I sent the support question+file
Thanks,
Gabriel

Thanks for clarifying. However for home usage the only alternatives are lets encrypt (auto - update not possible) and self-signed (then the problem with CA certificate)...
Can you say something about Android StrongSwan??

Thanks,
Gabriel

Windows and Macs, does not support EAP-ONLY (at least by default as far as I know). I can accept that for the moment... although it looks like IKEv2+EAP-MSCHAPv2 should work on windows... Only client that I know for mobile devices is StrongSwan on Android that supports EAP-Only. If you read my post...

Preshared key may not be MT specific, but that's not the problem. To simplify: Can you tell me what options (clients) do I have for Windows / Android for IKEV2 without certificates?? From what I read, the Windows build-in client and StrongSwan Android client are the de-facto standards for those resp...

I am trying with current 6.39.2 to setup a simple ikev2 vpn. I want to use authentication without certificates. Preshared key seems to be Mikrotik specific, therefore the only option is EAP Radius. I setup the User manager to serve as Radius, and it seems to work. But I could not start the vpn neith...

Channel list seems to work properly, but I would like to see the current channel/frequency in the CAP interface list, similar to SSID, Band, etc.
The columns are there but empty.

It depends on what device you have. But certainly the only useful backup is the backup that you have downloaded to another system. Keeping your backup on the router is not useful as it will be gone when you need to factory-reset it, the time you need the backup. I saved the backup when reading abou...

Reading about the 6.39 problems, I have just made a backup before upgrading (via Winbox / Files), directly in root.
However, the backup file disappeared after upgrade; is it normal??
Fortunately the configuration was kept...

Regards,
Gabriel

I had problems with auto generated certificates with CAPsMAN and local radio. I simply prepared a board (wAP ac) with CAPsMAN and also enabling local radio for CAPsMAN. There are some log errors related to issued certificate, which remains unsigned (?). It work shortly on the current session, but af...

Hello, I am thinking to use a few APs (wAP ac or NetBox) in an outdoor situation where no cable is possible (only power). The easy solution would be to set them up as repeaters, that works quite good. However, for maintenance I would also like to be able to change the wifi settings (mainly passwords...

Does it make sense to add non-PtP devices to this comparison? - HAP AC lite - HAP AC - WAP AC - ... Indoor AP devices are usually used with End User devices, such as phones. The limiting factor here would be the phone. They all have similar max distance, few tens of meters. I have a potential appli...

I'm not sure to understand what you're saying (mainly when you talk about "parallel" connector). Maybe I dont get how "your" device (called "splitter" or other word) is really working inside. In that case, sorry. What you're talking about is a 8 -> 2x4 splitter, I use myself to make 2x100Mb ports o...

I'm not sure, but it will probably not work. It might even be dangerous. So you should not try. Because, when using this kind of splitter, the 8 wires will be separated into 2 groups of 4 wires. So, the power of POE that is initially on some wires (I dont remember exactly which) will be sent to oth...

In you situation, you need 2 injectors. NB: you'll also need one female-female rj45 adaptor that will connect the 2 injectors together (this connection is only for data transfer, not power). Something like that thing You would be able to use only 1 injector if one of the 2 devices had (another) por...

Hello, I plan to connect a few outdoor wAP ac devices (ideally in repeater mode), but some of them will probably need an SXT to connect upstream (no cable possible, but power is available). Question: as both SXT and wAP have 1 Eth port, can I simply connect them together with 1 PoE injector? Or do I...

Why not put the Fritzbox behind the Mikrotik as the kids network and have it do its filtering before the traffic reaches the Mikrotik? I would happily do it, but I would need another VDSL modem; I couldn't find any cheap one... they're usually much more expensive than my MT router... Regards, Gabriel

I am trying to connect a Mikrotik router to my home network using special requirements... Basically I want it as a transparent gateway/filter on the existing network (*without* NAT). I first tried in bridge mode: http://forum.mikrotik.com/viewtopic.php?f=2&t=94527 Posted a feature request here: http...

See here:
http://forum.mikrotik.com/viewtopic.php?f=1&t=94821

Gabriel

You understood quite right. It is a transparent router, which (in rare cases) needs to break (redirect) the usual bridge processing. The main reason for keeping it in bridge mode is that I already have a front router + dsl modem (AVM fritzbox), which does VERY well for parental control / filtering; ...

Thanks for taking your time to reply. Please note that I'm talking about BRIDGE dst-nat (not IP routing), where I ONLY want (actually HAVE) to redirect packets from bridge to internal, in order to force another route. And yes, I read the packet flow, that's why I marked the post with "feature reques...

Hello, I'm relatively new to RouterOS, but I start to better understand the packet flow ... In my situation, I want to make some bridge dstnat (i..e. redirect) based on some packet inspection. The issue is, packet inspection is done best with IP firewall / mangle but it's too late for redirect. Now ...

It took a while, but I think I solved it... I first used connection markers (for convenience, to be able to see in the connection list) , then a last mangle rule which applied the routing marker for the connection marker. It looks like this doesn't work, if I do NOT also select the input interface. ...

Hi, I have just bought my first RB, after reading good reviews about routeros. I have spent a few days trying to implement my setup idea, without success. Therefore I decided to ask for help... Please note that I'm not a beginner, but not an expert either. I have a front modem/router, AVM fritzbox, ...

Hi, I have just bought my first RB, after reading good reviews about routeros. I am trying since several days to make it work the way I want (like here: http://wiki.mikrotik.com/wiki/Policy_Base_Routing), but I finally found that the vpn connections do not properly work. Please note that I'm not a b...