Wed Jul 13, 2016 4:36 pm
Forum: General
Topic: Feature request: OpenVPN compression LZO and UDP
Replies: 200
Views: 93477

Re: Feature request: OpenVPN compression LZO and UDP

Then why we decided to add UDP support? :D
is there any rOS7 RC or beta version available? i'd like to test OVPN with a RB2011 over LTE and another over a FTTH connection....
by spippan
Wed Jul 06, 2016 3:02 pm
Forum: General
Topic: Problem with Huawei E3372 4G modem
Replies: 68
Views: 128744

Re: Problem with Huawei E3372 4G modem

the 3webgate3 from ZTE is no longer produced now the have the 3HuiGate which is manufactured by huawei ... so there is no bridge! if you need the bridge mode ... use the 3HuiTUBE! it's a ZTE device and there you have the possibility to switch to bridge mode. cheers Mmmh ok, at the moment there is a...
by spippan
Mon Jul 04, 2016 10:02 am
Forum: General
Topic: Problem with Huawei E3372 4G modem
Replies: 68
Views: 128744

Re: Problem with Huawei E3372 4G modem

so i got my drei.at (H3G AT; 3AT) WebGate3. today (ZTE LTE Router Cat.4) to my luck there was the newest firmware already on it (B09) so i activated the SIM card and went online with it! i activated " Open Internet " via the online drei.at customer center and after 10-15minutes it was ready to work...
by spippan
Fri Jul 01, 2016 11:40 am
Forum: General
Topic: LTE ME909u-521 Mini-PCIe
Replies: 53
Views: 35131

Re: LTE ME909u-521 Mini-PCIe

is your RouterOS up to date? the ME909s-120 requires 6.28. Also, do you have the LTE package installed? I would also recommend buying a Mini-PCIe to USB adaptor to test the card on a Windows computer. I have this one, and it works well.   WWAN USB Adaptor hi yes 6.35.4 and i also tested with 6.36rc...
by spippan
Thu Jun 30, 2016 5:51 pm
Forum: General
Topic: LTE ME909u-521 Mini-PCIe
Replies: 53
Views: 35131

Re: LTE ME909u-521 Mini-PCIe

hey there i have got a RB411-5nH here with a Huawei ME909s-120 LTE/3G/GPS interface module i can't get the routerboard to recognize the miniPCI-e module ... i don't see  a PCI device, no LTE interface and no USB port(s) the module is brand new and was delivered today unfortunately i have no RB952 he...
by spippan
Fri Feb 26, 2016 9:51 am
Forum: General
Topic: Slow VPN tunnels (SSL, PPTP, L2TP)
Replies: 40
Views: 44281

Re: Slow VPN tunnels (SSL, PPTP, L2TP)

how can it be that VPN connections are that much slowed down?
i also get similar results when i made the BTest with a CRS109-8G-1S-2HnD-IN as VPN Server.....
by spippan
Fri Feb 26, 2016 9:46 am
Forum: General
Topic: Slow VPN tunnels (SSL, PPTP, L2TP)
Replies: 40
Views: 44281

Re: Slow VPN tunnels (SSL, PPTP, L2TP)

i built up a test setup today .... RB751 = server RB750 = client both connected via eth1<=>eth1 100MBit/s full duplex link RB751 - eth1 = 10.11.0.1/30 RB750 - eth1 = 10.11.0.2/30 then i tested PPTP and OpenVPN Tunnel throu that link. establishment and IP assigning ... no problems RB751 - vpn - 10.22...
by spippan
Thu Feb 25, 2016 3:25 pm
Forum: RouterBOARD hardware
Topic: Encryption performance on OpenVPN/IPsec VPN
Replies: 32
Views: 14929

Re: Encryption performance on OpenVPN/IPsec VPN

OpenVPN UDP mode is already made in v7, but that is in very fragile Alpha right now. Public beta will come after a while.
okay thank you very much

do you have an estimated ETA for beta or RC of rOSv7? would like to make some tests and benchmarks ;)
by spippan
Thu Feb 25, 2016 2:05 pm
Forum: General
Topic: Feature request: OpenVPN compression LZO and UDP
Replies: 200
Views: 93477

Re: Feature request: OpenVPN compression LZO and UDP

please ... pleeease

for performance' sake ... implement UDP and compression in rOS OpenVPN
by spippan
Thu Feb 25, 2016 2:03 pm
Forum: RouterBOARD hardware
Topic: Encryption performance on OpenVPN/IPsec VPN
Replies: 32
Views: 14929

Re: Encryption performance on OpenVPN/IPsec VPN

For below VPN, Which is the fastest in the ROS ?

OpenVPN (TCP)
Cisco IPsec
L2TP Over IPsec
SSTP
i'd also like to hear about that ... currently i'm using OpenVPN (TCP)

at least it would be great if MIKROTIK would finally enhance OVPN Server in allowing UDP and COMPRESSION!
by spippan
Wed Feb 17, 2016 3:24 pm
Forum: General
Topic: Problem with Huawei E3372 4G modem
Replies: 68
Views: 128744

Re: Problem with Huawei E3372 4G modem

Hey guys, an update i got my stick working in the hi-link mode (stick is his own router) The problem is now the mikrotik would get the private ip from the stick over dhcp and not the official wan ip. Is there any way to get this working? In this way i cant configure the connection for port forwardi...
by spippan
Fri Feb 12, 2016 1:48 pm
Forum: RouterBOARD hardware
Topic: HAP AC
Replies: 540
Views: 134357

Re: HAP AC

SORRY ... quick shot... just saw it in the table!!! Wireless standards 802.11a/n/ac all good ;) hAP AC on the routerboard.com the website says... The hAP ac is our most universal home or office wireless device. It is a dual band device with Gigabit ports that allow the full advantages of 802.11ac t...
by spippan
Fri Feb 12, 2016 1:46 pm
Forum: RouterBOARD hardware
Topic: HAP AC
Replies: 540
Views: 134357

Re: HAP AC

so ... ment are ... 5GHz a/n/ac ... or am i mistaking something here....? because on my GrooveA 52 i also have 5GHz a/n but no ac..... According to the product flier, it's 5Ghz a/n/ac, and 2Ghz b/g/n (no ac on 2ghz) yes as i corrected my post in the edit ;) of course there's no 802.11ac on 2.4GHz
by spippan
Fri Feb 12, 2016 1:45 pm
Forum: RouterBOARD hardware
Topic: HAP AC
Replies: 540
Views: 134357

Re: HAP AC

Please answer on my question. What about wifi speed between iPad Pro and MikroTik HAP AC? Can I get 100 mb/per sec? 8)
depends!

...on SNR, on site influences, distance, signal quality ...
per definition of 802.11ac on 5GHz it is possible....
by spippan
Tue Feb 09, 2016 7:01 pm
Forum: RouterBOARD hardware
Topic: HAP AC
Replies: 540
Views: 134357

Re:

It has two independent radios. One with 3x3 ac.
Unlike your GrooveA.
yep ;) my bad ... but GrooveA has top coverage ;)
by spippan
Tue Feb 09, 2016 6:38 pm
Forum: RouterBOARD hardware
Topic: POP3, SMTP, IMAP4 enable on Mikrotik routerboard
Replies: 4
Views: 3294

Re: POP3, SMTP, IMAP4 enable on Mikrotik routerboard

quite a while here ... BUT ... i ran into the same curiosity ... despite i have a fw-rule which blocks all ports for the INPUT chain on the gateway interface, nmap shows open ports which have NEVER been opened, used, forwarded etc. nmap -sT -sU -T4 -v -v -F -Pn [my host's wan ip from ISP] Starting N...
by spippan
Tue Feb 09, 2016 6:18 pm
Forum: RouterBOARD hardware
Topic: HAP AC
Replies: 540
Views: 134357

Re: HAP AC

SORRY ... quick shot... just saw it in the table!!! Wireless standards 802.11a/n/ac all good ;) hAP AC on the routerboard.com the website says... The hAP ac is our most universal home or office wireless device. It is a dual band device with Gigabit ports that allow the full advantages of 802.11ac te...
by spippan
Wed Feb 03, 2016 12:55 pm
Forum: General
Topic: Routing Facebook Traffic Throu VPN (open vpn)
Replies: 0
Views: 571

Routing Facebook Traffic Throu VPN (open vpn)

if one would like to re-route all facebook-network related traffic throu your vpn tunnel you have established via your beloved routerboard .... here are the current (03.02.2016) ip subnets for the facebook network just replace the gateway placeholder "[OpenVPN Gateway]" with your VPN Gateway IP (e.g...
by spippan
Tue Feb 02, 2016 3:22 pm
Forum: RouterBOARD hardware
Topic: HAP AC
Replies: 540
Views: 134357

Re: HAP AC

at least SOME statement of info would be nice!

i had to sidestep to a GrooveA52 for 5GHz extension to an existing network where i could have replaced 2 devices with a hAP AC :(
by spippan
Mon Feb 01, 2016 12:35 pm
Forum: RouterBOARD hardware
Topic: HAP AC
Replies: 540
Views: 134357

Re: HAP AC

Probable reason is that they need to sell stock of previous versions...
and therefore holding back a release for a year? ... n'ah if you ask me :lol:
by spippan
Thu Jan 28, 2016 3:57 pm
Forum: Announcements
Topic: v6.33.5 [current] is released!
Replies: 120
Views: 34036

Re: v6.33.5 [current] is released!

For those getting the "ERROR: missing wireless-6.33.5-mipsbe.npk" This pack have been replaced by the wireless-fp You need to uninstall the old pack and install the new. Why we start to get this now i domt know my 435 was on 6.30.2 and it just now i got it Doing it this wayover the wireless is gonn...
by spippan
Wed Jan 27, 2016 12:57 pm
Forum: General
Topic: Problem with Huawei E3372 4G modem
Replies: 68
Views: 128744

Re: Problem with Huawei E3372 4G modem

Hey guys, qustion, what are now the recommended mode for the e3372s Stick to run it along with a mikrotik? I have at the moment a e3372s in modem mode and i will try to flash it into HiLink mode if it is necessary. I couldnt get an connection at the moment while the stick is in modem mode? Dont kno...
by spippan
Fri Jan 22, 2016 1:26 pm
Forum: General
Topic: DHCP over EOIP filtering or blocking
Replies: 11
Views: 8254

Re: DHCP over EOIP filtering or blocking

I think before attempting something like connecting two existing networks using a bridge (like you are doing when making an EoIP tunnel between them) you must first fully understand what that will do and what can go wrong. Your current DHCP problem is just one example of this. There may be lots of ...
by spippan
Fri Jan 22, 2016 1:19 pm
Forum: Announcements
Topic: v6.33.5 [current] is released!
Replies: 120
Views: 34036

Re: v6.33.5 [current] is released!

just thought about how often it happens to me, that i oversee some little things and because of "such little things" my whole workflow comes to stop. but as you say, there might not be a problem with the .rsc then. does this occur on other routerboards also, or did you test it on a different board?...
by spippan
Fri Jan 22, 2016 11:45 am
Forum: General
Topic: DHCP over EOIP filtering or blocking
Replies: 11
Views: 8254

Re: DHCP over EOIP filtering or blocking

please help ... i'm completely new to EoIP and i'd love to have this solved 'cause EoIP would bring huge benefits for expanding my broadcast domains ;) You have already discovered why expanding your broadcast domains generally is NOT a good idea!! yep, but if i did not get it wrong, EoIP is sort of...
by spippan
Fri Jan 22, 2016 11:42 am
Forum: Announcements
Topic: v6.33.5 [current] is released!
Replies: 120
Views: 34036

Re: v6.33.5 [current] is released!

that happens, when you have an error in your RSC or let's say ... an entry which cannot be exec'd any longer e.g. RSC worked in 6.33.2 but is no longer able to be exec'd in 6.33.5 because some "rOS layout changes" for some settings or config./parameter names.... I already double-checked this, I am ...
by spippan
Fri Jan 22, 2016 11:12 am
Forum: Announcements
Topic: v6.33.5 [current] is released!
Replies: 120
Views: 34036

Re: v6.33.5 [current] is released!

On SXT SA5 and SXT SA5 ac, 50% of the times the command: /system reset-configuration no-defaults=yes keep-users=no run-after-reset=script.rsc doesn't execute the script, and the SXT remains with the empty configuration. that happens, when you have an error in your RSC or let's say ... an entry whic...
by spippan
Fri Jan 22, 2016 11:10 am
Forum: General
Topic: DHCP over EOIP filtering or blocking
Replies: 11
Views: 8254

Re: DHCP over EOIP filtering or blocking

One question more, if I block DHCP in a bridge interface, the customer side of the tower will not get ip from the dhcp server? If your DHCP server is running on the tower router that has the bridge interface, then constructing a bridge filter rule on the forward chain is not going to prevent the ro...
by spippan
Tue Jan 19, 2016 3:20 pm
Forum: Announcements
Topic: v6.33.5 [current] is released!
Replies: 120
Views: 34036

Re: v6.33.5 [current] is released!

EDIT: oh sry .. the CLIENT config ... client config at the bottom ! Hello. Please post your open vpn client config! What router os are you using ? Problem with open vpn clients. jan/17/2016 01:39:40 ovpn,debug,error,,,,,,,,,l2tp,info,,debug,,,critical,,,,,,,,,,,,,pptp duplicate packet, dropping jan/...
by spippan
Mon Jan 18, 2016 1:38 pm
Forum: RouterBOARD hardware
Topic: HAP AC
Replies: 540
Views: 134357

Re: HAP AC

EDIT: down below a short hint on how you could do it BUT... i guess this thread is the wrong thread for update/upgrade related questions I have a little problem with routerOS upgrade on RB952Ui-5ac2nD. Router has 6.30.4 and I would like upgrade to 6.33.5. There is only 16MB of flash and 12MB is used...
by spippan
Mon Jan 18, 2016 10:56 am
Forum: Announcements
Topic: v6.33.5 [current] is released!
Replies: 120
Views: 34036

Re: v6.33.5 [current] is released!

Problem with open vpn clients. jan/17/2016 01:39:40 ovpn,debug,error,,,,,,,,,l2tp,info,,debug,,,critical,,,,,,,,,,,,,pptp duplicate packet, dropping jan/17/2016 01:39:57 ovpn,debug,error,,,,,,,,,l2tp,info,,debug,,,critical,,,,,,,,,,,,,pptp duplicate packet, dropping jan/17/2016 01:40:11 ovpn,debug,...
by spippan
Fri Jan 15, 2016 10:21 am
Forum: General
Topic: RB532 + routeros mipsle 6.33 = fail
Replies: 19
Views: 3951

Re:

What's wrong with age of 532s? They are great devices regardless of their age.
yep as long as it is working ;-)

i don't know how mikrotik handles backward compatibility of their rOS versions (but i hope they do not have an "apple-like" policy)
by spippan
Thu Jan 14, 2016 6:56 pm
Forum: General
Topic: RouterOS Virtual Labs
Replies: 84
Views: 112391

Re: RouterOS Virtual Labs

greetings i have set up GNS3 1.3.9 on win10x64 pro i have QEMU 2.2.0 i have also set up a Loopback interface my GNS3 setup: -> 1x Cloud (has nio_gen_eth:Loopback as Ethernet interf.) -->Switch (SW1) (<-- here is the problem!! i guess) (*) --->RouterOS-vRouter (monolith) i cannot connect eth1 from vi...
by spippan
Thu Jan 14, 2016 1:46 pm
Forum: Announcements
Topic: v6.33.5 [current] is released!
Replies: 120
Views: 34036

Re: v6.33.5 [current] is released!

*) kernel - general improvement for core process scheduling;
what does that mean for performance? :)
Would love to know more about this as well
viewtopic.php?f=1&t=102105&start=100#p512835
viewtopic.php?f=1&t=102105&start=150#p515541
by spippan
Thu Jan 14, 2016 1:39 pm
Forum: General
Topic: RB532 + routeros mipsle 6.33 = fail
Replies: 19
Views: 3951

Re: RB532 + routeros mipsle 6.33 = fail

I confirm! Same problem here. Updated 6.33 ->6.33.3 = CRASH! Does not come back from reboot. Had to power down and power UP. Did clean reinstall from 5.21->6.32.x->6.33.3 Making export compact file=xxx complains about upnp config backup. Probably problem is with this stuff somewhere. upnp is one of...
by spippan
Thu Jan 14, 2016 1:27 pm
Forum: RouterBOARD hardware
Topic: HAP AC
Replies: 540
Views: 134357

Re: HAP AC

Sorry but it will not be ready this year
any news mr. nice guy? :?
by spippan
Thu Jan 14, 2016 1:18 pm
Forum: General
Topic: hAP AC availability
Replies: 11
Views: 3111

Re: hAP AC availability

Waiting for hAP AC to have Gigabit Ethernet ports...
Definitely will have. I'm hoping for 128MB flash storage, not these cheap 16MB NAND's.
true that ;)
16 MB would be a shame, but i guess that MT will not release it with such limitation!
by spippan
Wed Jan 13, 2016 5:08 pm
Forum: Wireless Networking
Topic: Wireless connection keeps dropping when AES enabled
Replies: 4
Views: 1168

Re: Wireless connection keeps dropping when AES enabled

I solved the problem by soldering a new aerial onto the unit.
excuse me, but what actually do you mean by "a new aerial" ?
what did you do there to solve the problem?
by spippan
Tue Jan 05, 2016 12:36 pm
Forum: General
Topic: rsa key support in ssh?
Replies: 15
Views: 14870

Re: rsa key support in ssh?

Hello, There is something I'm missing. I need help here please. I use puttygen 0.66 for creating a pair of RSA 2048 keys. I upload public one to router with name mykey.pub Create user test When I try to import: [user@router] > user ssh-keys import public-key-file=mykey.pub user=test Always receivin...
by spippan
Tue Jan 05, 2016 12:19 pm
Forum: Beginner Basics
Topic: VPN with Android Mobile to MikroTik RouterOS version 6.13
Replies: 40
Views: 31470

Re: VPN with Android Mobile to MikroTik RouterOS version 6.13

Been busy trying to get site to site IPsec working, haven't had a chance to try this yet.
no problem ;)

if help is needed, notifications to this thread are ON. glad if i can help.
anyways good luck with your site-to-site IPsec
by spippan
Tue Jan 05, 2016 12:17 pm
Forum: RouterBOARD hardware
Topic: HAP AC
Replies: 540
Views: 134357

Re: HAP AC

at least the lite version is here: hAP ac lite Dual-Concurrent 2.4/5GHz AP, 802.11ac, Five Ethernet ports, POE-out on port 5, USB for 3G/4G support $49.95 http://routerboard.com/RB952Ui-5ac2nD yeah but no gigabit, single-chain 5GHz, .... and so on. i'd love to see the hAP ac (regular) finally relea...
by spippan
Tue Jan 05, 2016 12:29 am
Forum: Beginner Basics
Topic: VPN with Android Mobile to MikroTik RouterOS version 6.13
Replies: 40
Views: 31470

Re: VPN with Android Mobile to MikroTik RouterOS version 6.13

I'll give it a try, thanks for the detailed info.
success? ;)
by spippan
Tue Jan 05, 2016 12:24 am
Forum: RouterBOARD hardware
Topic: HAP AC
Replies: 540
Views: 134357

Re: HAP AC

at least the lite version is here: hAP ac lite Dual-Concurrent 2.4/5GHz AP, 802.11ac, Five Ethernet ports, POE-out on port 5, USB for 3G/4G support $49.95 http://routerboard.com/RB952Ui-5ac2nD yeah but no gigabit, single-chain 5GHz, .... and so on. i'd love to see the hAP ac (regular) finally relea...
by spippan
Mon Jan 04, 2016 4:41 pm
Forum: RouterBOARD hardware
Topic: HAP AC
Replies: 540
Views: 134357

Re: HAP AC

2 0 1 6

an still no hAP AC :( :( waiting hard for this little guy to replace my RB2011...
by spippan
Thu Dec 24, 2015 2:12 pm
Forum: General
Topic: hAP AC availability
Replies: 11
Views: 3111

Re: hAP AC availability

as soon as that little snitch is out i will get 2 of them in combination with a SXT LTE ;) will replace my RB2011UAS-2HnD and my RB951Ui-2HnD

looking so forward to it *_*

Image
by spippan
Wed Dec 16, 2015 5:11 pm
Forum: Beginner Basics
Topic: VPN with Android Mobile to MikroTik RouterOS version 6.13
Replies: 40
Views: 31470

Re: VPN with Android Mobile to MikroTik RouterOS version 6.13

I looked at open VPN but couldn't figure out the cert process, looks like you stuck it out. i used easy-rsa (with pkitool) which is included in the OpenVPN Tunnelblick Mac OS X suite in terminal: nano vars source vars ./clean-all ./pkitool --initca ./pkitool --pass --server openVPN ./pkitool --pass...
by spippan
Wed Nov 11, 2015 11:01 am
Forum: Beginner Basics
Topic: VPN with Android Mobile to MikroTik RouterOS version 6.13
Replies: 40
Views: 31470

Re: VPN with Android Mobile to MikroTik RouterOS version 6.13

I have an L2TP VPN connection on a Verizon droid to an RB751 running 6.32.3. so then i assume Verizon is permitting direct IP communication from your mobile device to your router (vpn server) i do not have that advantage here in austria (telering / t-mobile) if i were with H3G (drei.at) i could act...
by spippan
Thu Nov 05, 2015 5:23 pm
Forum: Beginner Basics
Topic: VPN with Android Mobile to MikroTik RouterOS version 6.13
Replies: 40
Views: 31470

Re: VPN with Android Mobile to MikroTik RouterOS version 6.13

Not sure what all people are on about in this thread - I followed the instructions above to that nasa-security.net link and it worked great for me. 750GL with 5.25 or so and Nex 5, Lollipop Dream (5.0.1) which cellular provider do you use? and are you getting a official WAN IP on your mobile via yo...
by spippan
Wed Oct 21, 2015 2:38 pm
Forum: General
Topic: How To Setup a Mikrotik as OpenVPN Server
Replies: 3
Views: 969

Re: How To Setup a Mikrotik as OpenVPN Server

same here ... can't get it working did a setup following these steps http://wiki.mikrotik.com/wiki/OpenVPN#Creating_Certificates_with_Easy-RSA with a solution for client certificate creation described here http://blog.kenyap.com.au/2012/07/txtdb-error-number-2-when-generating.html so all imported bu...
by spippan
Mon Sep 28, 2015 6:19 pm
Forum: General
Topic: Problem with Huawei E3372 4G modem
Replies: 68
Views: 128744

Re: Problem with Huawei E3372 4G modem

so i got my drei.at (H3G AT; 3AT) WebGate3. today (ZTE LTE Router Cat.4) to my luck there was the newest firmware already on it (B09) so i activated the SIM card and went online with it! i activated " Open Internet " via the online drei.at customer center and after 10-15minutes it was ready to work ...
by spippan
Mon Sep 28, 2015 12:27 pm
Forum: General
Topic: Problem with Huawei E3372 4G modem
Replies: 68
Views: 128744

Re: Problem with Huawei E3372 4G modem

so i returned the E3372h to H3G Austria (3AT; drei.at)
unfortunately they haven't got any Webgate3 in stock today so i have to wait for one this week.

i'll let you know how the progress with it in BRIDGE mode is going :-)
by spippan
Sun Sep 27, 2015 6:06 pm
Forum: General
Topic: Problem with Huawei E3372 4G modem
Replies: 68
Views: 128744

Re: Problem with Huawei E3372 4G modem

with ppp mode you will not get more than approx 25mbps because the ppp emulation. If you would have lte interface with dhcp-client there is no such limitation. yeah that's what i thought too :/ bad luck for me so ;) well i will exchange the E3372h with a 3AT WebGate3 tomorrow and that will run in b...
by spippan
Fri Sep 25, 2015 5:19 pm
Forum: General
Topic: Problem with Huawei E3372 4G modem
Replies: 68
Views: 128744

Re: Problem with Huawei E3372 4G modem

i have a similar problem finaly got it made to have a connection via USB LTE Modem (PPP Mode .... NOT HiLink) big problem thou is, i have around only 50% of speed of my provider (Hutchinson 3G Austria 3AT) normaly my speedtest results are around 40Mbit down / 15Mbit up when Huawei E3372 is connected...
by spippan
Tue Jun 02, 2015 5:54 pm
Forum: General
Topic: PPTP not reconnecting
Replies: 13
Views: 2997

Re: PPTP not reconnecting

Hello ZeroByte! Finally i got my new modem (different brand) this weekend and the Problem is solved! Thanks for all your patience and support ! Best regards and have a nice weekend! Andreas i also replied you over at "dieschmids" ;) (http://www.dieschmids.at/forum/18-pirelli/51608-pptp-link-problem...
by spippan
Mon May 11, 2015 12:05 pm
Forum: General
Topic: Is it possible to run a script on login?
Replies: 44
Views: 15028

Re: Is it possible to run a script on login?

so my question is: can i/we use this script (or edit it) to do following steps: 1 check ("realize") when a user logs on to the ROUTER (not hotspot! no hotspot use is intended at all) 2 on succesful login get the IP and name of the active user (as in "/user active get 0 address") 3 add its IP addres...
by spippan
Thu May 07, 2015 10:05 pm
Forum: General
Topic: Firewall Rules using host name
Replies: 4
Views: 3281

Re: Firewall Rules using host name

what's the purpose of using it by hostname ? Are you dns loadbalancing or are your servers filtering on http headers ? Or is it something else Nope, we don't load balance our DNS nor filtering on http headers. All we know is that there are applications which run on the same port within the network....
by spippan
Wed May 06, 2015 10:01 am
Forum: General
Topic: Is it possible to run a script on login?
Replies: 44
Views: 15028

Re: Is it possible to run a script on login?

1 check ("realize") when a user logs on to the ROUTER (not hotspot! no hotspot use is intended at all) So, you are using the hotspot, but you don't want any hotspot logins found by the script, only logins directly to the router, right? Generally you would compare the normal login logs with the hots...
by spippan
Wed Mar 11, 2015 11:04 am
Forum: General
Topic: Is it possible to run a script on login?
Replies: 44
Views: 15028

Re: Is it possible to run a script on login?

cheers first of all ... AWESOME work here! :-D i'm a rOS Script newbie and wrote only fundamental scripts yet but i'm eager to learn more and more about this great feature my setup so far, necessary for this: - firewall rules (all working well so far) - ACL "whitelist" with local and VPN networks so...
by spippan
Tue Mar 03, 2015 1:13 pm
Forum: General
Topic: Feature request: grouping interfaces in firewall
Replies: 7
Views: 2656

Re: Feature request: grouping interfaces in firewall

It would be usefull to have in-interface-list/out-interface-list in terms of src-address-list/dst-address-list: for example: /interface gre add name="tun0" ... /ip firewall interface-list add list=transport interface=ether1 add list=transport interface=tun0 add list=lan interface=ether2 add list=la...
by spippan
Tue Mar 03, 2015 1:08 pm
Forum: General
Topic: Feature requests
Replies: 1160
Views: 207995

Re: Feature requests

I would be nice that in /ip service I could set more ip address or one addres-list erm, you actually can do this (not with ACLs but with multiple IPs) https://i.imgur.com/dZKKloW.png Why not just block unwanted access by firewall? exactly ... IMHO also the way more serious and clean solution i just...
by spippan
Tue Mar 03, 2015 1:05 pm
Forum: Beginner Basics
Topic: VPN with Android Mobile to MikroTik RouterOS version 6.13
Replies: 40
Views: 31470

Re: VPN with Android Mobile to MikroTik RouterOS version 6.13

I'm having exactly the same problem, works fine over Wi-Fi but will not work over Cellular. I've tried a Nexus 5 with Lollipop and an iPhone 5 with iOS 8.1.3, I've tried a T-Moible UK and Three UK SIM Card and neither will work. Can't figure out where the issue lies. i'm even seeing the connection ...
by spippan
Wed Feb 18, 2015 2:40 pm
Forum: General
Topic: Feature requests
Replies: 1160
Views: 207995

Re: Feature requests

I would be nice that in /ip service I could set more ip address or one addres-list
erm, you actually can do this (not with ACLs but with multiple IPs)
Image
by spippan
Wed Feb 18, 2015 2:19 pm
Forum: General
Topic: IPSec/L2TP vpn connection starts but won't complete
Replies: 4
Views: 7126

Re: IPSec/L2TP vpn connection starts but won't complete

i got the exact same problem when i try to connect my iphone6 via L2TP/IPsec over 3G .... no luck.... PPTP works immediately over 3G when my iph6 is connected to a WiFi then both works L2TP/IPsec and PPTP i accept input for Protocol 51 (ipsec-ah) and Protocol 50 (ipsec-esp) and have opened the ports...
by spippan
Tue Feb 17, 2015 12:02 pm
Forum: General
Topic: Winbox 3 RC
Replies: 639
Views: 123935

Re: Winbox 3 RC

Winbox RC1 is available. There are lots of changes since beta 3* http://download2.mikrotik.com/routeros/winbox/3.0rc1/winbox.exe .... * - (10 versions were not made public) awesome thanks .... works great under wine on mac ("WinBox4Mac") ;-D --> even did the upgrade directly out of the Beta3 runnin...
by spippan
Tue Feb 03, 2015 3:40 pm
Forum: General
Topic: iPhone tethering to Mikrotik?
Replies: 12
Views: 5449

Re: iPhone tethering to Mikrotik?

indeed i would like to know if this is possible would like to test iPhone(6) Hotspot via USB for routerboard i was experimenting with a RB951 an a TP-Link 3G dongle (worked like a charm after you set Data channel to 2 and Info channel also to 2) APN settings for T-Mobile austria are available from t...
by spippan
Mon Feb 02, 2015 1:37 pm
Forum: General
Topic: IPSec phase1 negotiation error
Replies: 4
Views: 8361

Re: IPSec phase1 negotiation error

still no clue ... anyone??

still no change with the newest rOS 6.25
by spippan
Wed Jan 14, 2015 1:30 pm
Forum: General
Topic: IPSec phase1 negotiation error
Replies: 4
Views: 8361

Re: IPSec phase1 negotiation error

... get the same error when i try to connect to my RB951 (rOS v6.24) L2TP/IPsec from my iPhone6 (3G and WiFi) thou i can connect fia PPTP (just tested it with the same user) and i get a connection with "MPPE128 stateless" from my Mac mini the L2TP IP sec connection works without any problems (same ...
by spippan
Tue Jan 13, 2015 5:57 pm
Forum: Beginner Basics
Topic: VPN with Android Mobile to MikroTik RouterOS version 6.13
Replies: 40
Views: 31470

Re: VPN with Android Mobile to MikroTik RouterOS version 6.1

is there any manual for L2tp + ipsec ? My Android Mobile can only: - PPTP - L2TP/IPSEC PSK - L2TP/IPSEC RSA - IPSec Xauth PSK - IPSec Xauth RSA - IPSec Hybrid RSA I do not like to use PPTP ! Thanks got a similar issue connecting to my L2TP/IPsec server on my RB951 (ROSv6.24) via 3G / cellular (othe...
by spippan
Tue Jan 13, 2015 5:51 pm
Forum: Beginner Basics
Topic: VPN with Android Mobile to MikroTik RouterOS version 6.13
Replies: 40
Views: 31470

Re: VPN with Android Mobile to MikroTik RouterOS version 6.1

UPDATE: what i was able to do is, to set up a VPN connection to the same router with the same user via PPTP ! when i try to set up the connection via L2TP/IPsec ... no luck... error in log: 14:08:17 ipsec,error phase1 negotiation failed due to time up 194.166.###.###[500]<=>62.218.###.###[500] cd1b2...
by spippan
Tue Jan 13, 2015 2:18 pm
Forum: General
Topic: IPSec phase1 negotiation error
Replies: 4
Views: 8361

Re: IPSec phase1 negotiation error

We have a MikroTik CCR1009 at the office as internet router. This router is configured as L2TP IPSec VPN server. It is possible to connect Windows clients and iPhones. I bought a few RB750 to use as L2TP IPSec VPN client. My intension is to use this devices at some home users behind their current r...
by spippan
Tue Jan 13, 2015 1:38 pm
Forum: Beginner Basics
Topic: VPN with Android Mobile to MikroTik RouterOS version 6.13
Replies: 40
Views: 31470

Re: VPN with Android Mobile to MikroTik RouterOS version 6.1

is there any manual for L2tp + ipsec ? My Android Mobile can only: - PPTP - L2TP/IPSEC PSK - L2TP/IPSEC RSA - IPSec Xauth PSK - IPSec Xauth RSA - IPSec Hybrid RSA I do not like to use PPTP ! Thanks got a similar issue connecting to my L2TP/IPsec server on my RB951 (ROSv6.24) via 3G / cellular (othe...
by spippan
Thu Nov 13, 2014 3:29 pm
Forum: Beginner Basics
Topic: WDS Problem
Replies: 6
Views: 5350

Re: WDS Problem

i got a similar setup over here RB951Ui-2HnD as AP (DSL gateway) WDS slave / repeater = TP-Link TL-WR841ND EDIT: the TP link always drops out and tries to re-connect and drops out again and so on and so on.... :? config. of TP link : static IP 192.168.80.200 (reachable if i connect to the TP directl...
by spippan
Wed Nov 12, 2014 5:22 pm
Forum: Beginner Basics
Topic: Access to modem behind Mikrotik router
Replies: 7
Views: 7168

Re: Access to modem behind Mikrotik router

found a solution!! :lol: bit weird but working stable and fast to keep it short: modem = 10.0.0.138 (bridge mode) tik eth1 = 10.0.0.140 (<-- the gateway interface) tik bridge_local = 192.168.1.0/24 (<-- LAN, obviously^^) now i never was able to access the webinterface of the BRIDGED modem (for e.g. ...
by spippan
Wed Nov 12, 2014 1:16 pm
Forum: Beginner Basics
Topic: Access to modem behind Mikrotik router
Replies: 7
Views: 7168

Re: Access to modem behind Mikrotik router

i got the same issue on two RB951Ui-2HnD both modems before the Tik are in "single user" or "bridge" mode one is a Technicolor TG788A1vn (single user mode), the ohter is a ComTrend Vi3223u Multi IAD internet and LAN is all working fine ... i just can't reach the HTTP interface of either modem on the...