Community discussions

MUM Europe 2020

Search found 12 matches

by schmidtc63
Sun Feb 25, 2018 8:46 pm
Forum: General
Topic: Cable modem with a set of static ips
Replies: 5
Views: 398

Re: Cable modem with a set of static ips

Got a resource I can look at? Basically, I have a list of firewall rules including mangle and nat rules that every packet/connection from the outside needs to honor.

How do I configure eth1 and eth2?

Thanks,
Chris
by schmidtc63
Sun Feb 25, 2018 8:27 pm
Forum: General
Topic: Cable modem with a set of static ips
Replies: 5
Views: 398

Re: Cable modem with a set of static ips

No, that ip is what the cable company said I should use as a gateway. I assumed that was the modem ip address. In other words, if I weren't trying to install a router/firewall in the middle, I would just assign a workstation an ip -- 66.1.1.242 -- and a gateway of 66.1.1.241. I'm just trying to put ...
by schmidtc63
Sun Feb 25, 2018 6:31 pm
Forum: General
Topic: Cable modem with a set of static ips
Replies: 5
Views: 398

Cable modem with a set of static ips

Greetings. I need to setup up a Mikrotik router and a cable modem. The cable company has provided me with a public /28, say 66.1.1.240-255 with a gateway address -- 66.1.1.241 -- as part of the /28. The router has two ethernet ports, one of which will have the cable modem directly attached. I assume...
by schmidtc63
Thu Oct 26, 2017 6:22 pm
Forum: General
Topic: Address-List entry not being removed after timeout expires [SOLVED]
Replies: 7
Views: 675

Re: Address-List entry not being removed after timeout expires [SOLVED]

So maybe you should remove your bug report in the 6.39.3 topic?
Updated rather than removed.
by schmidtc63
Thu Oct 26, 2017 3:46 pm
Forum: General
Topic: Address-List entry not being removed after timeout expires [SOLVED]
Replies: 7
Views: 675

Re: Address-List entry not being removed after timeout expires [SOLVED]

Not at all. Well, not a MikroTik bug. Operator bug. I added those rules directly after the upgrade a couple months ago. Coincidental.
by schmidtc63
Thu Oct 26, 2017 3:24 am
Forum: General
Topic: Address-List entry not being removed after timeout expires [SOLVED]
Replies: 7
Views: 675

Re: Address-List entry not being removed after timeout expires [SOLVED]

And, I found the issue.

I had set up some NAT rules a while back that added to the address list. The default on NAT for the time out is "none dynamic". I simply changed this to a time and all is working.
by schmidtc63
Thu Oct 26, 2017 3:18 am
Forum: General
Topic: Address-List entry not being removed after timeout expires [SOLVED]
Replies: 7
Views: 675

Re: Address-List entry not being removed after timeout expires [SOLVED]

I'll try 30 minutes next. The thing is, this use to work with no issues until the 6.38 or update.
by schmidtc63
Wed Oct 25, 2017 8:36 pm
Forum: General
Topic: Address-List entry not being removed after timeout expires [SOLVED]
Replies: 7
Views: 675

Address-List entry not being removed after timeout expires [SOLVED]

RouterOS 6.40.4 I have a firewall rule that adds an ip to an address-list with a timeout of 00:02:00 (2 minutes). Before the 6.38 upgrade, when the timeout was reached, the entry was removed from the address-list. That is not happening any more. I now have an address-list of over 100,000 entries. I ...
by schmidtc63
Wed Oct 25, 2017 7:54 pm
Forum: Announcements
Topic: v6.39.3 [bugfix] is released!
Replies: 47
Views: 19181

Re: v6.39.3 [bugfix] is released!

Update: 2017-10-26 Issue is not an issue. The default timeout setting when adding to a list from NAT is to never expire. This can be modified with a simple timeout -- ex., 00:30:00. Working as expected, now. Original post: 2017-10-25 Still not properly removing entries from address-list after timeout.
by schmidtc63
Tue Mar 03, 2015 6:55 pm
Forum: General
Topic: It took me a while to overcome my skepticism but...
Replies: 0
Views: 793

It took me a while to overcome my skepticism but...

So, was really skeptical that RouterOS could be used as a backbone router. However, my ImageStream router from 2006 was showing its age (Celeron single core/512 RAM) so I took the plunge. Hardware: Quad-core Pentium 2 Gigs RAM 2 Intel GigE NICs Asus Motherboard Rackmount 2u Total Cost: around $800 1...
by schmidtc63
Wed Feb 04, 2015 1:25 am
Forum: General
Topic: How do I stop mail hacking attempts?
Replies: 3
Views: 806

Re: How do I stop mail hacking attempts? [SOLVED]

Really, what I wanted to do was flag any ip addresses that tried, for example, 5 connections in a given time period. The previous rule was not working because it was blocking too many legitimate connections. I could not find the proper combination of connection-limit, packet limit and whatnot. Nothi...
by schmidtc63
Mon Feb 02, 2015 5:17 pm
Forum: General
Topic: How do I stop mail hacking attempts?
Replies: 3
Views: 806

How do I stop mail hacking attempts?

The logs on my mail server are full of authorization attempts from bots. Quite often, there will be 100s of attempts in 2 or 3 minutes from the same ip trying various email addresses on both smtp and pop. How do I stop these? I have the following rules setup in the router to handle the smtp side (no...