Community discussions

Search found 372 matches

  • 1
  • 2
  • 3
  • 4
  • 5
  • 8
by amt
Fri Apr 20, 2018 10:07 am
Forum: Announcements
Topic: v6.42 [current]
Replies: 146
Views: 12592

Re: v6.42 [current]

What is the wireless XX option under Channel width?
I am wondering too
Was thinking that but would like to be sure :lol:
Still no any answer :) :) :)
by amt
Thu Apr 19, 2018 10:58 am
Forum: Announcements
Topic: v6.42 [current]
Replies: 146
Views: 12592

Re: v6.42 [current]

What is the wireless XX option under Channel width?
I am wondering too
by amt
Wed Apr 18, 2018 8:06 am
Forum: Announcements
Topic: v6.42 [current]
Replies: 146
Views: 12592

Re: v6.42 [current]

Updated SXT Lite5 Ac from 6.40.5 to 6.42 and device down, After netinstall device work again...
by amt
Tue Apr 17, 2018 1:16 pm
Forum: General
Topic: VPN Over PPTP down when Fasttrack connection enabled
Replies: 4
Views: 147

Re: VPN Over PPTP down when Fasttrack connection enabled

I disabled fasttrack... You do not need to disable fasttracking completely. Choose the category of traffic which occupies the most bandwidth and let that one be handled by the defaut routing table, i.e. without marking, which makes it possible to fasttrack it. If it is the traffic category you need...
by amt
Tue Apr 17, 2018 9:42 am
Forum: General
Topic: VPN Over PPTP down when Fasttrack connection enabled
Replies: 4
Views: 147

Re: VPN Over PPTP down when Fasttrack connection enabled

Your can read this topic: viewtopic.php?t=130212

And at the end: viewtopic.php?t=130212#p641053
Thanks msatter,
I disabled fasttrack...
by amt
Fri Apr 13, 2018 4:36 pm
Forum: General
Topic: rb951G-2hnd 6.41.4 help :(
Replies: 3
Views: 246

Re: rb951G-2hnd 6.41.4 help :(

new bridge implementation that supports hardware offloading (hw-offload).
HW.jpg
by amt
Fri Apr 13, 2018 3:53 pm
Forum: General
Topic: VPN Over PPTP down when Fasttrack connection enabled
Replies: 4
Views: 147

VPN Over PPTP down when Fasttrack connection enabled

Hi all, I was using PPTP connection for access to blocked web sites or others etc. which are filtered by upstream provider, normally pptp traffic is nearly 14-15mb but when I enable fasttrack this traffic start to down like 3mb- 4mb and web sites and videos start to load slowly. is there any one her...
by amt
Thu Apr 12, 2018 2:31 pm
Forum: General
Topic: EoIP over VPN - Help with packet overhead and MSS calculation
Replies: 4
Views: 168

Re: EoIP over VPN - Help with packet overhead and MSS calculation

What network exactly you want to connect? Layer 2 or 3? If 2, use EoIP + IPsec. If 3 use L2TP + IPsec. Hi Anumrak, Layer 2 mean bridged network and Layer 3 for routed network.. why you prefer to use pppoe over L2TP ( if mean carrying pppoe_client customer to pppoe_server over l2tp )connection on La...
by amt
Thu Apr 12, 2018 2:24 pm
Forum: Beginner Basics
Topic: blocking access
Replies: 4
Views: 146

Re: blocking access

Turn the router off.
Cut his RJ45 cable.
best solution :)
by amt
Mon Apr 09, 2018 10:21 am
Forum: Forwarding Protocols
Topic: EoIP Tunnel is Running but not passing traffic
Replies: 3
Views: 156

Re: EoIP Tunnel is Running but not passing traffic

can you ping remote and local ip's from each other, I mean can you ping from router B to Router A' s ip address and from router B to Router A's ip address. and also change tunnel-id for both side.
by amt
Mon Apr 02, 2018 2:54 pm
Forum: Announcements
Topic: Urgent security advisory
Replies: 110
Views: 40141

Re: Urgent security advisory

what happen when device infected ? I read post's but cant see what this infection does to the equipment.
by amt
Fri Mar 30, 2018 8:32 am
Forum: Beginner Basics
Topic: Recommende "IP/IP Settings"
Replies: 6
Views: 823

Re: Recommende "IP/IP Settings"

kill redirects(very insecured/exploitable), bump icmp rate limitation a bit(to say 50-100-500), disable fast-path if you not use it(if you not ISP - you perhaps not), put RP filtering to "strict"(if you not use gear in corporate setup with (relatively)complex routing of multiple sub-networks, multi...
by amt
Thu Mar 29, 2018 1:15 pm
Forum: Announcements
Topic: Urgent security advisory
Replies: 110
Views: 40141

Re: Urgent security advisory

maybe our problem in the following address could be related to this topic.

viewtopic.php?f=2&t=132160
by amt
Thu Mar 29, 2018 1:05 pm
Forum: General
Topic: PPPoE MSS clamp no working on upgrade
Replies: 14
Views: 1719

Re: PPPoE MSS clamp no working on upgrade

After yesterday's "URGENT security advisory" from Mikrotik I upgraded my PPPoE Servers to 6.40.6 and now same thing: MSS mangle rules gone and service broken! Please help! write it manual may help you; /ip firewall mangle add action=change-mss chain=forward new-mss=clamp-to-pmtu passthrough=yes pro...
by amt
Mon Mar 26, 2018 12:14 pm
Forum: General
Topic: firewall advice to pppoe_client customers [SOLVED]
Replies: 26
Views: 729

Re: firewall advice to pppoe_client customers [SOLVED]

Great thanks to everyone for their helps...
by amt
Mon Mar 26, 2018 12:12 pm
Forum: Scripting
Topic: Blacklist Filter update script
Replies: 605
Views: 65551

Re: Blacklist Filter update script

It's been a nice run. Almost 3 years, and over 2200 active users. But I am shutting down the this service. Thank you, Dave, for a valiant effort. For everyone who was using Dave's Blacklist, let me recommend the Malicious IP blacklist from SquidBlackList.org, available for download from https://www...
by amt
Mon Mar 26, 2018 12:08 pm
Forum: Scripting
Topic: Blacklist Filter update script
Replies: 605
Views: 65551

Re: Blacklist Filter update script

Thank you for providing this great service .....
by amt
Fri Mar 23, 2018 8:55 pm
Forum: General
Topic: Lost connection to multiple LHG units
Replies: 24
Views: 994

Re: Lost connection to multiple LHG units

There were no any fw rules at customer side :(
Bad Idea, even worse if router has direct access from internet.
I certainly agree with you, it was a very bad mistake. I hope it will be useful for my experience.
by amt
Fri Mar 23, 2018 8:52 pm
Forum: General
Topic: Lost connection to multiple LHG units
Replies: 24
Views: 994

Re: Lost connection to multiple LHG units

It sounds like your customers devices were completely exposed to the internet then. Someone probably just brute-forced their way in would be my guess. I'd suggest you consider retaining connection logs at your border device. It gives you something to review during root cause analysis. Thanks for yo...
by amt
Fri Mar 23, 2018 5:33 pm
Forum: General
Topic: firewall advice to pppoe_client customers [SOLVED]
Replies: 26
Views: 729

Re: firewall advice to pppoe_client customers [SOLVED]

add action=drop chain=input comment="drop connection for admin special ports" dst-port=22,23,8291,8728,8729 protocol=tcp add action=drop chain=input comment="drop connection for Admin special ports" dst-port=22,23,8291,8728,8729 protocol=udp add action=drop chain=forward comment="drop connection fo...
by amt
Fri Mar 23, 2018 5:28 pm
Forum: General
Topic: Lost connection to multiple LHG units
Replies: 24
Views: 994

Re: Lost connection to multiple LHG units

I would be curious to see your previous firewall rules to see if there is any obvious weakness.
There were no any fw rules at customer side :(
Only drop rules for input and foward chain at pppoe_servers for port 22,23,8291,8728
by amt
Fri Mar 23, 2018 4:56 pm
Forum: General
Topic: firewall advice to pppoe_client customers [SOLVED]
Replies: 26
Views: 729

Re: firewall advice to pppoe_client customers [SOLVED]

Why do you want this rule? Except if needed for monitoring, ICMP traffic will work just fine if initiated from inside, and then the following will be allowed by established, related rule without rule below add action=accept chain=input comment="ACCEPT ICMP" in-interface-list=WAN protocol=icmp I rem...
by amt
Fri Mar 23, 2018 4:25 pm
Forum: General
Topic: firewall advice to pppoe_client customers [SOLVED]
Replies: 26
Views: 729

Re: firewall advice to pppoe_client customers [SOLVED]

I will suggest you remove the in-interface on the following rules. /ip firewall filter add action=accept chain=forward comment="ACCEPT established & related" connection-state=established,related in-interface-list=WAN add action=accept chain=input comment="ACCEPT established & related" connection-st...
by amt
Fri Mar 23, 2018 3:14 pm
Forum: Announcements
Topic: Significant improvement for wireless Nv2 PtMP
Replies: 149
Views: 12586

Re: Significant improvement for wireless Nv2 PtMP

What is 20/40MHz XX on Channel Width , I haven't seen it before.
by amt
Fri Mar 23, 2018 3:03 pm
Forum: General
Topic: firewall advice to pppoe_client customers [SOLVED]
Replies: 26
Views: 729

Re: firewall advice to pppoe_client customers [SOLVED]

I will suggest you remove the in-interface on the following rules. /ip firewall filter add action=accept chain=forward comment="ACCEPT established & related" connection-state=established,related in-interface-list=WAN add action=accept chain=input comment="ACCEPT established & related" connection-st...
by amt
Fri Mar 23, 2018 2:26 pm
Forum: General
Topic: firewall advice to pppoe_client customers [SOLVED]
Replies: 26
Views: 729

Re: firewall advice to pppoe_client customers [SOLVED]

So I can start to use these rules :)
by amt
Fri Mar 23, 2018 12:09 pm
Forum: General
Topic: firewall advice to pppoe_client customers [SOLVED]
Replies: 26
Views: 729

Re: firewall advice to pppoe_client customers [SOLVED]

Assuming your pppoe runs on top of some ethernet interface (presumably ether1), is it safe to add all ether interfaces to LAN list? I'd leave that particular one out. If pppoe runs on top of sfp1 interface then your config is OK. Hi Mkx thanks for your answer all customer devices are SXT or LHG and...
by amt
Fri Mar 23, 2018 12:00 pm
Forum: General
Topic: Lost connection to multiple LHG units
Replies: 24
Views: 994

Re: Lost connection to multiple LHG units

I don't know how to erase firmware, so I can't begin to guess what happened. Perhaps one of your management hosts is/was compromised. Another possibility would be an as-yet-undiscovered vulnerability since it only occurred on routers with public IPs. I have perhaps 100 MT routers with public IPs an...
by amt
Fri Mar 23, 2018 11:53 am
Forum: General
Topic: firewall advice to pppoe_client customers [SOLVED]
Replies: 26
Views: 729

Re: firewall advice to pppoe_client customers [SOLVED]

I will suggest you remove the in-interface on the following rules. /ip firewall filter add action=accept chain=forward comment="ACCEPT established & related" connection-state=established,related in-interface-list=WAN add action=accept chain=input comment="ACCEPT established & related" connection-st...
by amt
Thu Mar 22, 2018 2:52 pm
Forum: General
Topic: firewall advice to pppoe_client customers [SOLVED]
Replies: 26
Views: 729

Re: firewall advice to pppoe_client customers [SOLVED]

Many Many Thanks Steveocee... here is last one.. /interface list add name=WAN /interface list add name=LAN /interface list member add interface=[/interface ethernet find] list=LAN /interface list member add interface=[/interface pppoe-client find] list=WAN /ip firewall address-list add address=10.10...
by amt
Wed Mar 21, 2018 5:08 pm
Forum: General
Topic: Lost connection to multiple LHG units
Replies: 24
Views: 994

Re: Lost connection to multiple LHG units

Most people that think they have a "secure" network do not. I see this all the time. yes you are right.. plus for this inexperienced :) Do you have remote management of the devices at the customer sites? no Do you use common passwords across multiple devices? unfortunately yes same password for mul...
by amt
Wed Mar 21, 2018 3:32 pm
Forum: General
Topic: Useful tools and utilities disappeared
Replies: 6
Views: 302

Re: Useful tools and utilities disappeared

https://expirebox.com/download/a7286457 ... 0be76.html

download from here I upload it for you.. but in rar file.
by amt
Wed Mar 21, 2018 2:53 pm
Forum: General
Topic: firewall advice to pppoe_client customers [SOLVED]
Replies: 26
Views: 729

Re: firewall advice to pppoe_client customers [SOLVED]

Basic one but usable, of course you need to change the in-interface to match your pppoe client interface name (pppoe_out1 is the default); /ip firewall filter add action=accept chain=forward comment="ACCEPT established & related" connection-state=established,related in-interface=pppoe-out1 add acti...
by amt
Wed Mar 21, 2018 2:30 pm
Forum: General
Topic: firewall advice to pppoe_client customers [SOLVED]
Replies: 26
Views: 729

Re: firewall advice to pppoe_client customers [SOLVED]

WAN and LAN are interface lists. You just need to edit WAN interface list. Thanks mrz, also I would like to add this rules also but Im not sure the order of the rules, can i add this rule end of the default config ? or /ip firewall address-list add address=10.10.2.10 comment="Admin Network" list=ad...
by amt
Wed Mar 21, 2018 2:04 pm
Forum: General
Topic: firewall advice to pppoe_client customers [SOLVED]
Replies: 26
Views: 729

Re: firewall advice to pppoe_client customers [SOLVED]

/ip firewall filter add action=accept chain=input comment="defconf: accept established,related,untracked" connection-state=established,related,untracked add action=drop chain=input comment="defconf: drop invalid" connection-state=invalid add action=accept chain=input comment="defconf: accept ICMP" ...
by amt
Wed Mar 21, 2018 1:38 pm
Forum: General
Topic: firewall advice to pppoe_client customers [SOLVED]
Replies: 26
Views: 729

firewall advice to pppoe_client customers [SOLVED]

Hi All,
our client devices connected with PPPoE got attacked and many of our devices became useless. Do you have any suggestions for firewall rules that can be used to take precautions?

Thanks lot
by amt
Tue Mar 20, 2018 7:11 pm
Forum: General
Topic: Lost connection to multiple LHG units
Replies: 24
Views: 994

Re: Lost connection to multiple SXT units

there is no any wifi signal also, most of them LHG and all of them same problem... bios seems lost. we copy one of LHG bios and transfer it to broken one and it worked. but now the licence has problem,device worked and telling there is no licence. and another problem all mac same with copied one. J...
by amt
Tue Mar 20, 2018 4:45 pm
Forum: General
Topic: Lost connection to multiple LHG units
Replies: 24
Views: 994

Re: Lost connection to multiple SXT units

You say Ethernet interface not working. Can you access the device from the WiFI interface? Hi Normis, there is no any wifi signal also, most of them LHG and all of them same problem... bios seems lost. we copy one of LHG bios and transfer it to broken one and it worked. but now the licence has prob...
by amt
Tue Mar 20, 2018 4:20 pm
Forum: General
Topic: Lost connection to multiple LHG units
Replies: 24
Views: 994

Re: URGENT Help !! any security vulnerabilitie ?

hi anav,

we are supplying to internet to these customers and we did not change any setup, we did not implement any firmware. there are more than thousand cpe. and only puplic ip assigned mikrotik's affected.
by amt
Tue Mar 20, 2018 1:10 pm
Forum: General
Topic: Lost connection to multiple LHG units
Replies: 24
Views: 994

Re: URGENT Help !! any security vulnerabilitie ?

I sent mail to support yesterday but not answerd me yet.
by amt
Tue Mar 20, 2018 10:14 am
Forum: RouterOS v6 RC and v7 BETA
Topic: Remote code execution in MikroTik RouterOS v6 (all before 6.41.3)
Replies: 13
Views: 927

Re: Remote code execution in MikroTik RouterOS v6 (all before 6.41.3)

while waiting answer from support , I wanted to share it thinking that I could get help from here

thanks normis.
by amt
Tue Mar 20, 2018 9:59 am
Forum: RouterOS v6 RC and v7 BETA
Topic: Remote code execution in MikroTik RouterOS v6 (all before 6.41.3)
Replies: 13
Views: 927

Re: Remote code execution in MikroTik RouterOS v6 (all before 6.41.3)

thanks doneware, do you have any idea why this happen ? all mikrotik device down today which are using puplic ip on their interface... Thanks Please stop posting in all topics that are not related to your question. There is a high likelihood you suffered ESD damage due to static discharge in the at...
by amt
Tue Mar 20, 2018 8:29 am
Forum: General
Topic: Lost connection to multiple LHG units
Replies: 24
Views: 994

Re: URGENT Help !! any security vulnerabilitie ?

Using to easy Passwords on public available not firewalled devices?
Hi mistry7,

password was not easy and also user name was not admin. winbox port and ssh, telnet, api closed to outside.

Thanks.
by amt
Tue Mar 20, 2018 8:28 am
Forum: General
Topic: Lost connection to multiple LHG units
Replies: 24
Views: 994

Re: URGENT Help !! any security vulnerabilitie ?

Version?
... details, formulate an relatory.
Hi BRMateus2,

devices not working so I could not check what version they were. I will try to netinstall them today. nearly 50 device down.
by amt
Tue Mar 20, 2018 8:26 am
Forum: General
Topic: Lost connection to multiple LHG units
Replies: 24
Views: 994

Re: URGENT Help !! any security vulnerabilitie ?

Power outages? Didnt pay internet bills? ISP folded? What is the reason for the failures? Not enough information. Hi anav, Power outages? these devices at in different places and there were no Power outages at their place... Didnt pay internet bills? devices not working, ether ports not work. What ...
by amt
Mon Mar 19, 2018 11:39 pm
Forum: RouterOS v6 RC and v7 BETA
Topic: Remote code execution in MikroTik RouterOS v6 (all before 6.41.3)
Replies: 13
Views: 927

Re: Remote code execution in MikroTik RouterOS v6 (all before 6.41.3)

thanks doneware,

do you have any idea why this happen ? all mikrotik device down today which are using puplic ip on their interface...

Thanks
by amt
Mon Mar 19, 2018 7:24 pm
Forum: General
Topic: Lost connection to multiple LHG units
Replies: 24
Views: 994

Lost connection to multiple LHG units

Hi all, Today all our customers who has puplic ip with Mikrotik device stop working. When we check for understand what happen, we see that the ethernet interfaces of these devices are not working , and some SXT reseted. So I wonder to ask if is that related with any security vulnerabilities ? Thanks.
by amt
Mon Mar 19, 2018 6:54 pm
Forum: RouterOS v6 RC and v7 BETA
Topic: Remote code execution in MikroTik RouterOS v6 (all before 6.41.3)
Replies: 13
Views: 927

Re: Remote code execution in MikroTik RouterOS v6 (all before 6.41.3)

Hi Muqatil,

normaly we do not enable SMB on devices. we leave them as default
 enabled: no
        domain: MSHOME
       comment: MikrotikSMB
      allow-guests: yes
      interfaces: all 


I wonder if this vulnerability may affected. cause all of this devices down today.
by amt
Mon Mar 19, 2018 6:03 pm
Forum: RouterOS v6 RC and v7 BETA
Topic: Remote code execution in MikroTik RouterOS v6 (all before 6.41.3)
Replies: 13
Views: 927

Re: Remote code execution in MikroTik RouterOS v6 (all before 6.41.3)

Hi,
Today all our customers who has puplic ip with Mikrotik device stop working. When we check to understand what happen, we see that ethernet interfaces of these devices are not working , and some SXT reseted. İs that related with this vulnerabilities ?

Thanks.
by amt
Wed Feb 14, 2018 7:52 am
Forum: General
Topic: EoIp Tunnel problem
Replies: 4
Views: 192

Re: EoIp Tunnel problem

no, eoip down but i can ping routers from A router to B router and B router to A router.
  • 1
  • 2
  • 3
  • 4
  • 5
  • 8