MikroTik

Pea

Hi, did you noticed this warning? :) /system note set note="DEVICE HACKED - ACCOUNT admin HAD UNSAFE PASSWORD" and this is not your code, right? /system scheduler add interval=1d name=Auto113 on-event="/system reboot" policy=\ ftp,reboot,read,write,policy,test,password,sniff,sensitive start-date=\ o...

Pea

https://wiki.mikrotik.com/wiki/Manual:IP/Fasttrack Packet marking for fast processing. Warning: Queues (except Queue Trees parented to interfaces), firewall filter and mangle rules will not be applied for FastTracked traffic. Make exception in your Fasttrack firewall rule for the IP where you want t...

Pea

I am just curious why you still try to use "Use Peer NTP" from your ISP while you know it is not working?

And did you try to contact your ISP to fix his DHCP NTP address setup?

Pea

still cant change any user names.
introduced in 6.43.0

viewtopic.php?f=2&t=139091

Pea

This link may help you to find suitable emoji:
https://unicode.org/emoji/charts/emoji-list.html
https://unicode.org/emoji/charts/full-emoji-list.html

/interface wireless set [find] ssid="\F0\9F\92\A3\F0\9F\92\A9"

Pea

flynno: https://wiki.mikrotik.com/wiki/Manual:S ... our_Router

Pea

Just start reading!

[time=1535139686 user_id=118648]
how fix this please help me !
1. Please don't put questions not related to a specific release into the release topic, make new topic!
2. You are killing your router by Sector Writes, maybe logging on disc? Check your config, stop it!

Pea

how fix this please help me ! 1. Please don't put questions not related to a specific release into the release topic 2. You are killing your router by Sector Writes, maybe logging on disc? Check your config, stop it! :) 3. You can try netinstall, helped me to recover bad blocks, just give it a try

Pea

And this is how to use the button with scripting:
https://wiki.mikrotik.com/wiki/Manual:R ... ode_button

Pea

When will be available PWR-Line AP announced in April 2018?

Pea

The same here, but no complain

version: 6.42.6 (stable)
factory-software: 6.42.3
free-memory: 205.3MiB
total-memory: 233.2MiB

board-name: hAP ac^2
model: RBD52G-5HacD2HnD

Pea

Yes, this is all fine.
The firmware version increases (synchronize) now with ROS version. Even there is no update in the firmware.
(I do not know the reason why MikroTik made this change)

Pea

port 53

Search for DNS Amplification
And fix your firewall on input chain!

Pea

Currently you are running current-firmware 3.24.
You should upgrade to upgrade-firmware 6.42.6.

Pea

So what about version 6.40.8, is vulnerable or not? Could somebody from Mikrotik finally confirm it? Bugfix release tree Release 6.40.8 2018-04-24 What's new in 6.40.8 (2018-Apr-23 11:34): !) winbox - fixed vulnerability that allowed to gain access to an unsecured router; https://mikrotik.com/downl...

Pea

Yes, last bugfix 6.40.8 is fine (+ change your passwords after upgrading, restore your configuration and inspect it for unknown settings, implement a good firewall)

What's new in 6.40.8 (2018-Apr-23 11:34):
!) winbox - fixed vulnerability that allowed to gain access to an unsecured router

Pea

Did you change all your passwords after update?

Pea

You are running vulnerable version, so no surprise that someone can change your settings when they can get all your usernames and passwords.
It was mentioned in this topic, upgrade, change passwords, add firewall...
viewtopic.php?f=21&t=133533

Pea

This is what I do, working perfectly: Add static DHCP leases Create firewall FamilyShield list for required static IP addresses Add 2 dst-nat rules for the FamilyShield list to the OpenDNS address 8) /ip dhcp-server lease add address=10.0.0.xx comment="FamilyShield" mac-address=xx:xx:xx:xx:xx:xx ser...

Pea

Well, follow this advice for update and password change, proper firewall, etc.:
viewtopic.php?f=21&t=132499
viewtopic.php?f=21&t=133533

Pea

It will not happen if we could see all open windows within the Winbox as on this simulation:

Pea

This happens when you have several terminals hidden behind other windows. Close some windows and you will find those eight terminals. And close them.

Pea

It's a pity!
But good inspiration to MikroTik for Winbox improvement. Maybe someday

And next would be option to disable/remove Quick Set based on setup on router (e.g. /system routerboard settings quickset=disabled).

Pea

Tell me how to get these window buttons there? I like it! But I do not have it

(I hope this is not a "photoshop" joke)

Pea

Hello, don' use layer 7, use this instead : /ip firewall filter add chain=forward dst-port=443 protocol=tcp tls-host=*.facebook.com action=reject add chain=forward dst-port=80 protocol=tcp tls-host=*.speedtest.net action=reject Hello. One question. Do I have to do something for the filter to take e...

Pea

I see, nothing interesting then...
I am setting it back to default "compression=no"

Pea

Anyone?

Pea

I'm curious about this wireless option: interface wireless set compression=yes Wiki says: Setting this property to yes will allow the use of the hardware compression. Wireless interface must have support for hardware compression. Connections with devices that do not use compression will still work. ...

Pea

Jahir: oh dear, you have no firewall, your router is fully open, unprotected Webfig and Winbox, and now you even post your admin password in forum... And what's more your Router OS is 6.39.2 which is known to be vulnerable. So don't be surprised about random config changes, everyone can login and ch...

Pea

What is your Router OS version?

Pea

This sounds as really good deal:
https://www.purevpn.com/pages/exclusive-offer.php
(Get 5 Years of PureVPN For Just $69!)

Pea

Maybe defective power adapter? Do you have any other to test?

Pea

If the hotel keeps login based on device MAC address:
1) Change your laptop MAC address to your router MAC address
2) Pass the login on your laptop
3) Change the laptop MAC address back to default/original
4) Switch on your router, fill the SSID and enjoy "own network"

Pea

No, PoE works in 6.42.1 correctly for me same as with previous versions. Did you try to connect different device?

Pea

I am just curious why you want to block ping? Anyway if you insist on it start with simple input icmp drop rule placed somewhere on top. If this works then do fine tuning in more detail. If this does not work then you are actually pinging different device (you modem - as you wrote that your WAN is e...

Pea

Click on Neighbors card and then simply click on MAC address (or IP address) of the device you want to connect to...

Pea

My experience beyond specifications is to keep the Ethernet cable as short as possible, as isolated as possible

Maximum is really about 100 metres then collision detection mechanisms "break" the link.
Use some repeater in the middle and you should be fine.

Pea

Very nice tutorial on port knocking: http://blog.cactiusers.org/2009/04/17/m ... -knocking/
to: 9939781 - it is with Layer 7 packet sniffing if you insist on it

Pea

pe1chl: yes, this is clear. The report about problem in this version is due to missing feedback in log after pressing the Upgrade button. This " Firmware upgraded successfully, please reboot for changes to take effect! " did not appear in log. And this is unusual. This information line was always th...

Pea

maybe...
did you try to check how many lines you have setup?
/system logging action print
look for "memory-lines= ..."

Or go to System / Logging / Actions / memory / Lines

Pea

skullzaflare: see viewtopic.php?f=21&t=128915
Please, note that downgrading to previous RouterOS versions (below 6.41) will not restore "master-port" configuration, so use backups to restore configuration on downgrade.

Pea

Hi strods, this happened for the first time that log message about upgrade was missing completely. Unfortunately all my devices are upgraded already, so I cannot check if the warning was in System/Routerboard/Settings. But it was definitely missing in log. Now if I look into terminal I still see 2 l...

Pea

The same with missing line in log "Firmware upgraded successfully, please reboot for changes to take effect!" happened to me today on RB951G-2HnD. Little scary on 50km away device :) Did the upgrade failed? Should I reboot or better not? Anyway I sent the reboot command - and all seems fine - after ...

Pea

You have very likely double NAT.
If you cannot use bridge mode on ISP router then try if setting DMZ is available there.
Or use IPv6 address of your computer for external access.

Pea

There is already linux style option - SSH CLI

If you like click with mouse in windows then it is time for Windows...

Pea

What is in the log when you click on Upgrade button?

Pea

There are two LEDs for the wireless section and two LEDs for the 5th port section in the hAP ac (RB962UiGS-5HacT2HnT) case. The green wireless LED shows 2.4GHz wireless status and the red wireless LED shows 5GHz wireless status. Sometimes their blinking times match and colors blend together. The gr...

Pea

I had seldom this problem with Samsung TV and Samsung BD player, not getting IP from DHCP. Only disconecting the Samsung device from power a connecting after a while fixed the problem. It must be some problem or incompatibility at Samsung side. I finaly fixed it by switching both devices to Sony bra...

Pea

Already answered in this topic:
viewtopic.php?f=21&t=129034&start=150#p640819

Pea

Try this tool to debug the MTU values between you and a host:
https://elifulkerson.com/projects/mturoute.php
(I probably found this on this forum recommended by someone)

Search found 101 matches