MikroTik

divB

Thanks for responding. Ok, let me try: Interfaces: br-wan (=main uplink), gre-vultr (=second uplink, via GRE tunnel), br-lan (local RF1912 network). br-wan's address is 233.252.102.170 and has it's default gateway 233.252.102.169 (via NAT). /ip address add address=192.168.200.254/24 interface=br-lan...

divB

Hi, I have multiple uplinks on my router, say br-wan1 and br-wan2. br-wan1 is default gateway but I use source routing ("ip rule") to ensure a separate routing table is consulted for traffic with source for br-wan2. This works exactly as expected. However, RouterOS messes up my traceroute:...

divB

I know this is not a solution but after days of debugging (and recording raw BGP packets and decoding OPEN message) I confirmed that the issue is the other endpoint. I was able to select a different endpoint and it hopped immediately to ESTABLISHED.

divB

Hi, Just to start, I have one BGP peer to which I can only talk via IPv6 but I need to announce both IPv6 and IPv4 prefixes over it. Sureley enough, only the IPv6 prefix is announced, although I ticked both "ip" and "ipv6" in the address families. The only thing I could find abou...

divB

Thanks. I finally got it working with ptp. In the end, even with the /31. EDIT: Just for future reference: Check the other tunnel endpoint! Linux (and derived systems) have the inconvenient property of setting the tunnel ttl to "inherit". OSPF sets TTL=1 (since they should just go one hop)...

divB

Hello, I am setting up a BGP session via a GRE tunnel. In my opinion I have done everything correctly but the peer does not show up as "E - established". I think this should be the first step that should work, right? Then I started the packet sniffer on that GRE interface and I see that no...

divB

Hi, I currently have the following straight forward config in bird to announce a net 192.168.1.0/24 on a particular interface (via source address) from my AS65536 to the peering AS64496: router id 10.1.1.1; protocol device { scan time 5; } protocol kernel { scan time 60; import none; } protocol stat...

divB

Thanks, I have checked this already. GRE tunnel MTU is 1476 on both sides (Linux and Mikrotik). I have tried setting to a smaller value, like MTU=1200. No changes. Is there a configuration/mtu with which I can exclude all MTU related issues? Any more suggestions? EDIT: I also tried ping to the multi...

divB

I need to connect Mikrotik OSPF with bird over a non-multicast connection. I have tried nbma but the neighbors are just not recognized, despite identical configuration. When I try ptmp, Mikrotik is still sending multicast. Here is what arrives at the Linux box: 07:04:47.192109 IP (tos 0xc0, ttl 1, i...

divB

How can I properly add neighbors for ptp and ptmp? There is only an "NBMA Neighbors" tab and "Neighbors" is readonly. Also, what is the proper way to configure OSPF over a point-to-point link (IPIP or GRE) with a /31 network? Say the tunnel endpoint has 192.168.1.254/31 and the M...

divB

Hi, So I know IPIP does not support multicast but GRE does. I created a GRE tunnel between a Linux machine and my Mikrotik router. From the linux end I send packets addressed to 244.0.0.5 (a multicast address). With tcpdump I can clearly see these packets being transmitted. However, on the Mikrotik ...

divB

Ok for the rest of the world, after banging my head on this for the last two days I finally got it working. There can be multiple rules and multiple rules can jump to different tables. Key observation is (and unfortunately Mikrotiks documentation is totally lacking here) that if a rule is applied an...

divB

What am I doing wrong? I have a normal main routing table: https://snipboard.io/IpZxKO.jpg This table contains (a) dynamic routes from all kinds of connected interfaces, (b) static routes, (c) will soon include OSPF or BGP routes. It also includes a default gateway. What I want to achieve is to crea...

divB

On future keep one eye on VRF... I have briefly looked into this but I have trouble understanding. I also played around briefly but lost connection to the router. Gave up because I am not on-site (Safe Mode to the rescue!!) Would you be willing to give a brief example using the numbers above? Inter...

divB

Yes, the routes on main table are set manually or by BGP? Right now manually as well as automatically (the automatic ones are for the various interfaces. Turns out without these not even simple forwarding from one interface to the other works). There are a few tens of entries right now. However, I ...

divB

Hi, I think this was pretty much what I was saying (" either via "ip route rule "). My problem is a different one: I want to replace the default route only . Currently my main routing table is big...and it has a default route, say via 193.0.0.169. If the source address is from net 233...

divB

Hello, How can I make routes to appear in multiple tables? Or, alternatively, how can I make sure that a newly created table contains all the routes from the main table? What I actually want is to override the existing default route if and only if a package has source address from 233.252.0.0/24. If...

divB

I have a RouterBoard 750G which I housed in a 19" rack using the dual 19" rackmount case (the right slot is empty). I installed it 4 years ago and so far it works nicely. However, it is in a remote spot. There is someone who can do basic things but it is very hard for myself to get there. ...

divB

The problem is that from version v6.41.0 onward there was the introduction of new bridge concept that removed the master/slave on ethernet ports. This was documented in the release notes https://mikrotik.com/download/changelogs for v6.41.0. At that point a script was made available to migrate old c...

divB

Hi, It just took me about 4 hours to recover from my upgrade to 6.48 on my RouterBoard 450G. I have a configuration in which my WAN is connected via ether1, an adm net via ether2, the lan via ether3 and ether4 and ether5 is a VLAN tagged port for all of them. So I have VLANs, bridges and stuff. This...

divB

Thanks sricci. That's a sad reply.

I think at the very least, a force-reboot and force-stop of the meta routers should be implemented so that they can't hang. A metarouter should not be able to crash the whole host system

divB

According to "/system resource print" it is version: 6.38 (stable).

It's really frustrating. Sometimes the meta router just crashes and the only way to get it back is to reboot the entire system.

divB

Hi, I am using metarouter (with OpenWRT) on RB450G with 3.24 and metarouter (not OpenWRT!) seems to be pretty unreliable: Very often, when rebooting/shutting down, the router just hangs with Status "rebooting" or "shutting-down". There is no way no force a clean restart of a meta...

divB

Thank you! That worked!

(http://wiki.mikrotik.com/wiki/Hairpin_NAT)

divB

Thank you, this is a nice hack.
I'll implement it but this should really be a functionality of RouterOS :-/

divB

I have two questions: 1.) Is there any chance to make it work for TCP? I guess the reason is that the actual content is in the packets after SYN, SYN-ACK, ACK so that the first three packages of the connection cannot be marked? 2.) I now have this setting: [admin@ugate] /ip firewall layer7-protocol>...

divB

I have set a public IP with masquerding and some IP forwardings: [admin@ugate] /ip firewall nat> print Flags: X - disabled, I - invalid, D - dynamic 0 ;;; default configuration chain=srcnat action=masquerade out-interface=br-wan log=no log-prefix="" 1 ;;; SSH chain=dstnat action=dst-nat to...

divB

Hi, Is it possible to have RouterOS act as a DNS server, pointing to DNS servers for the queries but forward certain zones to a separate DNS server? With dnsmasq this can be done with: server=/localhost/127.in-addr.arpa/0.in-addr.arpa/255.in-addr.arpa/intra.mydomain.net/1.168.192.in-addr.arpa/1.7.10...

divB

Hi, I got OpenWRT for my METAROUTER (RB450) according to the Wiki from: http://www.mikrotik.com/download/metarouter/openwrt-mr-mips-rootfs.tgz However, does anyone know where I can find an opkg repository? I would like to install packages such as openvpn, ... Currently it is set to http://openwrt.pa...

divB

Hi, I just configured a meta router with the provided OpenWRT package. This is really great! However, there are not many packages and using opkg does not work because the referenced repository in opkg.conf results in a 404. How can I install OpenVPN within this OpenWRT instance as easily as possible...

divB

This is a great explanation - thank you! Do I understand correctly that 1.) For a physical port 5 that has vlan1,vlan2,vlan3 tagged I would need to create three interfaces and bridge them together? 2.) For example, vlan1_eth2 in your example - is this really needed? Because eth2 is an untagged port ...

divB

I am new to RouterOS and just trying to replace my router based on WRT54GL/OpenWRT with RouterBoard 750. I am confused with the architectural way Mikrotik handles VLANs (and interfaces, switches etc). What I want: - Interface 1: WAN (static IP), VLAN3, untagged - Interface 2: VLAN1, untagged - Inter...

Search found 32 matches

Re: Why does RouterOS send my ICMP Time Exceeded to the wrong interface and how can I avoid it?

Why does RouterOS send my ICMP Time Exceeded to the wrong interface and how can I avoid it?

Re: Debugging BGP session [SOLVED]

What is the reason IPv4 prefixes over IPv6 BGP peer could not work?

Re: How to do OSPF with pt(m)p over a /31 tunnel? [SOLVED]

Debugging BGP session [SOLVED]

How can I simply announce a prefix on one interface?

Re: GRE tunnel does not receive 224.0.0.5

Why is Mikrotik sending multicast with ptmp? Bug? [SOLVED]

How to do OSPF with pt(m)p over a /31 tunnel? [SOLVED]

GRE tunnel does not receive 224.0.0.5

Re: How can I change the default route for a packet (or put routes into multiple tables)?

How can I leak my routes from main table into another (VRF?) table?

Re: How can I change the default route for a packet (or put routes into multiple tables)?

Re: How can I change the default route for a packet (or put routes into multiple tables)?

Re: How can I change the default route for a packet (or put routes into multiple tables)?

How can I change the default route for a packet (or put routes into multiple tables)?

Redundancy for RB750G ... best approach?

Re: Why does 6.38 to 6.48.1 upgrade destroy my router and how can I avoid it?

Why does 6.38 to 6.48.1 upgrade destroy my router and how can I avoid it?

Re: Metarouter unreliable

Re: Metarouter unreliable

Metarouter unreliable

Re: Making forwarded ports available from internal

Re: DNS forwarding

Re: Feature request: per-domain forwarding in DNS

Making forwarded ports available from internal

DNS forwarding

OpenWRT on MetaRouter and opkg

OpenVPN with OpenWRT

Re: Confusion about interface, switch, bridge, VLAN

Confusion about interface, switch, bridge, VLAN