I am reading that as the ISP are giving him a LAN IP as his WAN like a carrier NAT. Client is the best way to work around that.You suggest people to get a server just because they are behind Nat ?
Absolutely not!Since I have DNS enabled on the router, should I add the router IP address to the:
Servers (The list now has two public DNS servers shown)
Which unfortunately usually puts you in a place where you have to specify the correct kit for the job.In the MikroTik world, roaming is still "up to the client to do" and this leads to all kinds of problems, especially when you are trying to carpet an area with WiFi coverage.
Try watching further the entire video, it needs the port forward rules creating PROPERLY to work.if heard right, he says that i`m finished if i do have static public IP
You clearly haven't done everything it says to then. There is more than just 1 line of srcnat.ok so I have added the rule to the top of my NAT rules:
add action=masquerade chain=srcnat comment="Hairpin" dst-address=\
and it`s not working
RouterOS v8.Good to know. I use third party VPNs on the client side devices themselves (pc- works on most browsers, and many streaming type devices aka Firestick). I am waiting for wireguard on the router and then life will be so much easier.
/ip firewall nat add chain=srcnat src-address=10.0.0.2-10.0.0.20 dst-address=192.168.0.252 action=masquerade comment="VPN clients to LAN"
add distance=1 dst-address=0.0.0.0/0 gateway=tashivpn routing-mark=route_ta
v7 will arrive before we leave!I like that, nice and simple
Europe drop all for UK
UK drop all for Europe ;-P
Perhaps soon when landing in the UK, Canadian Citizens will join the quick colonials line at customs....... while the europeans wait in long peon lines!!
Apart from mine of course. I give crap advice on both YouTube AND the forum!!NEVER use information from YouTube on managing a MikroTik router, it is full of crap advise.
Use the forum.
I have 3 internal subnets so would that still work? If rather keep it a simple queue if I can, I know I could mangle & mark but if rather try to keep it simple.Target should point to internal subnet, rest looks good
/queue simple add max-limit=55M/16M name=WAN_PCQ queue=pcq-download-default/pcq-upload-default target=pppoe-out1
OP does not mention whether router or switch is needed, just that they want a cheap multi SFP unit.Those are switches, not routers.CRS326
Or it's designed to be run virtually and not on bare metal.It's likely CHR doesn't have drivers for your hardware (disk) so it can't find root filesystem and fails to boot. Sadly there are no kernel messages so you don't really know what's happening.
It's just a port forward that forwards everything from your inbound WAN interface to an IP on your LAN.Does anyone know how to write the actual DMZ command?after trying a bunch of the command line suggestions from old threads
Correct, however it is done from client of interface perspective so for pppoe interface the values do reverse.it's rx/tx , I think, so upload or download depending on that interface / target you apply it to.
Tell me about it. Hindsight eh?The only "script" you'd possibly need is a CD set to loop saying noAs a parent of a 2, 3, 5 and 8 year old speaking. Have you considered saying "No"? No scripting needed.
Losing a bucket of throughput, opening yourself up to local noise and losing full duplex.Just use a weird 5GHz channel nobody else is using
My MTCNA tutor taught to increment the first digit set by 2.Interesting
So I will then always set up bridges like this:
Where x are random[0-9A-F]
/interface bridge add admin-mac=x[26AE]:xx:xx:xx:xx:xx auto-mac=no name=bridge