Community discussions

MikroTik App

Search found 31 matches

by Mp1104
Thu May 24, 2018 11:23 pm
Forum: General
Topic: Router blocking traffic of Shark Ion Robot
Replies: 37
Views: 4666

Re: Router blocking traffic of Shark Ion Robot

I've realized that the AI may be sending a targeted DNS query to the authority servers indicated in the answer later on, so I've edited the rules in post #25 (because I think it is the post which the OP should mark as the solution if he eventually gets back to the topic) by adding a condition that ...
by Mp1104
Tue May 22, 2018 1:03 am
Forum: General
Topic: Router blocking traffic of Shark Ion Robot
Replies: 37
Views: 4666

Re: Router blocking traffic of Shark Ion Robot

At one point I did have issues with port forwarding with XBOX and resorted to the following link which instructs to apply firewall rules the following https://support.microsoft.com/en-us/help/4026770/xbox-open-these-network-ports-for-xbox-one Please do correct me if im wrong with this! I'm afraid i...
by Mp1104
Tue May 22, 2018 12:28 am
Forum: General
Topic: Router blocking traffic of Shark Ion Robot
Replies: 37
Views: 4666

Re: Router blocking traffic of Shark Ion Robot

Second, what did you have in mind when putting in these two rules? /ip firewall nat add action=dst-nat chain=dstnat comment="XBOX 53 TCP" dst-port=53 in-interface=ether1 protocol=tcp to-addresses=10.0.1.XXX to-ports=53 add action=dst-nat chain=dstnat comment="XBOX 53 UDP" dst-port=53 in-interface=e...
by Mp1104
Tue May 22, 2018 12:00 am
Forum: General
Topic: Router blocking traffic of Shark Ion Robot
Replies: 37
Views: 4666

Re: Router blocking traffic of Shark Ion Robot

So please change the /ip dhcp-server network in your configuration, namely, change dns-server=10.0.1.1 to dns-server=8.8.8.8 , so that the AI would bypass Mikrotik's DNS and ask uncle Google's one directly. (Of course you have to restart the AI to get this via DHCP) If it helps, we can find a way t...
by Mp1104
Mon May 21, 2018 11:57 pm
Forum: General
Topic: Router blocking traffic of Shark Ion Robot
Replies: 37
Views: 4666

Re: Router blocking traffic of Shark Ion Robot

So what we know is that: the AI sends a DNS query to pool.ntp.org, gets a list of four candidates for a NTP server, uses one of them and when it gets no response from there, it doesn't bother to try another one. it sends a DNS query to RV750-39a9391a-device.aylanetworks.com, and when it gets an ans...
by Mp1104
Mon May 21, 2018 11:56 pm
Forum: General
Topic: Router blocking traffic of Shark Ion Robot
Replies: 37
Views: 4666

Re: Router blocking traffic of Shark Ion Robot

So what we know is that: the AI sends a DNS query to pool.ntp.org, gets a list of four candidates for a NTP server, uses one of them and when it gets no response from there, it doesn't bother to try another one. it sends a DNS query to RV750-39a9391a-device.aylanetworks.com, and when it gets an ans...
by Mp1104
Mon May 21, 2018 11:27 pm
Forum: General
Topic: Router blocking traffic of Shark Ion Robot
Replies: 37
Views: 4666

Re: Router blocking traffic of Shark Ion Robot

Please save the quote with the address somewhere else and then edit it out from your post above. Have you given a thought to reading it in the direction of the arrow? Downloaded.
Im officially a dumb ass lol, sounds good!

btw I removed the quote with.. ofni ruoy <-- :D
by Mp1104
Mon May 21, 2018 11:22 pm
Forum: General
Topic: Router blocking traffic of Shark Ion Robot
Replies: 37
Views: 4666

Re: Router blocking traffic of Shark Ion Robot

There isnt any way to PM you the link?
Use <-- , I'll edit it out as soon as the message comes.
You have me stumped on that one :lol: I just threw in the flag haha Let me know when you download.
by Mp1104
Mon May 21, 2018 11:00 pm
Forum: General
Topic: Router blocking traffic of Shark Ion Robot
Replies: 37
Views: 4666

Re: Router blocking traffic of Shark Ion Robot

I find it hard to believe the forum has no private message features! Bummer!! Ive done a deep scan on the wireshark file and it appears to not have any sensitive data on it so hopefully I wont be attacked by tomorrow lol. I can take screen shots as well but you wont be able to navigate through the l...
by Mp1104
Mon May 21, 2018 9:50 pm
Forum: General
Topic: Router blocking traffic of Shark Ion Robot
Replies: 37
Views: 4666

Re: Router blocking traffic of Shark Ion Robot

While I work on the sharing, I have provided the sensitive omitted config to view, Im still learning a lot of the L3+, granted I work in the field but primarily deal with L1/L2 (submarine/terrain optical transport only) But I can't thank you enough for assisting me with this! It just seems to not ma...
by Mp1104
Mon May 21, 2018 7:56 pm
Forum: General
Topic: Router blocking traffic of Shark Ion Robot
Replies: 37
Views: 4666

Re: Router blocking traffic of Shark Ion Robot

Here is the requested packet sniff with nothing but the Shark requests. This is all that the packet sniff spits out. There is nothing after line 117. How would you like me to post the wireshark? I can take screen shots as well but you wont be able to navigate through the layers and view the respecti...
by Mp1104
Mon May 21, 2018 12:52 am
Forum: General
Topic: Router blocking traffic of Shark Ion Robot
Replies: 37
Views: 4666

Re: Router blocking traffic of Shark Ion Robot

it appears that it leaves the router 10.0.1.124 UDP utilizing (Ports 49150-49160) and tries to hit a series of external source IP's (presuming it is the cloud databases) at ports 123,
after it times outs on the connections status, it stays with

SRC 10.0.1.124:49153
DST 10.0.1.1:53 (timeout of 2:50)
by Mp1104
Sun May 20, 2018 11:47 pm
Forum: General
Topic: Router blocking traffic of Shark Ion Robot
Replies: 37
Views: 4666

Re: Router blocking traffic of Shark Ion Robot

While I perform this, not sure if this will help, but I was able to narrow down the ion shark mac/ip as it appears to have arp-ed. So I torched the associated/linked ip for the bot and was able to snap this.
by Mp1104
Sun May 20, 2018 10:39 pm
Forum: General
Topic: Router blocking traffic of Shark Ion Robot
Replies: 37
Views: 4666

Re: Router blocking traffic of Shark Ion Robot

I apologize but the the packet sniffer process you have advised brings up nothing but a blank wireshark log when stopped/imported to the desktop and ran on wireshark. It just does not seem to capture anything regardless of interface. Start/Stop/Save etc.
by Mp1104
Sun May 20, 2018 6:39 pm
Forum: General
Topic: Router blocking traffic of Shark Ion Robot
Replies: 37
Views: 4666

Re: Router blocking traffic of Shark Ion Robot

I have the same issue only, I have a Mikrotik hAP that seems to not like this product either. Ive tried everything. From the items suggested above to changing all of the wifi settings and The ion robot has its own internal wifi - 10.221.203.1 My internal mikrotik router is - 10.0.1.0/24 It instructs...
by Mp1104
Sun Jan 17, 2016 12:39 am
Forum: General
Topic: ISP Static WAN issues (Configuration)
Replies: 8
Views: 1644

Re: ISP Static WAN issues (Configuration)

It's DNS. Go into IP > DNS and specify some servers there - either the ones your ISP gave you to use, or just put 8.8.8.8 and 4.2.2.2 in there. ZeroByte, I apologize for the delayed response, I was able to trace the issue to the modem, for some particular reason it was experiencing DNS resolution i...
by Mp1104
Fri Jan 08, 2016 9:33 pm
Forum: General
Topic: ISP Static WAN issues (Configuration)
Replies: 8
Views: 1644

Re: ISP Static WAN issues (Configuration)

hello! I tried to perform a ping through terminal within mikrotik and it cannot resolve, I do see an "R" (gateway1) while in interface list and it is acquiring an ARP from the .109 looks like it could be a DNS issue I cannot seem to figure out. I am as well receiving m traffic to a device (laptop) b...
by Mp1104
Tue Dec 29, 2015 6:54 pm
Forum: General
Topic: ISP Static WAN issues (Configuration)
Replies: 8
Views: 1644

Re: ISP Static WAN issues (Configuration)

Your configuration looks correct. I suspect that the link to your ISP's device is not working right. Check the ARP cache. In winbox, go to IP > ARP You should see a MAC address for xx.xx.xxx.109 If not, then you've got a communication problem on ether1-gateway My 2011 wouldn't link to my cablemodem...
by Mp1104
Tue Dec 29, 2015 2:41 pm
Forum: General
Topic: ISP Static WAN issues (Configuration)
Replies: 8
Views: 1644

Re: ISP Static WAN issues (Configuration)

[admin@MikroTik] > export # dec/28/2015 23:22:44 by RouterOS 6.33.3 # software id = 1CJK-0VUQ # /interface bridge add admin-mac=XX:XX:XX:XX:XX:34 auto-mac=no name=bridge-local /interface ethernet set [ find default-name=ether1 ] name=ether1-gateway set [ find default-name=ether2 ] name=ether2-master...
by Mp1104
Tue Dec 29, 2015 7:02 am
Forum: General
Topic: ISP Static WAN issues (Configuration)
Replies: 8
Views: 1644

ISP Static WAN issues (Configuration)

Hello, I am attempting at configuring a Static IP provided by an internet service provider on a RouterBoard 2011Ui AS-RM. This is my first attempt at this configuration, Ive exhausted all efforts and have searched forums and videos to no resolve. I was provided the following information by the ISP S...
by Mp1104
Wed Jul 01, 2015 9:52 pm
Forum: General
Topic: Blocking unwanted IP login attempts
Replies: 1
Views: 695

Re: Blocking unwanted IP login attempts

I just learned about this myself not too long ago.

Go to, IP/Services/and disable each service you want. If your using strictly WinBox disable all except for Winbox and WWW,

or simply change all the ports for each service to a custom port number so they are not your commonly used ports.
by Mp1104
Mon Jun 29, 2015 4:38 am
Forum: General
Topic: Methods to possibly blocking all IP traffic based on Location?
Replies: 13
Views: 2111

Re: Methods to possibly blocking all IP traffic based on Location?

KillerOPS! you are the man! Thanks a bunch, I just did that and worked like a charm!
by Mp1104
Sat Jun 20, 2015 11:02 am
Forum: General
Topic: Methods to possibly blocking all IP traffic based on Location?
Replies: 13
Views: 2111

Re: Methods to possibly blocking all IP traffic based on Location?

If you don't want to add them one by one, you should take the IP files from that website and automate using PHP, bash, or something else to output a properly formatted .rsc script that can be imported into the router and automatically add the address list entries. You'd also have to add firewall ru...
by Mp1104
Sat Jun 20, 2015 11:01 am
Forum: General
Topic: Methods to possibly blocking all IP traffic based on Location?
Replies: 13
Views: 2111

Re: Methods to possibly blocking all IP traffic based on Location?

Do you use SSH/telnet often on that router? If you use winbox to administer your devices, simple disable SSH/telnet in services.... Thank you very much! Didnt think to do that. I am still getting a decent amount of attempts according to the log, for example: input: in:ether1 out:(none), src-mac XX:...
by Mp1104
Fri Jun 19, 2015 7:50 am
Forum: General
Topic: Methods to possibly blocking all IP traffic based on Location?
Replies: 13
Views: 2111

Re: Methods to possibly blocking all IP traffic based on Location?

I am literally being "Brute Force" attacked daily with IP's attempting to Log in via SSH, Telnet, according to my log.. I have set strict rules but has not detoured whom ever from continuing these attempts at logging in. I was being attacked about 300+ times a day. Now each IP that attempts gets X a...
by Mp1104
Fri Jun 19, 2015 2:41 am
Forum: General
Topic: Methods to possibly blocking all IP traffic based on Location?
Replies: 13
Views: 2111

Re: Methods to possibly blocking all IP traffic based on Location?

ok, Understood! and thank you for the reply. I have a list I acquired from ipdeny.com and its about a list of 4000+ ips :( Is there any easier way of performing this through CLI? rather then inputting it block by block through the WebGUI Firewall Filter? using telnet o ssh or in winbox you can laun...
by Mp1104
Thu Jun 18, 2015 10:34 pm
Forum: General
Topic: Methods to possibly blocking all IP traffic based on Location?
Replies: 13
Views: 2111

Re: Methods to possibly blocking all IP traffic based on Location?

ok, Understood! and thank you for the reply. I have a list I acquired from ipdeny.com and its about a list of 4000+ ips :(

Is there any easier way of performing this through CLI? rather then inputting it block by block through the WebGUI Firewall Filter?
by Mp1104
Thu Jun 18, 2015 10:32 pm
Forum: Beginner Basics
Topic: Clients not displaying "dropped connection icon"
Replies: 3
Views: 926

Re: Clients not displaying "dropped connection icon"

Thank you Feklar !!!!
by Mp1104
Thu Jun 18, 2015 6:06 am
Forum: General
Topic: Methods to possibly blocking all IP traffic based on Location?
Replies: 13
Views: 2111

Methods to possibly blocking all IP traffic based on Location?

Hello all,

Was curious to know if there is a way to block all IP/Traffic based on location utilizing the Firewall Filter Application within RouterOS?

So for example:

Blocking all requests or pings from a particular Country, etc?
by Mp1104
Wed Jun 17, 2015 11:48 pm
Forum: Beginner Basics
Topic: Clients not displaying "dropped connection icon"
Replies: 3
Views: 926

Re: Clients not displaying "dropped connection icon"

Anyone? Im sure it seems basic but a little help here would be appreciative. Thanks.
by Mp1104
Tue Jun 16, 2015 4:43 am
Forum: Beginner Basics
Topic: Clients not displaying "dropped connection icon"
Replies: 3
Views: 926

Clients not displaying "dropped connection icon"

If WAN is disconnected or the cable modem goes offline, the connection status icon on the clients laptop/desktop adapter still shows an "active connection" as opposed to an exclamation for "no internet"

Any input as to why this is occurring?