Community discussions

MikroTik App

Search found 265 matches

by Larsa
Sun Oct 17, 2021 8:41 pm
Forum: RouterOS v7 BETA
Topic: v7.1rc4 [development] is released!
Replies: 273
Views: 39829

Re: v7.1rc4 [development] is released!

It wouldn't be so bad but the documentation is basically "ok now go have fun" instead of actually helpful information...

Concur, documentation has plenty of room for improvement (understatement!). Examples using best practice should be standard...
by Larsa
Wed Oct 13, 2021 7:43 pm
Forum: RouterOS v7 BETA
Topic: some quick comments on configuring cake
Replies: 10
Views: 1671

Re: some quick comments on configuring cake

Various moral equivalents to FQ have long been in play in the rest of the "fixed wireless" market (which consists of a lot of telco folk talking to themselves, rather than recognise that non-5g tech - like most of mikrotiks market - dominates in the field). Hear, hear! Much like 3GPP tryi...
by Larsa
Wed Oct 13, 2021 7:36 pm
Forum: RouterOS v7 BETA
Topic: fq_codel or cake in v7
Replies: 68
Views: 27185

Re: fq_codel or cake in v7

@dtaht, you are more than welcome to stick around for a while longer to help out with "best practice" as well as suggestions for measures for a good implementation. We really appreciate your input!
by Larsa
Mon Oct 11, 2021 3:04 pm
Forum: General
Topic: Source NAT Multiple ISP
Replies: 8
Views: 604

Re: Source NAT Multiple ISP

Any options i have on this? ISP 1 is giving us more IP addresses and the bandwidth of ISP 2 and 3 are much greater. So i was hoping to use the IP addresses for src-nat of ISP but the bandwidth of ISP 2 and 3. If I understand you correctly you want specific srcnat mappings for SP1 and the rest of th...
by Larsa
Sun Oct 10, 2021 3:33 pm
Forum: RouterOS v7 BETA
Topic: some quick comments on configuring cake
Replies: 10
Views: 1671

Re: some quick comments on configuring cake

Dave, thanks for very useful tips! Should be included as "best practice" in the ros documentation.
by Larsa
Sun Oct 10, 2021 12:49 pm
Forum: General
Topic: unable to send mail using gmail (auth failed)?
Replies: 4
Views: 444

Re: unable to send mail using gmail (auth failed)?

You can still use the 2-Step-Verification if you create a specific gmail app password. https://support.google.com/accounts/answer/185833?hl=en
by Larsa
Sat Oct 09, 2021 9:40 pm
Forum: General
Topic: 3rd party plugins
Replies: 3
Views: 424

Re: 3rd party plugins

In addition, it's possible to trigger scripts for user-defined events with the built-in service Netwatch. For details see https://wiki.mikrotik.com/wiki/Manual:Tools/Netwatch.
by Larsa
Sat Oct 09, 2021 6:28 pm
Forum: Beginner Basics
Topic: Help - stuck on initial setup/install
Replies: 12
Views: 756

Re: Help - stuck on initial setup/install

...I admit, the learning curve is steep. MUCH steeper then any consumer grade equipment like TP-link or Netgear or ... I am still learning quite a bit myself almost daily. Luckily I love to learn :lol: But once you get to know it, you can do a TON more with a Mikrotik for a LOT less money .. Agreed...
by Larsa
Wed Oct 06, 2021 11:32 pm
Forum: Scripting
Topic: Script Error
Replies: 23
Views: 1516

Re: Script Error

Just some suggestions We abandoned central dns addresses like 8.8.8.8 for all of our customer LTE-links because we sometimes encountered global routing errors while the local link still worked. We now only use addresses within ISP's own networks to probe for possible link errors. There is also a del...
by Larsa
Wed Oct 06, 2021 7:48 pm
Forum: General
Topic: sysObjectID
Replies: 11
Views: 639

Re: sysObjectID

Ok, my point was that most common system and network elements should be reachable through standard objects. Snmp objects, both vendor specific and standard objects, also need to be well documented. The current documentation has plenty of room for improvement and deserves a complete new section in th...
by Larsa
Wed Oct 06, 2021 7:36 pm
Forum: General
Topic: sysObjectID
Replies: 11
Views: 639

Re: sysObjectID

Ok, wrong in what way? (Ok, sbagliato in che senso? ;- )
by Larsa
Wed Oct 06, 2021 7:24 pm
Forum: General
Topic: sysObjectID
Replies: 11
Views: 639

Re: sysObjectID

You must adapt your software, not MikroTik adapt RouterOS to your wish. sysDescr already exist Btw, in my opinion MT should take the opportunity to implement the most basic and standard network and system objects in v7 as most other vendors do, at least for the enterprise product line. Rextended, a...
by Larsa
Wed Oct 06, 2021 7:17 pm
Forum: General
Topic: sysObjectID
Replies: 11
Views: 639

Re: sysObjectID

Is there any plans to make sysObjectID unique per device model, as with any other mature vendors? Concur, the standard sysObjectID would be nice but "bmtxrBoardName" plus "mtxrSerialNumber" might suit your needs. Down below are some snmp objects worth checking out. Search for &q...
by Larsa
Wed Oct 06, 2021 5:30 pm
Forum: The Dude
Topic: Get current firmware version using SNMP?
Replies: 9
Views: 10444

Re: Get current firmware version using SNMP?

Btw, just noticed that the old http://download2.mikrotik.com/Mikrotik.mib is still up and running and contains an outdated version "201807310000Z" of the mib tree. Someone at MT ought to close it down asap . Fyi, the latest version checked today (wed the 6th) as referred from https://wiki....
by Larsa
Tue Oct 05, 2021 5:00 pm
Forum: Announcements
Topic: MikroTik smartphone app (ex Tik-App)
Replies: 486
Views: 207023

Re: MikroTik smartphone app (ex Tik-App)

No, on XNU "Xnu is Not Unix" / Darwin Well, actually both apple darwin (xnu/macos) and ios are based on bsd. Steve Jobs once issued a competition between two rnd departments responsible for "ipod os" and "mac os". A slimmed down version of mac os won. https://en.wikipe...
by Larsa
Tue Oct 05, 2021 4:42 pm
Forum: Announcements
Topic: MikroTik smartphone app (ex Tik-App)
Replies: 486
Views: 207023

Re: MikroTik smartphone app (ex Tik-App)

Don't ask me, I didn't say it, and I don't have those conditioning tools. Ok. But fwiw, we've been doing some custom made apps using both ssh and rdp and never heard about bans of terminal or console like connections in ios. Also, there are plenty of similar "console" apps in apple appsto...
by Larsa
Tue Oct 05, 2021 4:41 pm
Forum: Announcements
Topic: MikroTik smartphone app (ex Tik-App)
Replies: 486
Views: 207023

Re: MikroTik smartphone app (ex Tik-App)

There is an iOS app named Shelly that allows SSH connections to addresses, but of course I don't know how much of the underlying mechanism they had to provide themselves, because iOS is not built on a Unix base

IOS is based on BSD "unix"
by Larsa
Tue Oct 05, 2021 4:06 pm
Forum: Announcements
Topic: MikroTik smartphone app (ex Tik-App)
Replies: 486
Views: 207023

Re: MikroTik smartphone app (ex Tik-App)

Because Apple has decided, for you, that you don't need the terminal, Apple informs you that you have to comply.

Please no fud or os-war. Can you provide a reliable source that states ios apps won't allow ssh connections in console like mode?
by Larsa
Mon Oct 04, 2021 11:35 pm
Forum: RouterBOARD hardware
Topic: Metal 52 ac and CarBattery
Replies: 3
Views: 582

Re: Metal 52 ac and CarBattery

All poe in control chips are already equipped with a dc regulator so in general there is no need for an extra one as long as the supply voltage is kept within the specs. But I can see a need for an external unit that for example brings galvanic isolation, triggering alarms not to drain the power sou...
by Larsa
Sun Oct 03, 2021 11:47 am
Forum: Scripting
Topic: How to use the output of print in scripts?
Replies: 6
Views: 591

Re: How to use the output of print in scripts?

The "print" should only be used in exceptional cases. Imho there is a general design flaw in the ros script engine implementation that won't let you catch stdout and stderr from whatever command you want. It's a major drawback when it comes to managing script errors or as in this case cat...
by Larsa
Sun Oct 03, 2021 9:38 am
Forum: Scripting
Topic: Persistent Environment Variables
Replies: 8
Views: 1626

Re: Persistent Environment Variables

Rumors say 7.9 that also will include the ability to catch well documented error numbers and messages.
by Larsa
Sat Oct 02, 2021 8:39 pm
Forum: Scripting
Topic: Persistent Environment Variables
Replies: 8
Views: 1626

Re: Persistent Environment Variables

Any word regarding persistent variables in v7 yet?
by Larsa
Sat Oct 02, 2021 8:32 pm
Forum: Scripting
Topic: Built in function library
Replies: 96
Views: 43000

Re: Built in function library

While we wait for the builtin functions: https://github.com/merlinthemagic/MTM-RouterOS-Scripting. Can manipulate strings, files, md5 hashing, create GUIDs etc. Great stuff, thank you! Forked right away. Here is a link to mr Merlinthemagic's other work: https://github.com/merlinthemagic . Thanks Ma...
by Larsa
Tue Sep 28, 2021 2:23 pm
Forum: Announcements
Topic: Newsletter 102
Replies: 30
Views: 14382

Re: Newsletter 102

Congratulations Normis, you finally got your own space in the ZeroTier section! :)
by Larsa
Mon Sep 27, 2021 5:58 pm
Forum: Wireless Networking
Topic: Wifi between concrete walls
Replies: 20
Views: 2594

Re: Wifi between concrete walls

Well, he explains that the other building is "across the street". In many countries that means you cannot run a cable because you are not allowed to string cables across a street or dig a trench to put them under. However, there could be the possibility to run a cable upward from the unde...
by Larsa
Mon Sep 27, 2021 5:04 pm
Forum: Wireless Networking
Topic: Wifi between concrete walls
Replies: 20
Views: 2594

Re: Wifi between concrete walls

Thank you all for proving me I was not right. I couldn't get 2.4 GHz signal out the underground garage. Tried with 2 panel antennas and later with 1 panel and Ubiquiti 13 dbi omni antenna. Since I can't get UTP cable between 2 buildings another solution (maybe) is a GSM/LTE model in the garage, dep...
by Larsa
Thu Sep 23, 2021 11:49 pm
Forum: General
Topic: Feature requests
Replies: 1394
Views: 358164

Re: Feature requests

Satori: Please add SMB support to the fetch tool Rextended: Right! +10 Well, that would be nice but there are plenty of different versions to choose from using alternativ network protocols as well as different authentication protocols. Depending of which ones you pick the implementation can be quit...
by Larsa
Thu Jun 17, 2021 10:37 pm
Forum: General
Topic: Possible YouTube video ideas
Replies: 33
Views: 6328

Re: Possible YouTube video ideas

Hey! Please mind your manner especially regarding new members. Thank you!
by Larsa
Wed Dec 16, 2020 1:39 am
Forum: Wireless Networking
Topic: Where is Mikrotik Terragraph??
Replies: 20
Views: 2874

Re: Where is Mikrotik Terragraph??

Sterling wrote: "Have you been doing dense high (meaning 250-500+Mbps) wireless? Have you built out fiber in a neighborhood?" .... . . . . . . Well, for starters regarding fiber CN in urban areas it's not $3000 but rather $300 or even much less in apartment buildings. $3000 is good for ru...
by Larsa
Tue Dec 15, 2020 11:06 pm
Forum: Wireless Networking
Topic: Where is Mikrotik Terragraph??
Replies: 20
Views: 2874

Re: Where is Mikrotik Terragraph??

According to the ads, the intention is to be able to deploy and replace fiber much faster and cheaper in densely populated areas. To achieve this in urban areas you need to put the devices really close to each other the same way as the high speed 5G architecture. Considering the amount of units need...
by Larsa
Tue Dec 15, 2020 7:25 pm
Forum: Wireless Networking
Topic: Where is Mikrotik Terragraph??
Replies: 20
Views: 2874

Re: Where is Mikrotik Terragraph??

Couldn't find anything about pricing. Anyone dare to guess?
by Larsa
Tue Dec 15, 2020 7:03 pm
Forum: Wireless Networking
Topic: Where is Mikrotik Terragraph??
Replies: 20
Views: 2874

Re: Where is Mikrotik Terragraph??

Are there any bigger Terragraph (pure mesh) networks up and running today?
by Larsa
Sat Dec 12, 2020 2:31 pm
Forum: RouterBOARD hardware
Topic: New High Performance Routers ! ?
Replies: 82
Views: 18308

Re: New High Performance Routers ! ?

This NUC is a more PRO-One (XEON) than the 1036 (old with single PSU) running now. 45W TDP makes it a quite energy efficient system. Housing is a bit bigger for thermal reasons. There are some interesting systems from Supermicro but not available... It's not just about the xeon procs but rather the...
by Larsa
Sat Dec 12, 2020 1:00 pm
Forum: RouterBOARD hardware
Topic: New High Performance Routers ! ?
Replies: 82
Views: 18308

Re: New High Performance Routers ! ?

NUCs are really good for home use and this one seems to have a lot of power but may not be the most suitable choice for a "carrier grade" installation. Pick something with at least double PSU and a sufficient cooling system. And needless to say always have a backup unit at hand.
by Larsa
Fri Dec 11, 2020 3:24 pm
Forum: RouterBOARD hardware
Topic: wAP LTE vs SXT vs LHG
Replies: 12
Views: 1545

Re: wAP LTE vs SXT vs LHG

With your distance (ie 3.8 miles) to the mast just make sure you have unobstructed line of sight using the higher frequency otherwise it's probably better to stick to B20 with a dedicated external antenna. I would also call both operators to check available LTE bands and where to find the nearest ba...
by Larsa
Fri Dec 11, 2020 12:38 pm
Forum: RouterBOARD hardware
Topic: wAP LTE vs SXT vs LHG
Replies: 12
Views: 1545

Re: wAP LTE vs SXT vs LHG

Everything is better than WAP LTE internal antennas. LHG is a lot better on B20 too. Or you can install good external antennas on wap lte. I would not recommend B20 (800 MHz) on either LHG or SXT because of the bad antenna gain at that frequency. Use a dedicated antenna for B20 or even better, take...
by Larsa
Thu Dec 10, 2020 11:10 pm
Forum: General
Topic: Wap LTE kit (RBwAPR-2nD&R11e-LTE) reliability issues
Replies: 9
Views: 1301

Re: Wap LTE kit (RBwAPR-2nD&R11e-LTE) reliability issues

Just an idea, have you checked if the failing devices might be suffering by POE problems due to for example, too long cables or too low supply voltage. If possible, try to swap one of the problem units with a working one in order to verify the issue. Also be aware this is an end user forum thus you ...
by Larsa
Thu Dec 10, 2020 8:15 pm
Forum: Beginner Basics
Topic: installing LDF LTE6..
Replies: 4
Views: 665

Re: installing LDF LTE6..

Or why not an "Octopus Tripod" where you attach LBN brackets for your dish antenna :-) Spider-arm-smaller.jpeg It doesn't really look like a spider but did you mean the LHG LTE6: https://mikrotik.com/product/lhg_lte6_kit https://i.mt.lv/cdn/rb_images/1886_m.png Here is a link with all the ...
by Larsa
Thu Dec 10, 2020 1:27 am
Forum: Beginner Basics
Topic: installing LDF LTE6..
Replies: 4
Views: 665

Re: installing LDF LTE6..

Can this LDF LTE6 share an off-set dish with a satellite LNB? eg get an double LNB bracket. I have a dish pointing in the right direction for another Mobile carrier ... Depends on the dish and if you are able to position it as an offset feed (off axis) for a suitable sweet spot using the second LNB...
by Larsa
Wed Dec 09, 2020 3:54 pm
Forum: General
Topic: LGH LTE6: Slow Speeds and unstable connection
Replies: 4
Views: 968

Re: LGH LTE6: Slow Speeds and unstable connection

Also, check you have the correct APN for T-Mobile: "APN: Fast.t-mobile.com (for LTE devices) or epc.tmobile.com (for non-LTE devices)"

Ref: https://www.t-mobile.com/support/devices/not-sold-by-t-mobile/byod-t-mobile-data-and-apn-settings
by Larsa
Wed Dec 09, 2020 12:20 am
Forum: Wireless Networking
Topic: Chateau LTE12 modem is for wrong regulatory region?
Replies: 3
Views: 760

Re: Chateau LTE12 modem is for wrong regulatory region?

Still I think this will affect how the carrier aggregation works as the supported aggregations vary apparently by region. No, different levels of CA and LTE Categories do vary depending on what operator and their local base station deployment. The LTE Category level is the most important one. Ask t...
by Larsa
Tue Dec 08, 2020 9:26 pm
Forum: RouterOS v7 BETA
Topic: v7.1beta3 [development] is released!
Replies: 262
Views: 54142

Re: v7.1beta3 [development] is released!

Normally you don't pay license costs for the template device drivers but for the chip (and sometimes different features) which can be either flat fee but for the most part volume based. But you do need to buy and licence a number of development kits (boards) that includes tech and pre-productions su...
by Larsa
Tue Dec 08, 2020 8:09 pm
Forum: Wireless Networking
Topic: LTE products need persistent data traffic counter (mandatory feature request)
Replies: 5
Views: 768

Re: LTE products need persistent data traffic counter (mandatory feature request)

I can NOT recommend to them Mikrotik as a normal user will not be able to manage a Mikrotik device. Concur. MT it's more for the advanced home user I would say and in that sense Huawei is probably a more suitable choice for the regular home user especially when it comes to setup and administration....
by Larsa
Tue Dec 08, 2020 10:41 am
Forum: RouterBOARD hardware
Topic: The big CCR2004 reboot thread (was 2004 hardware issues?)
Replies: 301
Views: 39871

Re: 2004 hardware issues?

We tried to RMA our units as not fit for use and it was rejected so we now have 4 of them just sitting collecting dust.
How much? ;-)
by Larsa
Mon Dec 07, 2020 6:24 pm
Forum: Beginner Basics
Topic: low signal SXT LTE6
Replies: 2
Views: 495

Re: low signal SXT LTE6

Hi, unfortunately there are no step-by-step guides on how to deploy a SXT or LHG. I have gathered some links below that might help out. Feel free to read through and come back with further questions. As an initial suggestion, use your phone to get connection information (eg LTE band, Cell ID, etc) f...
by Larsa
Sat Dec 05, 2020 12:23 am
Forum: Beginner Basics
Topic: SXT LTE6 kit - question about allow-remote-dns and firewall [SOLVED]
Replies: 2
Views: 992

Re: SXT LTE6 kit - question about allow-remote-dns and firewall [SOLVED]

The blue line below make sure nothing is able to pass through that is not coming from the LAN ie everything from WAN is blocked: 4 ;;; defconf: drop all not coming from LAN chain=input action=drop in-interface-list=!LAN > "My understanding is that if set to yes, I would allow external hosts to ...
by Larsa
Fri Dec 04, 2020 9:06 pm
Forum: General
Topic: Wap LTE kit (RBwAPR-2nD&R11e-LTE) reliability issues
Replies: 9
Views: 1301

Re: Wap LTE kit (RBwAPR-2nD&R11e-LTE) reliability issues

Do you have any brand recommendation for a good external antenna to be used with something like a LtAP + Quectel EM12-G ? Before you buy anything at all, I advice you to find out what features your operator offers in terms of LTE frequency bands as well as level of LTE categories and Carrier Aggreg...
by Larsa
Fri Dec 04, 2020 2:11 pm
Forum: Beginner Basics
Topic: SXT LTE6 Website Hanging Issue
Replies: 14
Views: 1162

Re: SXT LTE6 Website Hanging Issue

You can send reqest to mikrotik.com/support to create some auto-mtu detection od mss-clamping as one ON/OFF checkbox. Maybe they consider your request. This is what for example the Apple folks are doing when they are pushing out different base band configurations for all operators around the world....
by Larsa
Fri Dec 04, 2020 1:59 pm
Forum: Beginner Basics
Topic: SXT LTE6 Website Hanging Issue
Replies: 14
Views: 1162

Re: SXT LTE6 Website Hanging Issue

I'll see what I can do but thu it probably have to wait until next week since I'm soon on may way to customer installation, probably for the rest of the day.
by Larsa
Fri Dec 04, 2020 1:47 pm
Forum: Beginner Basics
Topic: SXT LTE6 Website Hanging Issue
Replies: 14
Views: 1162

Re: SXT LTE6 Website Hanging Issue

Tech support from Three in the UK is non existent. You can't ever get speaking to anyone who hasn't a script in front of them just relaying the questions. None of their staff have any technical knowledge at all unless you get to the higher tiers of support which is almost impossible. Well, that sou...
by Larsa
Fri Dec 04, 2020 12:01 pm
Forum: General
Topic: Wap LTE kit (RBwAPR-2nD&R11e-LTE) reliability issues
Replies: 9
Views: 1301

Re: Wap LTE kit (RBwAPR-2nD&R11e-LTE) reliability issues

For commercial installations, unless you are very close to the BTS (base station) you should always use a directional antenna primarily to achieve a stable link, but with that you usually also get faster speed. When it comes to the installation, it requires some deeper knowledge of for example: - Wh...
by Larsa
Fri Dec 04, 2020 11:10 am
Forum: Beginner Basics
Topic: SXT LTE6 Website Hanging Issue
Replies: 14
Views: 1162

Re: SXT LTE6 Website Hanging Issue

We're running a number of link using Hi3G in another country and all with default MTU of 1500. The BTS model in this particular case is BTS3900A but in your case might be a different manufactur with a different setup regarding MTU, but as far as I know they are almost always running Huawei. I would ...
by Larsa
Thu Dec 03, 2020 10:13 pm
Forum: Beginner Basics
Topic: SXT LTE6 Website Hanging Issue
Replies: 14
Views: 1162

Re: SXT LTE6 Website Hanging Issue

Any errors in the SXT log? Du you use the internal DNS forwarder? Is there another router behind the SXT LTE6? Some more details like a config (export) would help...
by Larsa
Thu Dec 03, 2020 12:09 pm
Forum: RouterOS v7 BETA
Topic: v7.1beta3 [development] is released!
Replies: 262
Views: 54142

Re: v7.1beta3 [development] is released!

Thanks, will try it immediately on our sandboxes! Is WireGuard part of other fixes and improvements?
by Larsa
Wed Dec 02, 2020 6:30 pm
Forum: General
Topic: Change LTE setting via SMS
Replies: 5
Views: 576

Re: Change LTE setting via SMS

OTA (over the air) config and baseband updates are not conducted using sms but rather with specific services like FOTA (firmware over the air) that are tied to a specific hw unit (eg LTE module). Usually this is done at a higher level ie in the controller for example IOS or Android using profile upd...
by Larsa
Wed Dec 02, 2020 3:51 pm
Forum: General
Topic: SNMP LTE signal strength
Replies: 16
Views: 9899

Re: SNMP LTE signal strength

That was really a nice and elegant solution with dweet.io, thanks for the suggestion!

Btw, net-snmp is now on github: https://github.com/net-snmp/net-snmp. Link to tutorials is http://net-snmp.sourceforge.net/wiki/index.php/Tutorials. Not sure what the github link is tho.
by Larsa
Wed Dec 02, 2020 3:27 pm
Forum: Scripting
Topic: To retain variable's values after reboot
Replies: 20
Views: 6341

Re: To retain variable's values after reboot

Can you show any other scripting language or programming language where defined variables magically restores their values from previous script instance, without saving data to file, registry or database? If you want to save something handle it in your code. Automatic persistent variables is a piece...
by Larsa
Tue Dec 01, 2020 10:23 pm
Forum: RouterOS v7 BETA
Topic: Chateau 12 - WiFi no longer connects for a random device [SOLVED]
Replies: 10
Views: 1999

Re: Chateau 12 - WiFi no longer connects for a random device [SOLVED]

I have had the similar issue with Chateau, please try the latest beta3 which worked for me.

You wouldn't happen to have the release notes as well?
by Larsa
Tue Dec 01, 2020 7:36 pm
Forum: Scripting
Topic: To retain variable's values after reboot
Replies: 20
Views: 6341

Re: To retain variable's values after reboot

:persistent variable
or...
:global::persistent variable
by Larsa
Sat Nov 28, 2020 9:41 pm
Forum: Beginner Basics
Topic: PPTP Server won't work [SOLVED]
Replies: 21
Views: 2292

Re: PPTP Server won't work [SOLVED]

Sorry, no l2tp at the moment. Below is the pptp config used by the sandbox. This particular config allocates a small part (200-210) of the local subnet for use by the clients thereof the "arp=proxy-arp" on the LAN-interface (eth1) /ip address add address=192.168.9.254/24 interface=ether1 n...
by Larsa
Sat Nov 28, 2020 6:49 pm
Forum: Beginner Basics
Topic: PPTP Server won't work [SOLVED]
Replies: 21
Views: 2292

Re: PPTP Server won't work [SOLVED]

You've got mail! ;-)
by Larsa
Sat Nov 28, 2020 1:21 am
Forum: General
Topic: SXT-LTE Reset problems
Replies: 2
Views: 649

Re: SXT-LTE Reset problems

The reboot cycle might be a possible PoE problem caused by long cables ie too low voltage, incompatible or bad PSU.
by Larsa
Fri Nov 27, 2020 9:59 pm
Forum: Beginner Basics
Topic: Initial connection SXTR T-Mobile US
Replies: 7
Views: 997

Re: Initial connection SXTR T-Mobile US

Looks like you got an active radio connection ("registered") but the signal levels (RSSI, RSRQ, RSRP, SINR) are pretty poor and will probably result in a very low xfer speed and an unstable connection especially during rain or snow. Possible causes: the antenna is misaligned, selected base...
by Larsa
Fri Nov 27, 2020 9:05 pm
Forum: Wireless Networking
Topic: SXT LTE6 kit - instable connection / lost internet [SOLVED]
Replies: 27
Views: 2527

Re: SXT LTE6 kit - instable connection / lost internet [SOLVED]

Regarding the latency, it might be possible that your BTS was heavy loaded or you had payload traffic going on during the tests. I've checked some statistis for a number of links and most had around 20-30 ms (w/o payload). Live test of a 7 km link using B20: Without payload: $ ping xx.xx.xx.xx PING ...
by Larsa
Fri Nov 27, 2020 6:25 pm
Forum: Beginner Basics
Topic: PPTP Server won't work [SOLVED]
Replies: 21
Views: 2292

Re: PPTP Server won't work [SOLVED]

@baxik, I've got a temporary lte sandbox you can use to test your pptp client. Is there a way to send PM with the connection info?
by Larsa
Fri Nov 27, 2020 12:41 pm
Forum: Beginner Basics
Topic: PPTP Server won't work [SOLVED]
Replies: 21
Views: 2292

Re: PPTP Server won't work [SOLVED]

Just a long shot but try disabling the windows fw and check if that will make any difference. Event 651 is not something common to me but check this out: - https://www.ionos.com/digitalguide/server/configuration/error-651/ - https://support.microsoft.com/en-us/help/818455/you-receive-the-error-651-e...
by Larsa
Thu Nov 26, 2020 8:37 pm
Forum: Beginner Basics
Topic: PPTP Server won't work [SOLVED]
Replies: 21
Views: 2292

Re: PPTP Server won't work [SOLVED]

Did you check what client errors you got by examine the windows event log for rasdial events like 678 or 777? - List of error codes for dial-up connections or VPN connections - Routing and Remote Access Error Codes RasClient specific events are stored in the application log ie Windows Logs -> Applic...
by Larsa
Thu Nov 26, 2020 5:22 pm
Forum: Beginner Basics
Topic: PPTP Server won't work [SOLVED]
Replies: 21
Views: 2292

Re: PPTP Server won't work [SOLVED]

To be more precise it's the legacy authentication methods like mschap that are insecure. The newer EAP would do alright but isn't available in RoS. In the long run I would also replace PPTP with for instance WireGuard or IPSEC/IKEv2 but there are other means you can straighten up the security for PP...
by Larsa
Wed Nov 25, 2020 10:59 am
Forum: Beginner Basics
Topic: Initial connection SXTR T-Mobile US
Replies: 7
Views: 997

Re: Initial connection SXTR T-Mobile US

If you have a clear line of sight to any of the masts within a distance of 5 km, it should also be ok even with some of the upper frequency bands that are preferable for data connections (if the signal level is good enough). Although I'm not sure what you mean by "I have signal, I'm registered,...
by Larsa
Wed Nov 25, 2020 12:47 am
Forum: Beginner Basics
Topic: Initial connection SXTR T-Mobile US
Replies: 7
Views: 997

Re: Initial connection SXTR T-Mobile US

Sorry to disappoint you but quite frankly is the SXT (and also LHG) quite useless in remote rural areas where the only usable frequencies are usually the lower LTE bands (700-900 MHz). Any idea how far away the nearest base station or mast tower is? This is pure speculation because I do not know you...
by Larsa
Tue Nov 24, 2020 11:52 pm
Forum: Wireless Networking
Topic: SXT LTE6 kit - instable connection / lost internet [SOLVED]
Replies: 27
Views: 2527

Re: SXT LTE6 kit - instable connection / lost internet [SOLVED]

Looks like you nailed it at the initial "tryout"! Signal levels are significantly better and the ul-speed of 43 Mbit is actually very good. At that speed, you should be able to get a ping latency of about 20-30 ms. Run a traceroute and pick the first available address that pops up and run ...
by Larsa
Tue Nov 24, 2020 10:30 pm
Forum: Wireless Networking
Topic: SXT LTE6 kit - instable connection / lost internet [SOLVED]
Replies: 27
Views: 2527

Re: SXT LTE6 kit - instable connection / lost internet [SOLVED]

Sounds good, feel free to come back and tell me how it went. Have a good one!
by Larsa
Tue Nov 24, 2020 9:14 pm
Forum: Wireless Networking
Topic: SXT LTE6 kit - instable connection / lost internet [SOLVED]
Replies: 27
Views: 2527

Re: SXT LTE6 kit - instable connection / lost internet [SOLVED]

It looks like the basic signal levels are still to low even for B20. What do you get when testing with your smartphone? If you get a decent speed and good signal levels with your phone check what mast it's connected to by the Cell-ID and compare it with the device to check if its pointing to the sam...
by Larsa
Tue Nov 24, 2020 8:04 pm
Forum: Wireless Networking
Topic: SXT LTE6 kit - instable connection / lost internet [SOLVED]
Replies: 27
Views: 2527

Re: SXT LTE6 kit - instable connection / lost internet [SOLVED]

From monitoring signal strength I believe current location will do, with RSRP=-90dB, RSSI=-58dB, SINR=7dB. I checked for a while before I decided Primary band B3@20Mhz seemed to give me best performance, with CA-band B8@10Mhz. A bit odd that the signal strength (RSSI) is so high compared to SINR / ...
by Larsa
Tue Nov 24, 2020 12:50 am
Forum: Beginner Basics
Topic: Hello and Help ( LTE6 ) [SOLVED]
Replies: 26
Views: 2534

Re: Hello and Help ( LTE6 ) [SOLVED]

I can only get LTE Cat 2 on the unit, or 3G LTE, I very interested in what you said about limiting the unit because its not a phone etc. Did you check with the operator they support CAT-6? Sometime you might need to swap to a new SIM (as depends of what internal mgmt-system they use). Try focus on ...
by Larsa
Mon Nov 23, 2020 4:28 pm
Forum: Scripting
Topic: Useful scripts
Replies: 95
Views: 152949

Re: Useful scripts

In this case I'll use a smaller ip list: https://lists.blocklist.de/lists/ftp.txt For those interested, there is a pretty good overview and current status of the various ip block lists at http://iplists.firehol.org/. Most lists are clickable for detailed information and are downloadable at https://...
by Larsa
Sun Nov 22, 2020 11:35 pm
Forum: General
Topic: Features in the winbox
Replies: 6
Views: 514

Re: Features in the winbox

What I hate most is that when I need to duplicate e.g. firewall rule...

Yeah, that one too!
by Larsa
Sun Nov 22, 2020 8:25 pm
Forum: General
Topic: Features in the winbox
Replies: 6
Views: 514

Re: Features in the winbox

What I miss most on the daily basis and that is really annoying (but have learned to live with) is the lack of:

  • Menu list with active windows so you can bring upp a hidden ones.
  • Being able to undock a window from WinBox own desktop so it could be placed on any screen.
by Larsa
Sun Nov 22, 2020 2:07 am
Forum: RouterOS v7 BETA
Topic: v7.1beta2 [development] is released!
Replies: 387
Views: 112844

Re: v7.1beta2 [development] is released!

Regarding LTE-modules I would love to see a simple DSL (domain-specific language) with hooks (for ie "enable/disable/connect" etc) that can be used as a replacement or add a new drivers to control MBIM/AT for whatever reason. In the bottom line, it's just text to be acted on. That would ma...
by Larsa
Sun Nov 22, 2020 1:45 am
Forum: RouterOS v7 BETA
Topic: v7.1beta2 [development] is released!
Replies: 387
Views: 112844

Re: v7.1beta2 [development] is released!

Continuing OT 20$ is for many people big difference. My 90% will be still normal LHGR without lte module + m.2 adapter + Quectel EM12-G Basically I agree regarding the GBE interface but it feels like a slightly twisted comparison with the other $20 since the price with your configuration using a &qu...
by Larsa
Sat Nov 21, 2020 9:22 pm
Forum: RouterOS v7 BETA
Topic: v7.1beta2 [development] is released!
Replies: 387
Views: 112844

Re: v7.1beta2 [development] is released!

Custom developed ("home made") devices drives and thread/concurrency problems like kernel-mode deadlocks are example of quite common issues and are particular error prone in case of low level development. The final 5% of the bug management often consume more than 90% of the total developme...
by Larsa
Sat Nov 21, 2020 6:52 pm
Forum: Beginner Basics
Topic: Hello and Help ( LTE6 ) [SOLVED]
Replies: 26
Views: 2534

Re: Hello and Help ( LTE6 ) [SOLVED]

In genreral: - Band 20 (800Mhz) is usually overcrowded in rural areas since most devices gets the highest signal level and auto connect to this band. - Band 3 (1800Mhz) is probably better if you manage to get LoS (Line of Sight) to the mast. What's the distance to the mast do you reckon (approx) and...
by Larsa
Fri Nov 20, 2020 6:42 pm
Forum: RouterOS v7 BETA
Topic: v7.1beta2 [development] is released!
Replies: 387
Views: 112844

Re: v7.1beta2 [development] is released!

Concur! Btw, is Mellanox still pushing rnd for the tile procs?
by Larsa
Fri Nov 20, 2020 12:11 pm
Forum: Announcements
Topic: MikroTik newsletter November 2020 (#98)
Replies: 64
Views: 18031

Re: MikroTik newsletter November 2020 (#98)

I'm newer in mikrotik i want to update ROS of my router what kind of RouterOS (Long-term, Stable, testing or Development) i must used. Hello stollerxd, this thread is only regarding the newsletter. A better place to ask this question is in the forum "Beginner Basics" . //Best regards, Lars.
by Larsa
Thu Nov 19, 2020 9:51 pm
Forum: RouterOS v7 BETA
Topic: v7.2 beta & mt7621?
Replies: 3
Views: 1227

Re: v7.2 beta & mt7621?

Thanks, missed that one! IMHO, since it's still beta they could release it for the other architectures.
by Larsa
Thu Nov 19, 2020 9:49 pm
Forum: General
Topic: Feature request: Run script from firewall event
Replies: 10
Views: 4115

Re: Feature request: Run script from firewall event

Well yes, it should probably have had its own thread. Anyhow, I beg to differ regarding the latency as a local dnsbl call would only lag a few ms which is a very small (even tiny) cost compared to the functional value it would add.
by Larsa
Thu Nov 19, 2020 6:39 pm
Forum: RouterOS v7 BETA
Topic: v7.2 beta & mt7621?
Replies: 3
Views: 1227

Re: v7.2 beta & mt7621?

Many stuff must be fix until we reach RC version.
When is that? ;-) Btw, I noticed they use v7.1beta3 in the comparison sheets so I guess it is due to be released soon.
by Larsa
Thu Nov 19, 2020 6:32 pm
Forum: General
Topic: Feature request: Run script from firewall event
Replies: 10
Views: 4115

Re: Feature request: Run script from firewall event

Instead of being forced to use static ip address lists only, it would be "most excellent" if there was a built-in DNSBL control as a firewall action "drop DNS blacklist lookup" that could be used for example during new connections (ie connection state new) Drop DNS blacklist look...
by Larsa
Wed Nov 18, 2020 10:07 pm
Forum: RouterBOARD hardware
Topic: LTE Advice - LHGG?
Replies: 4
Views: 1016

Re: LTE Advice - LHGG?

It will require quite some time to establish the necessary infrastructure for 5G, especially in the case of the high-speed variant, which requires heavy densification and deployment of new antennas and base stations that will mainly take place in urban areas. In the case of rural areas, there will b...
by Larsa
Wed Nov 18, 2020 8:52 am
Forum: RouterBOARD hardware
Topic: LtaP + Huawei ME909s-120 ussd codes [SOLVED]
Replies: 3
Views: 832

Re: LtaP + Huawei ME909s-120 ussd codes [SOLVED]

Happy you managed to solve the problem! USSD (Unstructured Supplementary Service Data) is a complete different service compared to SMS which is implemented with "/tool SMS". Have a look at chapter 4.16 and 4.17 in the AT Command Interface Specification for ME909s.
by Larsa
Tue Nov 17, 2020 10:52 pm
Forum: General
Topic: MacOS 11 Big Sur problem [SOLVED]
Replies: 12
Views: 3418

Re: MacOS 11 Big Sur problem [SOLVED]

MacOS "Big Sur" first public version 11.0.1 that was released last week include major parts that are completely redone and is also affected by a series of severe bugs. I advise against upgrading until all serious issues are resolved.
by Larsa
Tue Nov 17, 2020 8:12 pm
Forum: General
Topic: MacOS Catalina, iOS, Catalyst, SwiftUI & Wine
Replies: 188
Views: 78414

Re: MacOS Catalina, iOS, Catalyst, SwiftUI & Wine

... Big Sur crashes when we connect to a router. MacOS "Big Sur" first public version 11.0.1 that was released last week include major parts that are completely redone and is also affected by a series of severe bugs. I advise against upgrading until all serious issues are resolved. Also, ...
by Larsa
Tue Nov 17, 2020 8:07 pm
Forum: General
Topic: Latest MacOs 11 (Big Sur) and L2TP/IPsec
Replies: 2
Views: 1147

Re: Latest MacOs 11 (Big Sur) and L2TP/IPsec

OT regarding MacOS " Big Sur " first public version 11.0.1 that was released last week include major parts that are completely redone and is also affected by a series of severe bugs. I advise against upgrading until all serious issues are resolved. Also, it has a complete new GUI design th...
by Larsa
Tue Nov 17, 2020 1:23 pm
Forum: General
Topic: Facebook Wifi
Replies: 45
Views: 21071

Re: Facebook Wifi

Personally, I would never trust Facebook to facilitate authentication matters (ever!)
by Larsa
Tue Nov 17, 2020 12:44 pm
Forum: RouterBOARD hardware
Topic: ChaCha20 hardware offloading?
Replies: 2
Views: 724

Re: ChaCha20 hardware offloading?

Well, we can only hope that it will come sooner than that! Anyhow I was thinking of RoSv7v1 and if any of the current cpu architectures supports ARX vector operations (like the AVX2 instruction set) that can assist CC20 to offload the cpu in the same way as for AES.
by Larsa
Mon Nov 16, 2020 5:57 pm
Forum: RouterBOARD hardware
Topic: ChaCha20 hardware offloading?
Replies: 2
Views: 724

ChaCha20 hardware offloading?

This might not be common knowledge yet, but is anyone aware if there are any router models that are able to perform hardware offloading for CC20 used by Wireguard at the moment?
by Larsa
Mon Nov 16, 2020 1:11 pm
Forum: Beginner Basics
Topic: LHG LTE6 Kit LTE connection problem.
Replies: 16
Views: 1448

Re: LHG LTE6 Kit LTE connection problem.

Don't let the last part of place name (Turjan ski ) mislead you ... Haha, it wasn't the - ski part that fooled me, I was when I checked out Vrhovine in google maps and found this picture of a cable car and wrongly assumed it was a ski resort! :-D //Cheers! https://lh5.googleusercontent.com/p/AF1Qip...
by Larsa
Sun Nov 15, 2020 10:59 pm
Forum: Beginner Basics
Topic: LHG LTE6 Kit LTE connection problem.
Replies: 16
Views: 1448

Re: LHG LTE6 Kit LTE connection problem.

Based on the name the place looks like a ski resort. Considering the weather conditions you usually have, I would definitely use the lower LTE bands, ie 700-900 MHz. Also, in that perspective both LHG and SXT are far from optimal. The yagis that Mkx mentioned seems quite good from the pure signal ga...
by Larsa
Fri Nov 13, 2020 1:19 pm
Forum: General
Topic: Handle with ddos or many flows?
Replies: 13
Views: 824

Re: Handle with ddos or many flows?

78.179.247.233 is blacklisted at the usual places like barracuda sorbs spamhaus etc. If you combine the correct lists to get relevant updates you catch most of them but as @sindy told, dst-limit is a good tool to catch the rest in your own blacklist. For an extensive dnsbl control check out http://m...
by Larsa
Fri Nov 13, 2020 9:20 am
Forum: SwOS
Topic: SwOS: Default passwords illegal in California
Replies: 1
Views: 856

Re: SwOS: Default passwords illegal in California

Just for internet connected devices made for home usage. SwOS is used in switches, although you can connect directly to the internet it is not something I recommend for obvious reasons...
by Larsa
Thu Nov 12, 2020 1:33 pm
Forum: General
Topic: CPU stress test
Replies: 4
Views: 700

Re: CPU stress test

RoS might use a Linux capability called cgroups (control groups) to protect the admin kernel from someone over using the cpu.
by Larsa
Thu Nov 12, 2020 8:19 am
Forum: RouterOS v7 BETA
Topic: Non-serious module errors resets LTE connection. Is this by design in RoSv7b2?
Replies: 3
Views: 895

Re: Non-serious module errors resets LTE connection. Is this by design in RoSv7b2?

Errors returned as value of the AT command (ie AT final result code) as in: < CR > < LF > E R R O R < CR > < LF > as in Chapter 1.4 AT Command Syntax, ref: http://download-c.huawei.com/download/downloadCenter?downloadId=100630 My theory is the lte async receiver listens for any kind of error and res...
by Larsa
Wed Nov 11, 2020 10:45 pm
Forum: Beginner Basics
Topic: Hello and Help ( LTE6 ) [SOLVED]
Replies: 26
Views: 2534

Re: Hello and Help ( LTE6 ) [SOLVED]

I have decided to keep the unit and take ot the next level ( How Dears Wins ), im looking into the new Poynting XPOL-2-5G V3 antenna and some Yagi ones, Btw, are we still talking about LtAP LTE6 in this case? The reason I'm asking is that I can't locate any connectors for external antennas when loo...
by Larsa
Wed Nov 11, 2020 10:24 pm
Forum: Beginner Basics
Topic: Cat6 versus dBI for rural broadband
Replies: 3
Views: 488

Re: Cat6 versus dBI for rural broadband

Rural setting, failry good line of sight, distances of 2km-4km. With LoS and only 2-4 km to the mast you can probably utilize the higher LTE bands (ie that is over 1800 Mhz) if these are available in your region. In those cases, SXT or LGH will do alright. SXT and LGH have rather poor antenna gain ...
by Larsa
Wed Nov 11, 2020 9:53 pm
Forum: General
Topic: winbox for ARM Macs
Replies: 1
Views: 555

Re: winbox for ARM Macs

Well, soon it's definitely bye, bye to Mac and any future purchases of macbooks as we are dependent of the intel virtual machine running Parallels Desktop. Pity!
by Larsa
Wed Nov 11, 2020 9:03 pm
Forum: General
Topic: Handle with ddos or many flows?
Replies: 13
Views: 824

Re: Handle with ddos or many flows?

@katsil, if you do not have the time or energy to create your own Blacklist management, I do recommend to buy the MOAB solution (https://itexpertoncall.com/promotional/moab.html) that is ready for use immediately.
by Larsa
Wed Nov 11, 2020 8:37 pm
Forum: Beginner Basics
Topic: Hello and Help ( LTE6 ) [SOLVED]
Replies: 26
Views: 2534

Re: Hello and Help ( LTE6 ) [SOLVED]

We use some custom made Poynting XPOL-2 (but with exactly the same antenna used in the regular ones) which supplies about 9-10 dbi for the lower bands (700-900 Mhz). If you want more I recommend yagis but with a mast and LoS I think the XPOL-2 will do alright. Watch of for using long antenna cables ...
by Larsa
Wed Nov 11, 2020 8:01 pm
Forum: General
Topic: Handle with ddos or many flows?
Replies: 13
Views: 824

Re: Handle with ddos or many flows?

There are quite a few solutions on github with Mikrotik BlackLists: Mikrotik Blacklist on Github Here is a fairly simple one to get a feel for how it works: https://github.com/pwlgrzs/Mikrotik-Blacklist The rest are using more or less the same basic functionality but with different options how to do...
by Larsa
Wed Nov 11, 2020 7:02 pm
Forum: Beginner Basics
Topic: Layer 7 Blacklist
Replies: 16
Views: 1794

Re: Layer 7 Blacklist

This looks like a typical man-in-the-middle decryption. How will this cope with the upstream SSL/TLS "fake-cert" ?
by Larsa
Wed Nov 11, 2020 6:43 pm
Forum: General
Topic: Handle with ddos or many flows?
Replies: 13
Views: 824

Re: Handle with ddos or many flows?

I'll have a look if I can find a reasonably brief description without too much buzz. It't not very complicated. Basically it's a scheduled script that downloads and inserts bunch of consolidated address lists (ie from firehol.org and like). Lists with frequent changes is advisable downloaded by the ...
by Larsa
Wed Nov 11, 2020 4:26 pm
Forum: General
Topic: Handle with ddos or many flows?
Replies: 13
Views: 824

Re: Handle with ddos or many flows?

IF your ISP is not handling DDOS, not sure if your router is able to.
Just curious, do you know of many ISPs that perform active DDOS prevention and how they do it? (black lists?) Ours doesn't do it anyway..
by Larsa
Wed Nov 11, 2020 4:19 pm
Forum: General
Topic: Handle with ddos or many flows?
Replies: 13
Views: 824

Re: Handle with ddos or many flows?

You could try to activate a Blacklist Filter like for example viewtopic.php?f=9&t=136666. I'm using a similar solution for some customers and it works very well.
by Larsa
Wed Nov 11, 2020 2:12 pm
Forum: RouterOS v7 BETA
Topic: Non-serious module errors resets LTE connection. Is this by design in RoSv7b2?
Replies: 3
Views: 895

Non-serious module errors resets LTE connection. Is this by design in RoSv7b2?

We are performing some internal tests with RoSv7b2 on a custom LTE device using RB912UAG-5HPnD and Huawei ME909 When using lte-chat, we've noticed that many errors (even non-serious ones) returned from the LTE module resets the lte interface ie restarting the connection. Questions: is this behavior ...
by Larsa
Tue Nov 10, 2020 3:29 pm
Forum: Beginner Basics
Topic: Layer 7 Blacklist
Replies: 16
Views: 1794

Re: Layer 7 Blacklist

IMHO, maintaining a layer-7 is tricky and not worth the effort. I think the easiest and fastest way is to use DNS for example Open DNS, CleanBrowsing and similar dns-services.
by Larsa
Sat Nov 07, 2020 10:00 am
Forum: Announcements
Topic: MikroTik newsletter November 2020 (#98)
Replies: 64
Views: 18031

Re: MikroTik newsletter November 2020 (#98)

Well, if you are unhappy with apros 20 dbi you can always utilize whatever size of a dish using the standard "LNB" sized LDF LTE6: https://mikrotik.com/product/ldf_lte6_kit PS... IMHO, it's a sane production decision to reuse the antennas whenever possible as new designs are always expensi...
by Larsa
Fri Nov 06, 2020 7:40 pm
Forum: General
Topic: Does quouting quotes of quotes in consecutive post make any sense?
Replies: 81
Views: 8567

Re: v6.46.8 [long-term] is released!

Do you know the rule GIGO? Garbage In, Garbage Out
well, I'm more of a shit in, shit out man :) Chers
by Larsa
Fri Nov 06, 2020 6:18 pm
Forum: Announcements
Topic: MikroTik newsletter November 2020 (#98)
Replies: 64
Views: 18031

Re: MikroTik newsletter November 2020 (#98)

Future suggestions: Please consider doing a m.2 adapter with correct heatsink - I would love to buy that adapter and put some other m.2 lte modems. Please add B3+1 and B1+7 at R11e-LTE6 Please fix in next version that mounting the case cover, he like break and it's so hard to release Please fix tha...
by Larsa
Fri Nov 06, 2020 4:55 pm
Forum: Announcements
Topic: MikroTik newsletter November 2020 (#98)
Replies: 64
Views: 18031

Re: MikroTik newsletter November 2020 (#98)

Question: is it safe to presume the LTE-module is future proof ie replaceable with for example a 5G-module when available? Yes, it might be possible (with great care and appropriate tools) to change LHG LTE6 modem, but it should be same form factor. Great, standard mPCIe I guess? Btw, I take it for...
by Larsa
Fri Nov 06, 2020 4:40 pm
Forum: Announcements
Topic: MikroTik newsletter November 2020 (#98)
Replies: 64
Views: 18031

Re: MikroTik newsletter November 2020 (#98)

Regarding: "LHGG LTE6 kit" (RBLHGGR&R11e-LTE6) - Thank you for the 1Gbe interface! - Question: is it safe to presume the LTE-module is future proof ie replaceable with for example a 5G-module when available? Link LHGG LTE6 kit (RBLHGGR&R11e-LTE6): https://mikrotik.com/product/lhgg_...
by Larsa
Thu Nov 05, 2020 10:05 am
Forum: Wireless Networking
Topic: Using a 2.4GHz channel for uplink (AP) and a different 2.4GHz channel for downlink (clients)
Replies: 4
Views: 601

Check MU-MIMO ("Re: Using a 2.4GHz channel for uplink (AP) and a different 2.4GHz channel for downlink (clients)")

MU-MIMO is yet another alternative. As usual, both sides need to have the capabilities to utilize the full power of MU-MIMO. https://www.pcworld.com/article/2928725/how-mu-mimo-wi-fi-works.html https://www.networkworld.com/article/3250268/what-is-mu-mimo-and-why-you-need-it-in-your-wireless-routers....
by Larsa
Wed Nov 04, 2020 7:03 pm
Forum: General
Topic: Does quouting quotes of quotes in consecutive post make any sense?
Replies: 81
Views: 8567

Re: Does quouting quotes of quotes in consecutive post make any sense?

I believe you get much better attention if promote what you love instead of bashing what you hate. May I suggest the following comment or something similar: "As a general advice please don't quote the whole answer since it makes it harder to follow the essence of the thread". Please read &...
by Larsa
Tue Nov 03, 2020 8:59 pm
Forum: General
Topic: Does quouting quotes of quotes in consecutive post make any sense?
Replies: 81
Views: 8567

Re: v6.46.8 [long-term] is released!

1. Pick the part of a post above to show what you do respond to. (can be multiple section) 2. Respond to a post that is not directly above, to make sure that other understand what to reply to. Do never ever quote the whole post directly above you. Does not give any sense to do... Well, forum etique...
by Larsa
Tue Nov 03, 2020 6:35 pm
Forum: General
Topic: Does quouting quotes of quotes in consecutive post make any sense?
Replies: 81
Views: 8567

Re: v6.46.8 [long-term] is released!

Autist, don't you bother about persons that sometime get upset for nothing. The absolute majority in this forum are very nice and helpful people so please stay with us. BartoszP probably just needs a big hug to get human again, don't you think! :)
by Larsa
Tue Nov 03, 2020 6:02 pm
Forum: General
Topic: Does quouting quotes of quotes in consecutive post make any sense?
Replies: 81
Views: 8567

Re: v6.46.8 [long-term] is released!

BartoszP, being corona-isolated too long and maybe feeling a bit cranky today? Kisses and hugs to you! :)
by Larsa
Tue Nov 03, 2020 5:24 pm
Forum: Wireless Networking
Topic: CAT-6 LTE module with bridge-mode/CA and good integration to RoS
Replies: 9
Views: 873

Re: CAT-6 LTE module with bridge-mode/CA and good integration to RoS

I'm aware of the difference, but thank you anyhow! :) That's why i usually tend to use uppercase like "INTER-" so you can spot the difference. 3gpp sometimes makes things more difficult than necessary especially when it comes to naming things :-) Regarding CA I think 3gpp has quite a good ...
by Larsa
Tue Nov 03, 2020 3:25 pm
Forum: RouterOS v7 BETA
Topic: Wireguard between Mikrotik and Mullvad
Replies: 3
Views: 1643

Re: Wireguard between Mikrotik and Mullvad

As I undersand you have a working tunnel to the Mullvad VPN server and everything is ok with the internet connection (ie "I can ping and traceroute over the interface"). But I guess you want to achieve something else?
by Larsa
Tue Nov 03, 2020 3:07 pm
Forum: Wireless Networking
Topic: CAT-6 LTE module with bridge-mode/CA and good integration to RoS
Replies: 9
Views: 873

Re: CAT-6 LTE module with bridge-mode/CA and good integration to RoS

Thanks, is that a chart with Inter-band CA-capabilities?

Btw, list with mostly Huawei end user CPE's. I have an E5186s-22A (don't know what LTE module it uses) with unbranded original fw that includes all features but have never managed it to use CA.
by Larsa
Tue Nov 03, 2020 12:36 pm
Forum: Wireless Networking
Topic: CAT-6 LTE module with bridge-mode/CA and good integration to RoS
Replies: 9
Views: 873

Re: CAT-6 LTE module with bridge-mode/CA and good integration to RoS

Quectel EM12-G = your favorite :) Quactel EG12 (no frequency lock?) TELIT LM940 (needs USB connector or pin isolation?) They all look good but since the installation is in a rural area that is limited to only cat6, they are a bit overkill also regarding the price level. So in this case maybe R11e-LT...
by Larsa
Tue Nov 03, 2020 11:56 am
Forum: Wireless Networking
Topic: CAT-6 LTE module with bridge-mode/CA and good integration to RoS
Replies: 9
Views: 873

Re: CAT-6 LTE module with bridge-mode/CA and good integration to RoS

Thank you! I'll take a look and get back to you with any questions. I suppose you've tried all three yourself?
by Larsa
Mon Nov 02, 2020 11:49 pm
Forum: General
Topic: Routing issue with PPTP site to site
Replies: 4
Views: 551

Re: Routing issue with PPTP site to site

You may need to enable proxy-arp on the lan-interfaces. Check this explanation: viewtopic.php?t=95150#p474578
by Larsa
Mon Nov 02, 2020 11:20 pm
Forum: Beginner Basics
Topic: Hello and Help ( LTE6 ) [SOLVED]
Replies: 26
Views: 2534

Re: Hello and Help ( LTE6 ) [SOLVED]

@SIb, do you have any idea why the LTE modules have such difficulties at choosing the initial optimal settings compared to modern smartphones? Is it the module firmware or the controlling device (ie routerboard) that makes poor decisions? It certainly looks like a general flaw when browsing through ...
by Larsa
Mon Nov 02, 2020 10:16 pm
Forum: Wireless Networking
Topic: Trying to force carrier aggregation between two band 3 masts
Replies: 10
Views: 4533

Re: Trying to force carrier aggregation between two band 3 masts

Bumping an old thread: does it (R11e-LTE6) support INTER-band ie FDD 7+28 ? If not, any suggestion of an LTE module that will manage that?

INTER-Band as in: https://en.wikipedia.org/wiki/Carrier_aggregation
by Larsa
Mon Nov 02, 2020 9:43 pm
Forum: Wireless Networking
Topic: CAT-6 LTE module with bridge-mode/CA and good integration to RoS
Replies: 9
Views: 873

Re: CAT-6 LTE module with bridge-mode/CA and good integration to RoS

Btw, anyone who is using the RoS v7 LTE MBIM interface?
by Larsa
Mon Nov 02, 2020 6:57 pm
Forum: Wireless Networking
Topic: CAT-6 LTE module with bridge-mode/CA and good integration to RoS
Replies: 9
Views: 873

CAT-6 LTE module with bridge-mode/CA and good integration to RoS

Based on real life experience I would like some suggestions of CAT-6 LTE mPCIe modules that are easy manageable ie good integration with RoS and with support for bridge-mode, CA (Inter-Band) and channel locking. RoS v6/v7 both ok. All suggestions are welcome, but please don't just refer to https://w...
by Larsa
Wed Oct 28, 2020 8:02 pm
Forum: Scripting
Topic: Mikrotik Scripting needs to be useful! Requests!
Replies: 5
Views: 936

Re: Mikrotik Scripting needs to be useful! Requests!

Well, the Ros script engine is still pretty crippled with years of patchwork and workarounds. My advice is to replace it with python or other similar standard script language. Mikrotik should focus on advanced networking not on a self-developed script language engine. The NIH (Not Invented Here) syn...
by Larsa
Tue Oct 27, 2020 11:16 pm
Forum: Scripting
Topic: Built in function library
Replies: 96
Views: 43000

Re: Built in function library

Catch error messages
You mean, in here? https://wiki.mikrotik.com/wiki/Manual:S ... ime_errors

Que? That just catches "an" error. There is no way to get the actual error message ie type of error.
by Larsa
Tue Oct 27, 2020 6:45 pm
Forum: Scripting
Topic: Built in function library
Replies: 96
Views: 43000

Re: Built in function library

micro python :)
by Larsa
Tue Oct 27, 2020 6:43 pm
Forum: Scripting
Topic: Built in function library
Replies: 96
Views: 43000

Re: Built in function library

Catch error messages
by Larsa
Tue Oct 27, 2020 6:39 pm
Forum: Scripting
Topic: Scripting engine upgrade?
Replies: 0
Views: 380

Scripting engine upgrade?

I've been fighting again for days with scripting and with all the flaws like lack of catching error messages, side effects of MT variables containing dash ('-'), strange concurrency execution of event scripts, and the general lack of tools for debugging and tracing. Any chance there will be a decent...
by Larsa
Thu Oct 22, 2020 6:53 pm
Forum: General
Topic: PPTP VPN problem with Tele2 LTE
Replies: 4
Views: 792

Re: PPTP VPN problem with Tele2 LTE

Forgot to mention there are some tool you can use to test if the PPTP ports tcp 1723 and GRE are open all the way to the server. Check out "pptpclnt.exe" from the Microsoft Windows Support Tools. - PPTP VPN: TESTING WHETHER GRE 47 TRAFFIC IS ALLOWED - How to test GRE and PPTP using PPTPcln...
by Larsa
Thu Oct 22, 2020 6:16 pm
Forum: General
Topic: PPTP VPN problem with Tele2 LTE
Replies: 4
Views: 792

Re: PPTP VPN problem with Tele2 LTE

Providers often have problems with PPTP, especially if you are not given a real IP. If you do not want to argue with technical support, use other protocols. For example, sstp, but it is slower and load the CPU. Most of the time when we had problems with PPTP, it was caused by the local connection (...
by Larsa
Thu Feb 27, 2020 9:36 am
Forum: Wireless Networking
Topic: Sxt LTE 4g+ Cat6>
Replies: 45
Views: 17565

Re: Sxt LTE 4g+ Cat6>

release_version: R11e-LTE6_V022CELLLOCK
release_time: 20191125_13_49
ap_version: rls2476

Is "R11e-LTE6_V022CELLLOCK" stock firmware or do you need to contact support to get it?
by Larsa
Sat Feb 22, 2020 12:09 pm
Forum: Announcements
Topic: Future of LTE products, user feedback requested
Replies: 187
Views: 65481

Re: Future of LTE products, user feedback requested

Realy? You compare : Cat.6, MIMO 2x2, 64 QAM, 2CA Cat.16, MIMO 4x4, 256 QAM, 3CA from differ $ price shelf? S8 in my country is start at least $416 and more. You should buy adequately modem like ~200$ Telit LM960 Cat.18 and install 2x (MIMO 2x2 LTE external antennas) dedicated to specific your band...
by Larsa
Fri Feb 21, 2020 10:08 pm
Forum: Announcements
Topic: Future of LTE products, user feedback requested
Replies: 187
Views: 65481

Re: Future of LTE products, user feedback requested

RBLtAP-2HnD kit with "R11e-LTE6" Phone gives me up to 370/24 Mbps ( Galaxy S8 - 2017 ) Routerboard 38/16 Mbps, and yes they confirmed there is bug with modem firmware, but no respond from support when they release update. It will be nice to first make your modem work properly Same problem...
by Larsa
Sat Feb 15, 2020 12:07 am
Forum: Announcements
Topic: Future of LTE products, user feedback requested
Replies: 187
Views: 65481

Re: Future of LTE products, user feedback requested

- HW: 1GbE port
- HW: RBLGHR with improved antenna and with purchase option "empty PCI slot"
- SW: GUI support for control of Cell-Locking, CA, etc.
- SW: Scanner functionality optimized for connection characteristics.
by Larsa
Tue Feb 12, 2019 9:07 pm
Forum: Useful user articles
Topic: 📌 Tool: Using Splunk to analyse MikroTik logs 3.3 (Graphing everything) 💾 🛠 💻 📊
Replies: 474
Views: 205500

Re: Using Splunk to analyse MikroTik logs 2.6 (Graphing everything)

Not sure if I could help with this. But when you have a lot of data, its sometime better to do a summary indexes that is based of for example 1 hour reports. Then you get less data to search trough.I do recommend that you start a thread about your problem over here: https://answers.splunk.com/index...
by Larsa
Mon Feb 11, 2019 12:35 pm
Forum: General
Topic: SXT LTE Kit (R11e-LTE) - to lock on 3G 900Mhz
Replies: 9
Views: 3321

Re: SXT LTE Kit (R11e-LTE) - to lock on 3G 900Mhz

We operate LTE as backup in some rural areas and always force the CPE to utilize 800/900 Mhz since the higher frequency bands are much to sensitive for trees, rain and snow in longer distances and when you don't have LIS.
by Larsa
Mon Feb 11, 2019 12:04 pm
Forum: Useful user articles
Topic: 📌 Tool: Using Splunk to analyse MikroTik logs 3.3 (Graphing everything) 💾 🛠 💻 📊
Replies: 474
Views: 205500

Re: Using Splunk to analyse MikroTik logs 2.6 (Graphing everything)

Since I'm not a Splunk expert I wonder if anyone has some bright ideas how to optimize Splunk / Mongodb? We have about 15.5 million entries and the reports are getting really slow to produce. In a regular SQL database you can run a "Query Execution Plan" and then add indexes to columns tha...
by Larsa
Sat Jan 19, 2019 10:33 pm
Forum: General
Topic: Firewall: dynamic ip lookup instead of static address list?
Replies: 21
Views: 3279

Re: Firewall: dynamic ip lookup instead of static address list?

According to firehol Linux ipsets are affected only by the number of different subnets ". I suppose this also applies to RoS since it utilize iptables, right?? " If you are going to use this IP list as a blocklist / blacklist at a firewall, its size can be important for the performance of ...
by Larsa
Fri Jan 18, 2019 8:35 pm
Forum: Wireless Networking
Topic: LTE modems - Compatibility list?
Replies: 4
Views: 4096

Re: LTE modems - Compatibility list?

Not sure how many operators that will actually upgrade till Cat-12. 5G r15 will be release in April and initial test starts sometime this summer nearby where I live.
by Larsa
Tue Jan 15, 2019 3:59 pm
Forum: General
Topic: v7 routeros
Replies: 12
Views: 4871

Re: v7 routeros

죄송합니다.이 포럼은 영어로되어 있습니다. RouterOS v7이 개발 중에 있습니다. CHR에서 x86 버전의 현재 한계를 해결하기 위해 노력하는 것이 좋습니다.

나는 유창한 한국어를 할 줄도 몰랐다. 당신은 진정한 다재다능한 예술가입니다! :-디
by Larsa
Mon Jan 14, 2019 11:55 pm
Forum: General
Topic: Firewall: dynamic ip lookup instead of static address list?
Replies: 21
Views: 3279

Re: Firewall: dynamic ip lookup instead of static address list?

Thanks for the info and walk of shame for me :oops: If one care to read carefully, It's actually stated with clear text regarding firehol_level1

"To accomplish this, we include the following IP lists:
. . .
spamhaus drop and edrop - Don't Route Or Peer IPs
. . .

"
by Larsa
Mon Jan 14, 2019 11:24 pm
Forum: General
Topic: Firewall: dynamic ip lookup instead of static address list?
Replies: 21
Views: 3279

Re: Firewall: dynamic ip lookup instead of static address list?

Yeah, hope they plan to do something about it or create a more manageable/flexible solution in the future. How many lines (give or take) is the end result? I'm wondering since I'm interested to use the Spamhaus drop/edrop "real-time" lists. Will the total aggregate work on a CCR do you th...
by Larsa
Mon Jan 14, 2019 11:11 pm
Forum: General
Topic: Firewall: dynamic ip lookup instead of static address list?
Replies: 21
Views: 3279

Re: Firewall: dynamic ip lookup instead of static address list?

Absolutely brilliant, altering the block-rules is of course the fastest and most secure way to do it! :idea: Why didn't I think about it myself! :lol: Now I only need to perform some tests to figure out the actual storage limitation on a CCR as I need room for both current and new lists simultaneou...
by Larsa
Mon Jan 14, 2019 10:19 pm
Forum: General
Topic: Firewall: dynamic ip lookup instead of static address list?
Replies: 21
Views: 3279

Re: Firewall: dynamic ip lookup instead of static address list?

Any thoughts about a secure way to update the address list online that doesn't take forever ? The wipe and clean method is highly insecure because the lengthy import times that is direct related to the huge import volumes. Btw, what lists are you using from FireHOL ( iplists.firehol.org ) ? why not...
by Larsa
Mon Jan 14, 2019 9:43 pm
Forum: General
Topic: Firewall: dynamic ip lookup instead of static address list?
Replies: 21
Views: 3279

Re: Firewall: dynamic ip lookup instead of static address list?

Any thoughts about a secure way to update the address list online that doesn't take forever ? The wipe and clean method is highly insecure because the lengthy import times that is direct related to the huge import volumes. Btw, what lists are you using from FireHOL ( iplists.firehol.org ) ? Untill ...
by Larsa
Mon Jan 14, 2019 9:21 pm
Forum: General
Topic: Firewall: dynamic ip lookup instead of static address list?
Replies: 21
Views: 3279

Re: Firewall: dynamic ip lookup instead of static address list?

I remeber seeing somewhere that addresslist can be feed an dns and it will do resolution on it's own (basically keeping itself updated) Documented (a big word for just small syntax note) in the meantime: https://wiki.mikrotik.com/wiki/Manual:IP/Firewall/Address_list Thanks for the tip but unfortuna...
by Larsa
Mon Jan 14, 2019 7:23 pm
Forum: General
Topic: Firewall: dynamic ip lookup instead of static address list?
Replies: 21
Views: 3279

Re: Firewall: dynamic ip lookup instead of static address list?

Thanks! :) Regarding MT blocking capabilities, I take it you've been there, done that and found the bitter dead end! :lol:

Besides MT, did you solve it any other way?
by Larsa
Mon Jan 14, 2019 7:10 pm
Forum: General
Topic: Firewall: dynamic ip lookup instead of static address list?
Replies: 21
Views: 3279

Re: Firewall: dynamic ip lookup instead of static address list?

@anav: I have absolutely no opinion about MOAB since I really don't know anything about it :!: and furthermore it's not the subject of this discussion. With respect, please keep focus to my original question regarding how to manage problems related to huge address lists in RoS, etc. Many thanks in a...
by Larsa
Mon Jan 14, 2019 6:36 pm
Forum: General
Topic: Firewall: dynamic ip lookup instead of static address list?
Replies: 21
Views: 3279

Re: Firewall: dynamic ip lookup instead of static address list?

Any thoughts about a secure way to update the address list online that doesn't take forever ? The wipe and clean method is highly insecure because the lengthy import times that is direct related to the huge import volumes.

Btw, what lists are you using from FireHOL (iplists.firehol.org) ?
by Larsa
Mon Jan 14, 2019 6:24 pm
Forum: General
Topic: Firewall: dynamic ip lookup instead of static address list?
Replies: 21
Views: 3279

Re: Firewall: dynamic ip lookup instead of static address list?

Insofar as ip address lookup within the firewall (with eg DNSBL check) --- IMO that would impose a significant performance hit plus setting something like that up locally requires significant time and resources adding another point of failure. Well, IMO some few ms really doesn't really matter duri...
by Larsa
Mon Jan 14, 2019 5:15 pm
Forum: General
Topic: Firewall: dynamic ip lookup instead of static address list?
Replies: 21
Views: 3279

Firewall: dynamic ip lookup instead of static address list?

Is there any way to use some kind of "dynamic" ip address lookup within the firewall (with eg DNSBL check) in the instead of using the build-in static address lists? The objective is to move out all the static address lists to a server since they've grown to big for RoS. Background to my q...
by Larsa
Wed Nov 21, 2018 5:45 pm
Forum: RouterBOARD hardware
Topic: LHG LTE (RBLHGR&R11e-LTE) Specifications [SOLVED]
Replies: 3
Views: 1893

Re: LHG LTE (RBLHGR&R11e-LTE) Specifications [SOLVED]

Excellent thank you!
by Larsa
Wed Nov 21, 2018 1:51 pm
Forum: RouterBOARD hardware
Topic: LHG LTE (RBLHGR&R11e-LTE) Specifications [SOLVED]
Replies: 3
Views: 1893

Re: Product info regarding LHG LTE [SOLVED]

Any sales folks that are willing to answers questions in this forum or someone who can comment on how the product works?
by Larsa
Tue Nov 20, 2018 10:27 am
Forum: RouterBOARD hardware
Topic: LHG LTE (RBLHGR&R11e-LTE) Specifications [SOLVED]
Replies: 3
Views: 1893

LHG LTE (RBLHGR&R11e-LTE) Specifications [SOLVED]

The LHG LTE kit ( https://mikrotik.com/product/lhg_lte_kit ) looks promising. Some questions I couldn't find info about from the product page: 1. Can someone please supply somewhat more detailed info regarding the antenna characteristics like radiation patterns as lobe angles, mimo, etc. Doesn't nee...
by Larsa
Mon Nov 12, 2018 10:11 am
Forum: Announcements
Topic: Newsletter 85
Replies: 30
Views: 16539

Re: Newsletter 85

The LHG LTE kit (with a high gain 17dBI parabolic antenna) looks really promising. A few questions though: 1. Where can you find more detailed info regarding the antenna characteristics like MIMO, radiation patterns as lobe angles, etc. Doesn't need to be precise, a general descrioption will do. 2. ...
by Larsa
Fri Aug 31, 2018 3:22 pm
Forum: RouterBOARD hardware
Topic: RB922UAGS-5HPacD/RBM33G+R11e-5HacD comparison: which one should I use?
Replies: 6
Views: 1650

Re: RB922UAGS-5HPacD/RBM33G+R11e-5HacD comparison: which one should I use?

I was more thinking about the actual routerboards. This is for a LTE-solution with 18 dBi tube mimo antennas. I'm a bit concerned about the 16MB flash on RBM11G and if in any way will force ROS to run in a limited way?
by Larsa
Wed Aug 29, 2018 7:40 pm
Forum: RouterBOARD hardware
Topic: RB922UAGS-5HPacD/RBM33G+R11e-5HacD comparison: which one should I use?
Replies: 6
Views: 1650

Re: RB922UAGS-5HPacD/RBM33G+R11e-5HacD comparison: which one should I use?

I was thinking about the same. Which did you pick?
by Larsa
Mon Jun 25, 2018 8:21 pm
Forum: General
Topic: Format of certificate "subject-alt-name" ? [SOLVED]
Replies: 3
Views: 2523

Re: Format of certificate "subject-alt-name" ? [SOLVED]

Many thanks, exactly what I was looking for!
by Larsa
Sun Jun 24, 2018 8:36 pm
Forum: General
Topic: Format of certificate "subject-alt-name" ? [SOLVED]
Replies: 3
Views: 2523

Re: Format of certificate "subject-alt-name" ? [SOLVED]

Anyone? Any ideas are welcome!
by Larsa
Sun Jun 24, 2018 11:09 am
Forum: General
Topic: Format of certificate "subject-alt-name" ? [SOLVED]
Replies: 3
Views: 2523

Format of certificate "subject-alt-name" ? [SOLVED]

Can someone please point out where the various formats for certificate "subject-alt-name" (IP, DNS, etc) are defined and how to add multiple alternative names? Didn't manage to find any detailed info regarding this in the wiki...
--

Thanks in advance!
by Larsa
Wed Jun 20, 2018 8:50 pm
Forum: General
Topic: Prevent usage of SMHO WiFi-routers on corporate network? [SOLVED]
Replies: 11
Views: 2513

Re: Prevent usage of SMHO WiFi-routers on corporate network? [SOLVED]

Yes indeed!

Rumors say some of the co workers got very puzzled when their personal hotspot stopped working but were still able to use their laptop on the same connection.
by Larsa
Tue Jun 19, 2018 12:06 pm
Forum: General
Topic: Prevent usage of SMHO WiFi-routers on corporate network? [SOLVED]
Replies: 11
Views: 2513

Re: Prevent usage of SMHO WiFi-routers on corporate network? [SOLVED]

Well, the regular access is somewhat limited because of previously misuse and someone got the brilliant idea to bypass that limitation. So i'm not quite convinced regarding the business case this time! :lol:
by Larsa
Mon Jun 18, 2018 4:28 pm
Forum: General
Topic: Prevent usage of SMHO WiFi-routers on corporate network? [SOLVED]
Replies: 11
Views: 2513

Re: Prevent usage of SMHO WiFi-routers on corporate network? [SOLVED]

Well, it's good enough to prevent a "normal" ad hoc installation and not for the professional villain with deeper technical knowledge :-)
by Larsa
Mon Jun 18, 2018 11:23 am
Forum: General
Topic: Prevent usage of SMHO WiFi-routers on corporate network? [SOLVED]
Replies: 11
Views: 2513

Re: Prevent usage of SMHO WiFi-routers on corporate network? [SOLVED]

Excellent, thanks for the pointer! Since it's "flat switched" (like the term btw ;-) it should probably work in this case.
by Larsa
Mon Jun 18, 2018 10:57 am
Forum: General
Topic: Prevent usage of SMHO WiFi-routers on corporate network? [SOLVED]
Replies: 11
Views: 2513

Re: Prevent usage of SMHO WiFi-routers on corporate network? [SOLVED]

Thanks, I'll try TTL to start with!

Any suggestion on a decent value to start filtering on? Btw, is the internal TTL translated/terminated in src-nat and gets another TTL on the outbound side?
by Larsa
Mon Jun 18, 2018 10:22 am
Forum: General
Topic: Prevent usage of SMHO WiFi-routers on corporate network? [SOLVED]
Replies: 11
Views: 2513

Prevent usage of SMHO WiFi-routers on corporate network? [SOLVED]

Is there a any way to prevent people to setting up "personal hotspots" using SMHO WiFi-routers on an enterprise office network? Presume the SOHO-router is assinged a correct ip-address from corporate DHCP-server and is using its own srs-nat, is there a way to detect and block thees kind of...
by Larsa
Tue Jun 05, 2018 5:55 pm
Forum: Announcements
Topic: MikroTik News June 2018 (Issue #83)
Replies: 44
Views: 23189

Re: MikroTik News June 2018 (Issue #83)

A reflection regarding the "new" LTE SXT. What purpose does higher speeds have if the downlink still just is 100 Mbit?

Please give us a LTE CAT6 SXT with a MIMO pointing antenna + GbE downlink. Thanks ;-)
by Larsa
Tue Apr 17, 2018 12:22 pm
Forum: Announcements
Topic: Future of LTE products, user feedback requested
Replies: 187
Views: 65481

Re: Future of LTE products, user feedback requested

First of all, please make the transceiver module exchangeable thus do not limit the solution to some specific bands. In that way we can future-proof our customer installations for emerging transmission technologies only by replacing the transceiver module. Think a SXT LTE with a M2 or PCI-SIG compat...
by Larsa
Wed Dec 13, 2017 4:26 pm
Forum: General
Topic: Setup IPSec to use specific outbound subnet address on WAN? [SOLVED]
Replies: 27
Views: 4651

Re: Setup IPSec to use specific outbound subnet address on WAN? [SOLVED]

Thanks for the thorough answer and hands-on guidance is always much appreciated as well!
by Larsa
Tue Dec 12, 2017 11:08 pm
Forum: General
Topic: Setup IPSec to use specific outbound subnet address on WAN? [SOLVED]
Replies: 27
Views: 4651

Re: Setup IPSec to use specific outbound subnet address on WAN? [SOLVED]

dead peer detection should be enabled by default (interval 120 tries 5)

Normally, you set stuff like DPD and Lifetime using the ipsec peer config but what settings are used for the GRE dynamic IPSec tunnels? The GRE Wiki seems pretty brief (or actually completly empty) on this subject ...
by Larsa
Tue Dec 12, 2017 10:10 pm
Forum: General
Topic: Setup IPSec to use specific outbound subnet address on WAN? [SOLVED]
Replies: 27
Views: 4651

Re: Setup IPSec to use specific outbound subnet address on WAN? [SOLVED]

Don't do it that way! Delete the IPsec Peer and Policy you have now, create a GRE interface, specify source and destination address (the public IPs of the routers) and set an IPsec secret. Then put a /30 network on the GRE interfaces (e.g. 10.0.0.1/30 and 10.0.0.2/30) and route the networks on each...
by Larsa
Tue Dec 12, 2017 7:20 pm
Forum: General
Topic: Setup IPSec to use specific outbound subnet address on WAN? [SOLVED]
Replies: 27
Views: 4651

Re: Setup IPSec to use specific outbound subnet address on WAN? [SOLVED]

Sorry for the delay- I was a bit more than just busy. So I tested everything again and it is definitely working and I am passing traffic through the tunnel. What I noticed is that the tunnel breaks if one or both of the routers do not have a default route. That was new to me too. -Chris Chris, than...
by Larsa
Tue Dec 12, 2017 7:16 pm
Forum: General
Topic: Setup IPSec to use specific outbound subnet address on WAN? [SOLVED]
Replies: 27
Views: 4651

Re: Setup IPSec to use specific outbound subnet address on WAN? [SOLVED]

Packet flow diagram will illustrate why you need route for destination even if gateway of that route will not be used: https://wiki.mikrotik.com/images/6/68/IpsecFlow.png So if I understand it correcly, then the only way to set the outbound address of the tunnel is to control pref-src by for exampl...
by Larsa
Tue Dec 12, 2017 6:40 pm
Forum: General
Topic: Setup IPSec to use specific outbound subnet address on WAN? [SOLVED]
Replies: 27
Views: 4651

Re: Setup IPSec to use specific outbound subnet address on WAN? [SOLVED]

Now you mention it... that makes sense. Thanks.
And I second the proposal for GRE/IPsec
-Chris

I concur, but even if you put GRE/L2PT on top of the tunnel you'll probably get the same issue with the outbound address as before...
by Larsa
Fri Dec 08, 2017 12:00 am
Forum: General
Topic: Setup IPSec to use specific outbound subnet address on WAN? [SOLVED]
Replies: 27
Views: 4651

Re: Setup IPSec to use specific outbound subnet address on WAN? [SOLVED]

Sorry, but I forgot to mention that the tunnel gets established but cannot pass any packets since the remote peer gets pref-source from the sending side as the return address i.e outbound address = pref-source. If possible, please enable logging for protocol 50 (ESP) and check for the same behavior....
by Larsa
Thu Dec 07, 2017 2:28 pm
Forum: General
Topic: Setup IPSec to use specific outbound subnet address on WAN? [SOLVED]
Replies: 27
Views: 4651

Re: Setup IPSec to use specific outbound subnet address on WAN? [SOLVED]

Not back in the office, but I have an idea to check in the mean time: Do you have any masquerade rules configured in /ip firewall nat? I could bet you have. Masquerade always uses the lowest address on the interface, no matter what is defined beforehand. Convert this rule to src-nat (and to-address...
by Larsa
Thu Dec 07, 2017 1:04 pm
Forum: General
Topic: Setup IPSec to use specific outbound subnet address on WAN? [SOLVED]
Replies: 27
Views: 4651

Re: Setup IPSec to use specific outbound subnet address on WAN? [SOLVED]

Dumb questions -just to be sure: Did you specify that desired address as local-address in the peer definition? Is that address actually really assigned to the router? I have a couple of IPsec tunnels running here with multiple WAN addresses and they're running just fine as expected... -Chris Our tu...
by Larsa
Thu Dec 07, 2017 12:33 pm
Forum: General
Topic: Setup IPSec to use specific outbound subnet address on WAN? [SOLVED]
Replies: 27
Views: 4651

Re: Setup IPSec to use specific outbound subnet address on WAN? [SOLVED]

You need to set the "prefered source" on the route - it will set the outbound router ip address. Ok, so if I understand you correctly pref-source is the only way you can control the outbound address for a IPsec tunnel. So in case you have a "/29" subnet defined for your WAN, the...
by Larsa
Thu Dec 07, 2017 12:05 pm
Forum: General
Topic: Setup IPSec to use specific outbound subnet address on WAN? [SOLVED]
Replies: 27
Views: 4651

Re: Setup IPSec to use specific outbound subnet address on WAN? [SOLVED]

Instead of a direct IPsec tunnel, use GRE over IPsec or L2TP over IPsec to establish a tunnel, and route your LAN traffic via that tunnel. That will end all your problems with NAT avoidance etc. Hi! Thanks for the suggestion, but In this case it's not the NAT avoidance that is the main issue, but r...
by Larsa
Wed Dec 06, 2017 11:16 am
Forum: General
Topic: Setup IPSec to use specific outbound subnet address on WAN? [SOLVED]
Replies: 27
Views: 4651

Re: Setup IPSec to use specific outgoing subnet address on WAN? [SOLVED]

Any suggestion how this can be solved?
by Larsa
Tue Dec 05, 2017 6:54 pm
Forum: General
Topic: Outbound Port 25
Replies: 8
Views: 3435

Re: Outbound Port 25

I recommend you skip the router and hook up a PC directly to the WAN port where you have your mail server. If you are using Windows download nc.exe and then run an outbound test using: C:\> nc -v smtp.gmail.com 25 gmail-smtp-msa.l.google.com [64.233.161.108] 25 (smtp) open 220 smtp.gmail.com ESMTP w...
by Larsa
Mon Dec 04, 2017 9:47 pm
Forum: General
Topic: Setup IPSec to use specific outbound subnet address on WAN? [SOLVED]
Replies: 27
Views: 4651

Re: Setup IPSec to use specific outgoing subnet address on WAN? [SOLVED]

I have picked a number off the 5 of a block and it works fine. Well, thats what we tried. But the outbound ip address always defaults to Pref Source i.e first usable address in the subnet. Since you have to use "accept srcnat Src.Addresse Dst.Adresses" as the first entry to bypass any fur...
by Larsa
Mon Dec 04, 2017 8:36 pm
Forum: General
Topic: Outbound Port 25
Replies: 8
Views: 3435

Re: Outbound Port 25

It quite normal nowadays that operators block outbound smtp port 25 on consumer connections to prevent spam-bots. Test outbound port 25 using Netcat (nc) with verbose and debug flags (usually -D -and -v) from a computer connected directly to the WAN-port. For example use the following command line: ...
by Larsa
Mon Dec 04, 2017 6:48 pm
Forum: General
Topic: Setup IPSec to use specific outbound subnet address on WAN? [SOLVED]
Replies: 27
Views: 4651

Setup IPSec to use specific outbound subnet address on WAN? [SOLVED]

Is it possible to setup an IPSec tunnel to use a specific public address on a WAN interface that consist of a "/29" subnet (i.e any of the 5 public IP addresses) ? I'm asking since we had some issues with IPsec and the only way to resolve the problem was to pick to the lowest address from ...
by Larsa
Sun Mar 12, 2017 11:26 am
Forum: Scripting
Topic: Generate random users in hotspot
Replies: 3
Views: 1161

Re: Generate random users in hotspot

Ya i really do .... life continue anyway ..
Yeah, it sure does! Hope you soon will have peace so you can continue your life and business in prosperity. And maybe you can ask MikroTik for a big discount while doing so! :D

Good luck!!
by Larsa
Sat Mar 11, 2017 6:20 pm
Forum: Scripting
Topic: Generate random users in hotspot
Replies: 3
Views: 1161

Re: Generate random users in hotspot

Great script, thanks! Wow, you actually live and run a WISP in Mosul/Iraq ?? Brave man! :-)
by Larsa
Fri Mar 10, 2017 12:19 am
Forum: General
Topic: CIA exploits against Mikrotik hardware
Replies: 97
Views: 54445

Re: CIA exploits against Mikrotik hardware

https://www.linkedin.com/pulse/cia-hacking-tools-review-cisco-primary-target-craig-dods "Due to unforeseen circumstances, the technical details of this article have been removed" appeared really, really fast!! Well, in these cases archiving service is your best friend: http://archive.is/e...
by Larsa
Mon Feb 27, 2017 10:37 am
Forum: General
Topic: Hairpin nat weirdness
Replies: 24
Views: 5454

Re: Hairpin nat weirdness

Main problem is source ip of hairpined connection, all these connects coming with router ip and i'm unable to understand who is connected. This is by design when using hairpin-nat , i.e. source ip is always the router interface. If you try to explain what you are trying to accomplish, it might be e...
by Larsa
Sat Feb 25, 2017 6:07 pm
Forum: General
Topic: Hairpin nat weirdness
Replies: 24
Views: 5454

Re: Hairpin nat weirdness

i just want to have access to nated ports via external_ip:port from my lan without masquerading like in any other routers Ok. But you still need to masquerade the external wan traffic, right? So, what's the difference to masquerading the internal traffic as well. I mean, all traffic still needs to ...
by Larsa
Sat Feb 25, 2017 7:58 am
Forum: General
Topic: Firewall rules
Replies: 9
Views: 1873

Re: Firewall rules

Sorry, but a hidden SSID adds no extra security and MAC address can easily be spoofed as pointed out earlier. Use WPA2/AES and choose a password with at least 10 long and mixed characters. In case you need even stronger secure you can utilize WPA2-Enterprise with certificates using PEAP/TTLS, (i.e. ...
by Larsa
Sat Feb 25, 2017 12:21 am
Forum: General
Topic: Hairpin nat weirdness
Replies: 24
Views: 5454

Re: Hairpin nat weirdness

Just curious, why do you want to NAT the internal traffic?
by Larsa
Thu Feb 23, 2017 5:15 pm
Forum: General
Topic: Hairpin nat weirdness
Replies: 24
Views: 5454

Re: Hairpin nat weirdness

In short, use-ip-firewall=yes makes bridged traffic behave very differently from switched traffic. Yeah, it's basically like forcing the firewall to manage all ethernet traffic to the bridge. When using "use-ip-firewall=no", all traffic will be transferred directly between the bridge port...
by Larsa
Thu Feb 23, 2017 3:42 pm
Forum: General
Topic: Hairpin nat weirdness
Replies: 24
Views: 5454

Re: Hairpin nat weirdness

But i still can't understand why I can access nated ports in my wired connected pc from laptop via wifi or from vpn without hairpining? Yes, it's possible. See one example down below. Basically you have two choices which are not specifically related to Mikrotik: 1. Use routing for the internal netw...
by Larsa
Sat Feb 18, 2017 2:58 pm
Forum: General
Topic: CCR1009/RB3011, recommended settings for best VPN performance?
Replies: 7
Views: 3547

Re: CCR1009/RB3011, recommended settings for best VPN performance?

That's easier then. Use AES over DES. 3DES is notoriously slow in software, and it's unlikely to be optimized in hardware. As far as 3011 support, it does not seem to be in the firmware suite yet, despite being a capability on the chip: http://wiki.mikrotik.com/wiki/Manual:IP/IPsec#Hardware_encrypt...
by Larsa
Fri Feb 17, 2017 11:01 pm
Forum: General
Topic: CCR1009/RB3011, recommended settings for best VPN performance?
Replies: 7
Views: 3547

Re: CCR1009/RB3011, recommended settings for best VPN performance?

So if I understand it correctly, by using HW acceleration on a CCR you may instead encounter a reorder problem? Yay! :-) Unfortunately I didn't find anything on the RB3011...
by Larsa
Fri Feb 17, 2017 9:15 pm
Forum: General
Topic: CCR1009/RB3011, recommended settings for best VPN performance?
Replies: 7
Views: 3547

Re: CCR1009/RB3011, recommended settings for best VPN performance?

Well, of course we want to have encryption. ;-) But what I was wondering about is what type of encryption algorithm (e.g. DES, AES, etc) that would be most efficient in terms of hardware acceleration in order to get the highest possible speed without to much load on the main processor on a RB3100 co...
by Larsa
Fri Feb 17, 2017 3:12 pm
Forum: General
Topic: CCR1009/RB3011, recommended settings for best VPN performance?
Replies: 7
Views: 3547

CCR1009/RB3011, recommended settings for best VPN performance?

Can anyone please recommend the best possible vpn procol type and encyption algorithm that possibly can utilize hardware acceleration on CCR1009 <=> RB3011 (Ros 6.37.4) to obtain maximum VPN performance. They are hooked up with SFP to a 500 Mbit fiber line...

Thanks in advance!
by Larsa
Mon Feb 13, 2017 9:49 pm
Forum: Virtualization
Topic: HOWTO: Dual-booting RouterOS and OpenWRT on RouterBoard
Replies: 20
Views: 16466

Re: HOWTO: Dual-booting RouterOS and OpenWRT on RouterBoard

I posted an update to the MIPSBE architecture patches with the following changes... Nathan Hi Nathan! I'm currently working on a 4.9 kernel for the B2011UiAS and I wonder if " http://www.nconx.com/~nathan/openwrt-rb_mipsbe/kamikaze-rb_mipsbe-2.6.35.txz " might be the latest available patc...
by Larsa
Mon Feb 13, 2017 9:46 am
Forum: General
Topic: Feature requests
Replies: 1394
Views: 358164

Re: Feature requests

RFC 3021
What about this workaround? http://forum.mikrotik.com/viewtopic.php?t=7367#p32149. You might even save some addresses...
by Larsa
Sat Feb 11, 2017 6:42 pm
Forum: General
Topic: Feature requests
Replies: 1394
Views: 358164

Re: Feature requests

Btw, are there currently any big showstoppers in regards of bugs or missing features that would actually force people to pick other vendors even if they preferred MT?
by Larsa
Sat Feb 11, 2017 6:15 pm
Forum: General
Topic: Feature requests
Replies: 1394
Views: 358164

Re: Feature requests

The trouble with working prototypes is that while you can create one in couple of days, you then need couple of months to turn them into something you can share with others, and much more if you want to reliably tackle all corner cases. I imagine there are quite a few in something with RouterOS siz...
by Larsa
Sat Feb 11, 2017 1:22 pm
Forum: General
Topic: Feature requests
Replies: 1394
Views: 358164

Re: Feature requests

Nice list, but you have to ask yourself - do you want to see RouterOS v7 before or after 2020? ;) Well, most definitely not before 2020 if they choose to develop everything from scratch. :lol: It's actually possible to create a working prototype with most of the features from the wishlist on a smal...
by Larsa
Sat Feb 11, 2017 2:19 am
Forum: General
Topic: Feature requests
Replies: 1394
Views: 358164

RoS v7 wishlist

RoS v7 wishlist 2017-02-11 I’m rather new to the MT-world since about a year ago and it’s probably way too late to influence R&D at this stage but anyhow, here is my wish list for v7: - A good object oriented scripting language with a small “footprint” for embedded system such as Lua (eLua), Pyt...
by Larsa
Sat Feb 11, 2017 1:00 am
Forum: General
Topic: Loopia dynamic DNS
Replies: 7
Views: 1792

Re: Loopia dynamic DNS

My favourite way:
myrouter.mydomain.tld CNAME xxxxx.sn.mynetname.net
No need for any scripts or involving other parties.
Simple, yet very smart and elegant! I like :-D
Do you think it will work with resource records like SPF and DKIM too?
by Larsa
Fri Feb 10, 2017 9:59 pm
Forum: General
Topic: ROS failure rules are not accurate.
Replies: 6
Views: 1888

Re: ROS failure rules are not accurate.

Once the interface is active, then the rule will be valid. The problem with this is that it's not intuitive or expected behaviour. At all. Condition out-interface=!xxx clearly says "not interface xxx". The fact that "xxx" is inactive or unknown should not matter. If RouterOS see...
by Larsa
Fri Feb 10, 2017 9:20 pm
Forum: General
Topic: Loopia dynamic DNS
Replies: 7
Views: 1792

Re: Loopia dynamic DNS

There's no need for those services, you have one already built in at IP > Cloud. See http://wiki.mikrotik.com/wiki/Manual:IP/Cloud Well, that's not quite the same thing. You still need a script to update the DNS server of a particular provider, Loopia in this case. I would use the free DNS-O-Matic ...
by Larsa
Fri Feb 10, 2017 5:09 pm
Forum: Scripting
Topic: Check Connections per Host (src-address) for firewall rule/address list
Replies: 7
Views: 4006

Re: Check Connections per Host (src-address) for firewall rule/address list

. . . we have troubles in our LAN with one or more hosts which randomly tries to establish 16k+ connections LAN->WAN yeah i know, the client needs to be fixed. we are on it (but it's a bit complicated because it's the CEOs laptop ... oh the irony...) . . . Trojan or/and backdoor perhaps? I would be...
by Larsa
Fri Feb 10, 2017 3:27 pm
Forum: General
Topic: Feature requests
Replies: 1394
Views: 358164

Re: Feature requests

Is Route-Filter equivalent (or similar) to the Cisco Route-Maps? yes Great, any chance we'll see acl's (filter groups) as well? what is that? ACLs are IP Firewall (Filter, Mangle, NAT). what else do you need? The ability to utilize grouping of for example firewall filters is a matter of making netw...
by Larsa
Fri Feb 10, 2017 11:37 am
Forum: General
Topic: Feature requests
Replies: 1394
Views: 358164

Re: Feature requests

Is Route-Filter equivalent (or similar) to the Cisco Route-Maps?
yes
Great, any chance we'll see acl's (filter groups) as well?
by Larsa
Thu Feb 09, 2017 10:54 pm
Forum: General
Topic: Feature requests
Replies: 1394
Views: 358164

Re: Feature requests

Another good one, IMHO... Route-Filters - have the ability to synchronize prefixes received/withdrew to dynamic access-lists. This gives us the ability to very easily match entire ASNs in firewall rules :) This has been requested, and confirmed by Mikrotik for routing filters in v7. Is Route-Filter...
by Larsa
Thu Feb 09, 2017 9:02 pm
Forum: Scripting
Topic: Script to Test WAN and Reset USB Power on Down?
Replies: 6
Views: 4836

Re: Script to Test WAN and Reset USB Power on Down?

I'm brand new to scripting and could use some help... . . . I've found a few improved Netwatch scripts in the wiki pages, but they're designed for failover and are just way too complicated for me to understand and therefore modify. Well, http://wiki.mikrotik.com/wiki/Improved_Netwatch_II is the way...
by Larsa
Thu Feb 09, 2017 2:18 pm
Forum: Scripting
Topic: Possible to remotely gather information on a backup link?
Replies: 0
Views: 558

Possible to remotely gather information on a backup link?

Is it in some way possible using a script in a CCR, to remotely gather information such as link status or otherwise perform a health check on a backup-link consisting of a SXT LTE or a BasBox?

Thanks in advance!
by Larsa
Thu Feb 09, 2017 10:51 am
Forum: General
Topic: ** WE WANT A LTE BRIDGE-MODE **
Replies: 82
Views: 33045

Re: ** WE WANT A LTE BRIDGE-MODE **

If you want us to make the LTE bridge more we need more information on the requirements for that. For example, when the LTE interface is in the bridge mode, do you need connection to the Router as well as the Router now just passes the IP from the LTE network to the ethernet host? Another business ...
by Larsa
Tue Feb 07, 2017 4:51 pm
Forum: Wireless Networking
Topic: The LTE interface, automatic support for Direct-IP without NAT?
Replies: 1
Views: 1581

The LTE interface, automatic support for Direct-IP without NAT?

Sorry for the cross-posting in http://forum.mikrotik.com/viewtopic.php?f=3&t=117944 but I wasn't sure if this question belonged to the hardware forum or not. Anyhow, here is the question again: Regarding the 4G LTE mPCIe cards found in " http://wiki.mikrotik.com/wiki/Supported_Hardware#4G_L...
by Larsa
Tue Feb 07, 2017 4:41 pm
Forum: RouterBOARD hardware
Topic: Minimum length of a MHF4-RPSMA pigtail for Basebox?
Replies: 0
Views: 616

Minimum length of a MHF4-RPSMA pigtail for Basebox?

What's the minimum length for a MHF4-RPSMA antenna cable to be able to connect to a 4G LTE card in the BaseBox? I've looked everywhere on routerboard.com but a couldn't find any info related to antenna cable length and there were no MHF4 pigtails for sale either.
by Larsa
Tue Feb 07, 2017 2:11 pm
Forum: RouterBOARD hardware
Topic: The LTE interface, automatic support for Direct-IP without NAT?
Replies: 0
Views: 867

The LTE interface, automatic support for Direct-IP without NAT?

Regarding the 4G LTE mPCIe cards found in " http://wiki.mikrotik.com/wiki/Supported_Hardware#4G_LTE_cards_and_modems " If you install a 4G card using the LTE interface, does it imply you have automatic support for Direct-IP or are those things totally unrelated? Regarding cards with possib...
by Larsa
Tue Feb 07, 2017 12:56 pm
Forum: RouterBOARD hardware
Topic: RB suitable for high speed LTE?
Replies: 6
Views: 1382

Re: RB suitable for high speed LTE?

Thank you very much, done deal! :D
by Larsa
Tue Feb 07, 2017 12:34 pm
Forum: RouterBOARD hardware
Topic: RB suitable for high speed LTE?
Replies: 6
Views: 1382

Re: RB suitable for high speed LTE?

You can use the Basebox out of the box:
https://i.mt.lv/routerboard/files/baseb ... 113721.pdf

As you see, it has a SIM slot
Excellent, that was actually the solution I preferred. Any tips about where you can find info regarding which Cat-4 cards that supports direct-ip?
by Larsa
Tue Feb 07, 2017 12:15 pm
Forum: RouterBOARD hardware
Topic: RB suitable for high speed LTE?
Replies: 6
Views: 1382

Re: RB suitable for high speed LTE?

We currently do not support any Cat6 cards, but many Cat4 work in any RouterBOARD model with miniPCIe slot and SIM slot (like the RB922). That sounds promising. A couple of more questions if you don't mind: 1. Does the RB912 in the BaseBox offer the same capabilities or is it possible to put a RB92...
by Larsa
Tue Feb 07, 2017 11:43 am
Forum: RouterBOARD hardware
Topic: RB suitable for high speed LTE?
Replies: 6
Views: 1382

RB suitable for high speed LTE?

Are there any routerboards that are suitable to host high speed LTE Cat 4-6 cards i.e. can cope with 150-300Mbps ? The plan is to put together a fast fail-over solution for a customer that's running a CCR.
--
Thanks in advance!
by Larsa
Mon Feb 06, 2017 1:30 pm
Forum: RouterBOARD hardware
Topic: SXT LTE - wireless module replacement to cat 4?
Replies: 4
Views: 1523

Re: SXT LTE - wireless module replacement to cat 4?

We will have LTE products soon that will have LTE modules removable or available separately, but the SXT LTE that you have, can't be upgraded that way.
Thanks for the feedback, looking forward to the new version!
by Larsa
Mon Feb 06, 2017 9:36 am
Forum: RouterBOARD hardware
Topic: SXT LTE - wireless module replacement to cat 4?
Replies: 4
Views: 1523

Re: SXT LTE - wireless module replacement to cat 4?

Open it up and take a look! If you can integrate your own driver in RouterOS - no problem. I don't have one so I can have a look in the inside. I'm looking for Cat-4 solution to be used as fail-over, that's why I'm asking. Won't any of these mini-pci LTE cards work "out of the box": http:...
by Larsa
Sun Feb 05, 2017 3:43 pm
Forum: RouterBOARD hardware
Topic: SXT LTE - wireless module replacement to cat 4?
Replies: 4
Views: 1523

Re: SXT LTE - wireless module replacement to cat 4?

They don't think like that.
Ok, is it possible to replace the wireless module?
by Larsa
Sun Feb 05, 2017 10:38 am
Forum: Forwarding Protocols
Topic: CISCO route-map equivalent
Replies: 9
Views: 4966

Re: CISCO route-map equivalent

Hi, sorry but there is no equivalent of acl's or "routing groups" aka route-map in ros, you have to setup them up manually. I recommend scripting using address-lists and interface-lists for volume based number of vlans...
by Larsa
Sun Feb 05, 2017 1:56 am
Forum: General
Topic: IP-address dhcp on SVI interface
Replies: 15
Views: 3278

Re: IP-address dhcp on SVI interface

Is there a bridge or/and vlan interface assigned to port 5 or perhaps a dhcp-server that's still running on it? Maybe this can shed some more light on the problem: http://forum.mikrotik.com/viewtopic.php?t=94098
by Larsa
Sat Feb 04, 2017 10:18 pm
Forum: RouterBOARD hardware
Topic: RBSXT LTE
Replies: 59
Views: 24771

Re: RBSXT LTE

please please add Band 20 ( 800MHz ) to the SXT LTE line, it is very popular in the UK and Europe ! +1. Please. The more band you add, the higher the licensing will be for the devices, which have to be reflected in the price as well. We all know that. However, missing widely accepted and used bands...
by Larsa
Sat Feb 04, 2017 9:44 pm
Forum: General
Topic: Mikrotik resource verify (Solved)
Replies: 8
Views: 1660

Re: Mikrotik resource verify (Solved)

Well, all kind of security measures will definitely bring MikroTik closer to the requirements that most enterprise customers have nowadays. That includes even small steps like to securing the download areas...
by Larsa
Sat Feb 04, 2017 9:09 pm
Forum: General
Topic: IP-address dhcp on SVI interface
Replies: 15
Views: 3278

Re: IP-address dhcp on SVI interface

Well, you can of course a bridge to a group of ethernet ports together but let's start with keeping it as simple as possible. Since both ports are connected to the switch through access ports there is no need to tag/untag traffic through a vlan-interface on the MikroTik and we can instead use the or...
by Larsa
Sat Feb 04, 2017 12:04 am
Forum: General
Topic: IP-address dhcp on SVI interface
Replies: 15
Views: 3278

Re: IP-address dhcp on SVI interface

I have read the wiki for what seems like hours trying to put the pussle together. I think that me working with one vendor for so long have scarred me for life :) Haha, no sweat mate! I know the feeling :D Btw, normally you don't have to alter anything on the physical interfaces. You just have to ad...
by Larsa
Fri Feb 03, 2017 6:59 pm
Forum: General
Topic: 450Mhz LTE card for Mikrotik
Replies: 4
Views: 2249

Re: 450Mhz LTE card for Mikrotik

Here is a list of tested cards: http://wiki.mikrotik.com/wiki/Supported_Hardware#4G_LTE_cards_and_modems We have also recently added support for Altair Semiconductor alt3800 LP41 which works on FDD Band 3, 7, 20, 31, https://altair-semi.com/product/fourgee-3800-6300/ Is it possible to put any of th...
by Larsa
Fri Feb 03, 2017 5:34 pm
Forum: RouterBOARD hardware
Topic: SXT LTE - wireless module replacement to cat 4?
Replies: 4
Views: 1523

SXT LTE - wireless module replacement to cat 4?

Is it possible to replace the wireless module in SXT LTE with for example a cat-4 module from Sierra (or from whatever supplier) that works with RB? Btw, just a thought. Why not sell SXT LTE and the LTE modules separately? In that way you could supply LTE solutions that covers all future categories ...
by Larsa
Fri Feb 03, 2017 3:04 pm
Forum: General
Topic: Do any queue types respect Priority markings?
Replies: 26
Views: 5612

Re: Do any queue types respect Priority markings?

a two seconds search in RavenWing71 posts would have told you that: http://forum.mikrotik.com/viewtopic.php?f=2&t=116754&p=577464#p577464 Well, I'm not that well educated forum user but thank you anyhow! ;-) Just a thought - will that also capture the actual p2p traffic that is initiated in...
by Larsa
Fri Feb 03, 2017 1:50 pm
Forum: General
Topic: IP-address dhcp on SVI interface
Replies: 15
Views: 3278

Re: IP-address dhcp on SVI interface

Good picture, now I think I understand the objective (sort of anyhow) :-) If the MikroTIk is using only untagged traffic to/from vlan 100 and 200 it's probably a piece of cake. Then you only need to setup the MikroTik to use two regular ether-ports with DHCP on the "vlan-100" side plus a b...
by Larsa
Fri Feb 03, 2017 9:47 am
Forum: General
Topic: IP-address dhcp on SVI interface
Replies: 15
Views: 3278

Re: IP-address dhcp on SVI interface

Im using one port in the mikrotik on my local LAN, the other port that i want to assign to vlan 100 is supposed to collect an externa IP from my ISP. My goal is to route some traffic from my local LAN out with another public IP than the rest of my local LAN. Is this making any sense? :) Ok, I assum...
by Larsa
Fri Feb 03, 2017 12:12 am
Forum: General
Topic: IP-address dhcp on SVI interface
Replies: 15
Views: 3278

Re: IP-address dhcp on SVI interface

Now im stuck with how the port should be configured. I have configured the port in the cisco to be an accessport and send all packets without the vlan tag. In the mikrotik router I want to tag all packets with vlan 100. . Sorry, but I don't grasp the logic here. If you're connecting to an access po...
by Larsa
Thu Feb 02, 2017 11:53 pm
Forum: General
Topic: Do any queue types respect Priority markings?
Replies: 26
Views: 5612

Re: Do any queue types respect Priority markings?

Notes: I mark the MSDO packets with ToS-Bulk...
Oh, you've already found a way how to identify MSDO traffic. Do you mind sharing how it's done?
by Larsa
Thu Feb 02, 2017 11:41 pm
Forum: General
Topic: Do any queue types respect Priority markings?
Replies: 26
Views: 5612

Re: Do any queue types respect Priority markings?

.. The majority of our customers are residential, and there's hundreds of them, so WSUS is not a feasible solution... Ok, I was totally wrong there who assumed you meant a company that was hooked up but now I see your point. Yeah, that kind of p2p traffic might be a beast in that regards. Is it pos...