Community discussions

Search found 235 matches

by OKNET
Thu Jul 25, 2019 3:19 pm
Forum: Announcements
Topic: v6.45.2 [stable] is released!
Replies: 206
Views: 33590

Re: v6.45.2 [stable] is released!

Not any direct method to access to flash neither ?
by OKNET
Thu Jul 25, 2019 2:15 pm
Forum: Announcements
Topic: v6.45.2 [stable] is released!
Replies: 206
Views: 33590

Re: v6.45.2 [stable] is released!

hAP lite has 32MB ram 16MB flash No way to update after deleting all files and rebooted more than once (had to try netinstall yet). The winbox method system->packages>CheckForUpdates, finds new version but "download and install button" refuses to appear (likely because of space issue). Previously h...
by OKNET
Mon Jul 22, 2019 6:05 pm
Forum: Announcements
Topic: v6.45.2 [stable] is released!
Replies: 206
Views: 33590

Re: v6.45.2 [stable] is released!

hAP lite has 32MB ram 16MB flash
No way to update after deleting all files and rebooted more than once (had to try netinstall yet).
The winbox method system->packages>CheckForUpdates, finds new version but "download and install button" refuses to appear (likely because of space issue).
by OKNET
Mon Jul 22, 2019 4:02 pm
Forum: Beginner Basics
Topic: New filter rules ?
Replies: 6
Views: 627

New filter rules ?

Looking at filter rules after 6.45.2 hAP lite has been conf-resetted : 0 D comment=special dummy rule to show fasttrack counters chain=forward action=passthrough 1 comment=defconf: accept established,related,untracked chain=input action=accept connection-state=established,related,untracked 2 comment...
by OKNET
Mon Jul 22, 2019 11:54 am
Forum: Announcements
Topic: v6.45.2 [stable] is released!
Replies: 206
Views: 33590

Re: v6.45.2 [stable] is released!

Ok for manual extracting and install packages for hAP lite but....... what about next releases ? no more npk-upgradable ?

Is it ok to have 7,4 MB available out of 16 total ?
by OKNET
Fri Jul 12, 2019 11:34 am
Forum: General
Topic: Problem with inactive recursive routes
Replies: 1
Views: 240

Problem with inactive recursive routes

As per https://wiki.mikrotik.com/wiki/Advanced_Routing_Failover_without_Scripting : My actual routes: 0 A S comment=Failover gwa dst-address=0.0.0.0/0 gateway=10.17.13.1 gateway-status=10.17.13.1 recursive via 172.16.217.254 ether1 distance=1 scope=30 target-scope=10 routing-mark=to_WAN1 1 S comment...
by OKNET
Sat Jun 29, 2019 2:34 am
Forum: Beginner Basics
Topic: DDNS on a specific WAN
Replies: 0
Views: 289

DDNS on a specific WAN

A LAN device makes DDNS updates (www.noip.com)
Routerboard has two WAN (two ISP) , how can I force calls to www.noip.com to use a specific WAN ?
I cannot route by domain name...
by OKNET
Fri Jun 28, 2019 3:48 pm
Forum: Beginner Basics
Topic: How to switch immediately after a failover ?
Replies: 7
Views: 848

Re: How to switch immediately after a failover ?

Actually, it seems to have not a great effect....
In which position should I place it among forward chain rules ?

Rather than notify client, shouldn't be more effective to cut out dead connections ?
by OKNET
Fri Jun 28, 2019 12:34 pm
Forum: Beginner Basics
Topic: How to switch immediately after a failover ?
Replies: 7
Views: 848

How to switch immediately after a failover ?

Usual failover without scripting: https://wiki.mikrotik.com/wiki/Advanced_Routing_Failover_without_Scripting Once a virtual gateway is down due to loss of internet connectivity, the second gateway is immediately available but all old tcp connections (as seen in /ip firewall connection) are still up ...
by OKNET
Tue Nov 20, 2018 12:08 pm
Forum: General
Topic: Watchguard Firebox hardware and RouterOS?
Replies: 16
Views: 5413

Re: Watchguard Firebox hardware and RouterOS?

Just installed 6.43.4 into a X700 64MB CompactFlash and enabled LCD Nothing easier..... for an old unused HW X700 comes with a miniPCI slot equipped with an AV-SFB160 VPN accelerator card , once replaced with a Routerboard R52 found on my toolbox, it was immediately recognized and running .... Works...
by OKNET
Mon Oct 15, 2018 9:27 am
Forum: Virtualization
Topic: CHR license on router with no internet
Replies: 11
Views: 1971

Re: CHR license on router with no internet

Once the 60 days runs out there is no detriment to the OS, it carries on working fine apart from you cannot upgrade the software package any further. New to CHR, do you mean after trial period CHR still works at full speed and full capabilities but no more way to upgrade ?? I hope nobody choose thi...
by OKNET
Tue Oct 02, 2018 9:43 am
Forum: General
Topic: FTP port forwarding works only on one WAN
Replies: 9
Views: 536

Re: FTP port forwarding works only on one WAN

Thank you for replies, So the issue is the double nat, and it doesn't happen in pppoe as the public IP is directly assigned to MT WAN interface Yes , all ports from public ip address are natted from router (10.0.10.1) to routerboard WAN (10.0.10.254) Connection mark for dual wan already done this wa...
by OKNET
Mon Oct 01, 2018 6:35 pm
Forum: General
Topic: FTP port forwarding works only on one WAN
Replies: 9
Views: 536

FTP port forwarding works only on one WAN

FTP to port 2121 of both public ip addresses of two ISP connections , points to LAN ftp server, port 21 : add action=dst-nat chain=dstnat dst-port=2121 in-interface-list=WANs protocol=tcp to-addresses=192.168.1.100 to-ports=21 The connection works over a pppoe WAN with public ip address released to ...
by OKNET
Thu Sep 27, 2018 10:26 am
Forum: Scripting
Topic: Need to fix this update script:
Replies: 0
Views: 254

Need to fix this update script:

As described in https://forum.mikrotik.com/viewtopic.php?f=7&t=131039 I'm using this line to downlad new npk files into CAPs manager to be available to APs update (as "require same version") : /tool fetch address="download.mikrotik.com" mode=https src-path="/routeros/$newVer/routeros-mipsbe-$newVer....
by OKNET
Thu Jul 19, 2018 11:41 am
Forum: Wireless Networking
Topic: CAPsMAN restrict SSID to one band [SOLVED]
Replies: 8
Views: 1204

Re: CAPsMAN restrict SSID to one band [SOLVED]

I don't have any channel configuration. The fact you have an SSID configuration that matches a RADIO MAC address, means that configuration, thus that SSID will be used only on THAT radio. So 5GHz radio = aa:bb:cc:dd:ee:01 = config01 = SSID_A 2.4GHz radio = aa:bb:cc:dd:ee:02 = config02 = SSID_B simpl...
by OKNET
Mon Jul 16, 2018 4:33 pm
Forum: Wireless Networking
Topic: CAPsMAN restrict SSID to one band [SOLVED]
Replies: 8
Views: 1204

Re: CAPsMAN restrict SSID to one band [SOLVED]

That was, basically, what I suggested you to do...... :o You have chosen two provisioning rules , based on hw-supported-modes rather than mac-address of each radio.... Mine was: add action=create-dynamic-enabled master-configuration=cfg_5g name-format=identity radio-mac=6C:3B:6B:xx:xx:xx add action=...
by OKNET
Wed Jul 11, 2018 5:01 pm
Forum: Wireless Networking
Topic: CAPsMAN 5ghz
Replies: 9
Views: 6021

Re: CAPsMAN 5ghz

You must set a frequency for that channel, and make sure the relative extension channels don't fall in a restricted portion of band denied by your country regulatory domain (if set) or out of band at all.
by OKNET
Wed Jul 11, 2018 4:51 pm
Forum: Wireless Networking
Topic: CAPsMAN restrict SSID to one band [SOLVED]
Replies: 8
Views: 1204

Re: CAPsMAN restrict SSID to one band [SOLVED]

I have simply created two provisioning rules that match each Radio MAC (thus each band inside the same AP)

Each rule points to a different Master Configuration with its own SSID (no need for slave configuration, I use them for multiple SSID inside the same band if needed)
by OKNET
Wed Jul 11, 2018 4:35 pm
Forum: Wireless Networking
Topic: CAPsMAN + 10 AP
Replies: 2
Views: 425

Re: CAPsMAN + 10 AP

In Registration Table you will find the connected clients , not the APs.
by OKNET
Thu Jun 28, 2018 4:53 pm
Forum: General
Topic: L2TP failover
Replies: 3
Views: 299

Re: L2TP failover

Completely different subnets. However, I found a simple workaround: Since recent Ros versions, hostnames are allowed as L2TP client target, I've set an arbitrary domain name pointing to both addresses : /ip dns static add address=<ISP1_public_address> name=myl2tpserver.fail add address=<ISP2_public_...
by OKNET
Thu Jun 28, 2018 4:09 pm
Forum: General
Topic: L2TP failover
Replies: 3
Views: 299

L2TP failover

My MT L2TP server has tho different ip addresses from different ISP

How can the second ip address be used as failover from MT L2TP client ?
by OKNET
Thu Jun 28, 2018 9:36 am
Forum: Wireless Networking
Topic: 6.42.5 : w60g
Replies: 0
Views: 338

6.42.5 : w60g

ROs 6.42.5 : w60g - improved maximum achievable distance;

how much, generally, in percentage ?
by OKNET
Fri Jun 15, 2018 3:34 pm
Forum: Wireless Networking
Topic: 60Ghz 2.4km - possible?
Replies: 41
Views: 5721

Re: 60Ghz 2.4km - possible?

I wonder how many distortion reflections and attenuation has 1Km path in between modern buildings , and with bad weather conditions.... Probably something better can be expected in a longer unobstructed path (i.e. mountain to mountain , mountain to lowland, skyscrape to mountain etc...) manuzoli sai...
by OKNET
Fri Jun 15, 2018 12:48 pm
Forum: Wireless Networking
Topic: 60Ghz 2.4km - possible?
Replies: 41
Views: 5721

Re: 60Ghz 2.4km - possible?

Is it an unobstructed path ?

2,4Km link is a very short distance for clear path , unless 60GHz devices have some intrinsic limitation (they are 802.11ad devices).....
by OKNET
Wed Jun 13, 2018 11:55 am
Forum: Wireless Networking
Topic: [SOLVED] CAPSMAN + "Manager Forwarding Mode" + Tagged VLANs (=> use case: EDUROAM)
Replies: 14
Views: 3835

Re: [SOLVED] CAPSMAN + "Manager Forwarding Mode" + Tagged VLANs (=> use case: EDUROAM)

I have to do it in CRS125 but is confusing me: I have a bridge1 bonding all switch ports together as replacement of old master-port I have three vlan to bridge1: add interface=bridge1 name=vlan10 vlan-id=10 add interface=bridge1 name=vlan20 vlan-id=20 add interface=bridge1 name=vlan30 vlan-id=30 The...
by OKNET
Tue Jun 12, 2018 6:42 pm
Forum: General
Topic: Mikrotik RB3011 Question about Lans
Replies: 10
Views: 602

Re: Mikrotik RB3011 Question about Lans

Is PoE switch used for cameras purpose only ?
If so , you can assign a different LAN subnet (included the routerboard ethernet port it connects to) and filter its outgoing traffic in firewall.
by OKNET
Tue Jun 12, 2018 8:57 am
Forum: General
Topic: LCD Display causing packet loss... what???
Replies: 14
Views: 1737

Re: LCD Display causing packet loss... what???

It would be interesting to know if other products using LCD are affected this way.....
by OKNET
Mon Jun 11, 2018 9:16 pm
Forum: General
Topic: Need recommendations on a FAST mikrotik box (1Gb link)
Replies: 8
Views: 1433

Re: Need recommendations on a FAST mikrotik box (1Gb link)

Always good to know about others experience
So hap-ac2 is comparable if not better with 3011 ??
So it should be better than HEX or HEXs ?

Or is it quality vs price involved in your comparation ?
by OKNET
Mon Jun 11, 2018 8:05 pm
Forum: General
Topic: CAPsMAN and VLAN without local forwarding
Replies: 6
Views: 1065

Re: CAPsMAN and VLAN without local forwarding

Sindy, I admit CAPsMAN philosophy is a little tricky for unexperienced like me. I always used NO local forwarding, just all traffic controlled by manager (mostly wifi for some hotels) But they don't need VLANs yet, I'm doing some experiment in laboratory where are four VLANs I need a pair of SSID (m...
by OKNET
Mon Jun 11, 2018 7:53 pm
Forum: General
Topic: Need recommendations on a FAST mikrotik box (1Gb link)
Replies: 8
Views: 1433

Re: Need recommendations on a FAST mikrotik box (1Gb link)

Squeeze,
What about RB3011 in the list ?
by OKNET
Mon Jun 11, 2018 10:44 am
Forum: General
Topic: CAPsMAN and VLAN without local forwarding
Replies: 6
Views: 1065

CAPsMAN and VLAN without local forwarding

From what I understood, NO-local forwarding (or manager forwarding) causes the system to create new interfaces that pratically reflect the wireless interfaces of each AP. This requires a bridge (and only a bridge) to be declared as datapath in manager configuration. As I use VLANs , how can I set da...
by OKNET
Mon Jun 11, 2018 10:19 am
Forum: General
Topic: more vlan trunks on CRS125 ?
Replies: 4
Views: 420

Re: more vlan trunks on CRS125 ?

Thank you Artz, One thing is not clear to me from that wiki, look at "Port based VLAN" and "InterVLAN Routing" examples: The bridge, the ingress-vlan-translation and the egress-vlan-tag are the same. They differ in Vlan membership declaration. Port based VLAN uses "/interface ethernet switch vlan" I...
by OKNET
Fri Jun 08, 2018 3:21 pm
Forum: General
Topic: more vlan trunks on CRS125 ?
Replies: 4
Views: 420

Re: more vlan trunks on CRS125 ?

Thank you for link In wiki , switch1-cpu port is added to /interface ethernet switch egress-vlan-tag in each desired vlan Should I do the same for all ethernet ports intended to be vlan trunks carrying tagged vlans to other switches ? Should those ethernet ports be added to bridge anyway ? Thanks
by OKNET
Fri Jun 08, 2018 1:04 pm
Forum: General
Topic: more vlan trunks on CRS125 ?
Replies: 4
Views: 420

more vlan trunks on CRS125 ?

I followed https://wiki.mikrotik.com/wiki/Manual:CRS1xx/2xx_series_switches_examples , expecially inter-vlan routing On my CRS125 ports 1-21-22 are trunks carrying tagged vlans to three switches , ports 23 and 24 are WANs, the remaining ports (2 to 20) are members of VLAN10 untagged. As per wiki I s...
by OKNET
Thu May 24, 2018 3:56 pm
Forum: Wireless Networking
Topic: Again on WAP-AC PoE requirement
Replies: 7
Views: 875

Re: Again on WAP-AC PoE requirement

Mikrotik devices simply are NOT fully 802.11af/at compliant. They might be compatible to some switches, yes. But they lack the support of all requirements. It seems they are missing galvanic isolation. wAP ac is an older product. New products are fully compatible. What do you mean for "new products...
by OKNET
Tue May 22, 2018 10:27 am
Forum: Wireless Networking
Topic: Again on WAP-AC PoE requirement
Replies: 7
Views: 875

Again on WAP-AC PoE requirement

I'm still stuck and confused on PoE power requirement of wap-ac specifications say : PoE in 802.3af/at Some 802.3af switches can easily handle them, where other ones fail When running , wap-ac draws a ridiculos 4to8W any af PoE should be capable of....... Nobody has been able to tell me if PoE budge...
by OKNET
Tue May 22, 2018 9:58 am
Forum: General
Topic: Advanced Routing Failover without Scripting questions:
Replies: 3
Views: 672

Re: Advanced Routing Failover without Scripting questions:

Since both are already used and I need a pair more (a pair for first wan and a pair for the second one) , what else do you suggest ??
by OKNET
Wed May 16, 2018 9:33 am
Forum: General
Topic: Port forwarding inside the same lan
Replies: 3
Views: 379

Re: Port forwarding inside the same lan

Sindy; thanks for clear explanation.
RoadkillX : so what's the entire rule ?
by OKNET
Tue May 15, 2018 1:07 pm
Forum: General
Topic: Port forwarding inside the same lan
Replies: 3
Views: 379

Port forwarding inside the same lan

I need to do a prot forwarding between machines on the same lan: packets from 192.168.1.0/24 machines to 192.168.1.1 on port 8080 (routerboard lan ip address) must be redirected to 192.168.1.10 on port 80 , so I tried add chain=dstnat action=dst-nat to-addresses=192.168.1.10 to-ports=80 protocol=tcp...
by OKNET
Tue May 08, 2018 5:16 pm
Forum: General
Topic: Advanced Routing Failover without Scripting questions:
Replies: 3
Views: 672

Advanced Routing Failover without Scripting questions:

https://wiki.mikrotik.com/wiki/Advanced_Routing_Failover_without_Scripting Which internet hosts do you choose for ping check ?? (often, big companies change ip address or ping policies....resulting unreachable) Do you experience , sometimes, routes become "unreachable" despite you can ping hosts cor...
by OKNET
Thu May 03, 2018 8:56 pm
Forum: Wireless Networking
Topic: CAPsMAN how to keep .npk updated ? (Cap Manager auto-update)
Replies: 4
Views: 3080

Re: CAPsMAN how to keep .npk updated ? (Cap Manager auto-update)

Very probably I'm less expert in scripting than you... :D A said , I've copied some sources, and that sequence was done that way , probably , yes , it can be modified to do a firmware check and upgrade once routerboard has rebooted after a package upgrade (so I don't bother so much....new package to...
by OKNET
Wed May 02, 2018 11:27 am
Forum: Wireless Networking
Topic: CAPsMAN how to keep .npk updated ? (Cap Manager auto-update)
Replies: 4
Views: 3080

Re: CAPsMAN how to keep .npk updated ?

Basically I need to update .npk file for APs AUTOMATICALLY before Manager upgrade. Copying and mixing parts from some sources and wiki I'm ended with this simple working script : ############# create ap file directory: "apdir" ############# create the update schedule: /system scheduler add name=Auto...
by OKNET
Thu Apr 26, 2018 9:29 am
Forum: General
Topic: Auto upgrade wiki scripts fails
Replies: 2
Views: 504

Auto upgrade wiki scripts fails

As per wiki : /system package update check-for-updates once :delay 1s; :if ( [get status] = "New version is available") do={ install } running manually it says : channel: current current-version: 6.42 status: finding out latest version... input does not match any value of value-name Already tried to...
by OKNET
Fri Apr 20, 2018 9:05 am
Forum: Wireless Networking
Topic: Bridging the same subnet
Replies: 5
Views: 846

Re: Bridging the same subnet

Ok for WDS, But I was surprised by wiki saying : The MPLS/VPLS approach has some advantages: VPLS tunnel is about 60% faster and less overhead than EoIP tunnel 802.11n speed is limited over WDS bridges, this method doesn't have such limitations It should be interesting to know which configuration ha...
by OKNET
Thu Apr 19, 2018 6:42 pm
Forum: Wireless Networking
Topic: Bridging the same subnet
Replies: 5
Views: 846

Re: Bridging the same subnet

I'm again on this old post , thinking at this method over the "new" 802.11ac protocol: still valid for bridging the same subnet or something better is available ?

Thank you
by OKNET
Wed Apr 18, 2018 5:00 pm
Forum: Wireless Networking
Topic: So, what protocol to use in PtP link ?
Replies: 1
Views: 318

So, what protocol to use in PtP link ?

After latest discussions about NV2 quality for a Point to Point link, is it still the best protocol to be used ?
Thank you
by OKNET
Thu Apr 12, 2018 6:01 pm
Forum: General
Topic: two l2tp connections from same ip address
Replies: 7
Views: 1850

Re: two l2tp connections from same ip address

Yes , I'm using L2TP with IPsec

No tests made with plain L2TP
by OKNET
Thu Apr 12, 2018 4:57 pm
Forum: General
Topic: two l2tp connections from same ip address
Replies: 7
Views: 1850

Re: two l2tp connections from same ip address

Thank you
Hoping MikroTik staff take this in consideration for next firmwares