Community discussions

MikroTik App

Search found 55 matches

by tonny
Mon Jun 12, 2023 9:51 am
Forum: Announcements
Topic: v7.9.2 [stable] is released!
Replies: 72
Views: 26008

Re: v7.9.2 [stable] is released!

Does anyone else have issues with their release policy? We *used' to have all our units on the same version and upgrade them all when needed/required. Nowadays we have six different versions in the field. just because every unit we now buy seems to have only the latest software and can't be downgrad...
by tonny
Wed May 10, 2023 2:09 pm
Forum: Beginner Basics
Topic: EoIP bridging different vlans from two sites
Replies: 1
Views: 267

Re: EoIP bridging different vlans from two sites

found *the* (or at least a) solution to be to have same vlan i mikrotiks and do the vlan translation in cisco nexus
by tonny
Wed May 10, 2023 11:56 am
Forum: Beginner Basics
Topic: EoIP bridging different vlans from two sites
Replies: 1
Views: 267

EoIP bridging different vlans from two sites

Hi For a VM migration i need to create three EoIP tunnels between two sites, but the vlan's at both sites have different ID's site-a - vlan 344 <-- eoip --> site-b vlan 684 site-a - vlan 345 <-- eoip --> site-b vlan 685 site-a - vlan 346 <-- eoip --> site-b vlan 686 At both sites the vlans are confi...
by tonny
Tue Jan 10, 2023 9:14 am
Forum: General
Topic: no cloud update and non-hexadeciman serial number
Replies: 3
Views: 527

Re: no cloud update and non-hexadeciman serial number

you're right. but at least the looked like a mac address
by tonny
Mon Jan 09, 2023 9:39 am
Forum: General
Topic: no cloud update and non-hexadeciman serial number
Replies: 3
Views: 527

no cloud update and non-hexadeciman serial number

Hei, I've got three RB4011 that won't update ddns in IP/CLOUD. The config is correct, i've tried it on other routers. They run on version 6 long-term Also ran a packet capture on UDP/15252 and traffic goes out and gets answered. But no update of time not device cloud ddns name The thing is/might be ...
by tonny
Wed Apr 06, 2022 4:01 pm
Forum: Scripting
Topic: 'whoami' in vrrp script
Replies: 3
Views: 825

Re: 'whoami' in vrrp script

the idea is to be able to t.ex. "/system script run vrrphaschanged" in the 'on master' and 'on backup' then in the vrrphaschanged script have two variable that refers to which vrrp interface and to the (new-)state For now i've worked around it with :global variables but that's kind of an i...
by tonny
Mon Apr 04, 2022 5:12 pm
Forum: Scripting
Topic: 'whoami' in vrrp script
Replies: 3
Views: 825

'whoami' in vrrp script

Hi,

The VRRP interfaces have an "on-master"/"on-backup" script trigger.
Is there a variable that specifies the vrrp interface that triggered the script?

Kind regards,
Ton
by tonny
Tue Sep 07, 2021 2:54 pm
Forum: General
Topic: mynetname.net is suspended
Replies: 80
Views: 45171

Re: mynetname.net is suspended

Sure, i'm not happy about DDNS not functioning, but the way I see it, it's an free/courtesy service from Mikrotik and FAIK the first outage since the feature is introduced . (Note: I use my own ddns provider and was not impacted) That is the way to go if it's business critical, so you have control o...
by tonny
Tue Sep 07, 2021 2:01 pm
Forum: General
Topic: mynetname.net is suspended
Replies: 80
Views: 45171

Re: mynetname.net is suspended

yes, something like that. and now registrar needs actual proof that malware is removed :) Thnx for the update. Please let the world know if it was a false positive or that there really was malware (if so which) We will all benefit from everyone being open about it so we can check our equipment and ...
by tonny
Tue Sep 07, 2021 12:09 pm
Forum: General
Topic: mynetname.net is suspended
Replies: 80
Views: 45171

Re: mynetname.net is suspended

Does anybody have an ETA?
see above .... they chosen twitter to inform us about it......my guess if there is any, then it would mentioned there
(though I would agree it's odd since this forum is on their website below 'support' as where twitter isn't)
by tonny
Tue Sep 07, 2021 11:25 am
Forum: General
Topic: mynetname.net is suspended
Replies: 80
Views: 45171

Re: mynetname.net is suspended

no idea, but I bet they are aware of it and got a great many tickets on this one
would been nice if they put out a statement. even a short one will do
by tonny
Fri Apr 23, 2021 2:08 pm
Forum: General
Topic: router source ip for upgrade
Replies: 2
Views: 633

Re: router source ip for upgrade

Hi,

Thnx for the suggestion. It would however impact all subnets behind it, but .... since i need it to pick ROS software from a specific host the idea worked because that's that one hosts sole purpose.
(think it would would be neat if you could specify the source ip to use for upgrades)

Thnx
by tonny
Wed Apr 21, 2021 12:38 pm
Forum: General
Topic: router source ip for upgrade
Replies: 2
Views: 633

router source ip for upgrade

Hi, I got an RB4011 which got an peer to peer connection for uplink. The default route point at the remote peer. This works fine for the internal subnets. Checking for a upgrade however does not. The RBseems to selects its P2P address to do so for it lies in the default route subnet, but the remote ...
by tonny
Thu Jan 14, 2021 4:26 pm
Forum: General
Topic: portknock
Replies: 5
Views: 904

Re: portknock

Thnx. At least I did not overlook some "easy" answer.
So, probably scripting it will be
by tonny
Wed Jan 13, 2021 7:10 pm
Forum: General
Topic: portknock
Replies: 5
Views: 904

portknock

Hi, I use a VPN service, and based upon a named list in "ip firewall address-list" certain clients go through the tunnel. Just because sometimes it needs to, sometimes it don't. For the wife to easy switch to, I told her to browse to the router on a port. That puts her laptop on that list ...
by tonny
Fri Dec 25, 2020 11:46 am
Forum: General
Topic: proton vpn seems not fully functional
Replies: 2
Views: 1438

Re: proton vpn seems not fully functional

Thnx! Indeed I overlooked MSS Added these two, now all goes as plenned /ip firewall mangle add action=change-mss chain=forward new-mss=1200 passthrough=yes protocol=tcp src-address-list=via_proton_vpn tcp-flags=syn tcp-mss=!0-1360 /ip firewall mangle add action=change-mss chain=forward dst-address-l...
by tonny
Thu Dec 24, 2020 4:04 pm
Forum: General
Topic: proton vpn seems not fully functional
Replies: 2
Views: 1438

proton vpn seems not fully functional

Hi, I am testing now with a (free)proton vpn account. When I use it as open vpn client on the kodi machine itself, it works fine. Then I disabled openvpn and configured the ipsec on a routeros. The vpn comes up, in firefox on the kodi machine i see the public IP indeed changed to the VPN exit point....
by tonny
Thu May 28, 2020 12:16 pm
Forum: General
Topic: implicit firewal rules
Replies: 4
Views: 1635

Re: implicit firewal rules

I don't think so. To my knowledge, it's best practice to have the first rule to be allow access from you management network. The firewall is statefull, so once logged-in you can work on your FW rules without issues or losing contact (you can even turn on safe mode). Just open a second session to tes...
by tonny
Thu May 28, 2020 11:55 am
Forum: General
Topic: implicit firewal rules
Replies: 4
Views: 1635

implicit firewal rules

Hi, When having a routeros without any firewall rules at all, there is an implicit allow, which I think is okay. But, IF one create an firewall rule to allow specific traffic, the implicit allow does not turn itself into an implicit drop. So, unless there is a "drop all" at the end, none o...
by tonny
Sun Nov 24, 2019 12:43 pm
Forum: Forwarding Protocols
Topic: ospf filter public nets [SOLVED]
Replies: 2
Views: 9523

Re: ospf filter public nets [SOLVED]

Thnx, Think I missed prefix-length as a range

will be testing tomorrow ;)

update: now I know i missed specifying the prefix as a range. Works perfectly now.
by tonny
Mon Nov 18, 2019 9:39 pm
Forum: The Dude
Topic: error: missing packages
Replies: 1
Views: 2981

error: missing packages

Hi, When I try to upgrade router(s) from the dude, I get an error on missing packages https://i85.photobucket.com/albums/k53/944317/it%20forum/error_zpsnflznno1.jpg comparing the installed packages (router) and available (dude) it matches https://i85.photobucket.com/albums/k53/944317/it%20forum/file...
by tonny
Fri Nov 15, 2019 4:40 pm
Forum: Forwarding Protocols
Topic: ospf filter public nets [SOLVED]
Replies: 2
Views: 9523

ospf filter public nets [SOLVED]

Hi, We use OSPF to distribute connected and static routes, which works pretty well. All networks varies between /22 and /27 and are both, public and private nets. I't nice to distribute connected nets, because it greatly cuts down maintenance. The thing is .... we don't want the public nets be be di...
by tonny
Thu Oct 31, 2019 4:45 pm
Forum: Forwarding Protocols
Topic: manipulate ospf equal cost multi-path
Replies: 3
Views: 4295

Re: manipulate ospf equal cost multi-path

Thnx for the suggestion. By coincidence, I found another solution that does work too

/routing ospf instance add metric-other-ospf=21 
    
by tonny
Thu Oct 31, 2019 3:23 pm
Forum: Forwarding Protocols
Topic: manipulate ospf equal cost multi-path
Replies: 3
Views: 4295

manipulate ospf equal cost multi-path

Hi, I have a setup with multiple routers in two OSPF area's, which basicly runs fine. Simplified it looks like this : +---------+ | +---+ rtr-B1 +----+ +---------+ | +---------+ | Net-A -------+ rtr-A +-----+ | +---------+ | +---------+ | +---+ rtr-B2 +----+ +---------+ | | +---------+ +----+ rtr-C1...
by tonny
Thu Oct 17, 2019 7:29 pm
Forum: Forwarding Protocols
Topic: Reversed route injection
Replies: 0
Views: 2270

Reversed route injection

Hi, We have a number of routers which are interconnected and share routing info over OSPF which works great. Most -if not all- take vpn tunnels over IPSEC. Some routers are Cisco ASA's and even thought I hate to say it, they have one great feature: "Reversed route injection". That makes su...
by tonny
Thu Aug 22, 2019 1:54 pm
Forum: General
Topic: Trafficflow & FW drops
Replies: 0
Views: 744

Trafficflow & FW drops

Hi,
I configured traficflow and it all works well. However, one thing I'd like to see in there too, are de FW drops.
Yes....it's contradictory, when it's dropped there is no flow to report. Any ideas to make drops visible in netflow analyzers?
Thnx.
Tonny
by tonny
Thu Sep 20, 2018 3:37 pm
Forum: General
Topic: multiple DHCP client
Replies: 3
Views: 1347

Re: multiple DHCP client

Thnx!! I like that trick .... it does it nicely and each vrrp instance is in interface so all one can wish for :D
by tonny
Wed Sep 19, 2018 4:38 pm
Forum: General
Topic: multiple DHCP client
Replies: 3
Views: 1347

multiple DHCP client

Hi, My ISP gives me up to 5 (public) IP's, but all based upon DHCP. I want to use at least 3 inbound (using DDNS), outbound office and outbound guests. Off course you can have only one dhcp client on an interface. Any other idea's then using multiple interfaces? (Yes, i tried vlan 1 attached to the ...
by tonny
Sun Sep 02, 2018 1:36 pm
Forum: General
Topic: abort on existing packages
Replies: 1
Views: 555

abort on existing packages

I upgraded my 2011UiAS-2HnD to 6.42.7 Afterwards i wanted to add extra packages. I just dragged the lot into winbox and rebooted. After reboot, not all packages where installed. Log says omitting dhcp package since it exist. After i deleted the dhcp package file out of the files folder and rebooted,...
by tonny
Thu May 31, 2018 9:43 am
Forum: General
Topic: SMS without data subscription
Replies: 3
Views: 1263

Re: SMS without data subscription

Thnx for a little background on how gsm works. I sent the question (and rif file) to support indeed.
by tonny
Tue May 29, 2018 11:09 am
Forum: General
Topic: Upgrade RB2011
Replies: 2
Views: 1078

Re: Upgrade RB2011

I've had some issues if you want to connect this low-level with an RB while having a virtualbox network adapter enabled. So, if you have oracle virtualbox installed, disable them and retry
by tonny
Tue May 29, 2018 9:58 am
Forum: General
Topic: SMS without data subscription
Replies: 3
Views: 1263

SMS without data subscription

Hi, We have an wAP-lte(kit) which we want to send out some alert SMS notifications. Since it's only intended to send SMS, they provided me with a simcard with only an SMS bundle on it. I tested it first in a cellphone, and that works well. In the wAP however, it will not. The log gives me : 08:41:42...
by tonny
Fri May 25, 2018 12:43 pm
Forum: General
Topic: Feature Request: TACACS/TACACS+
Replies: 56
Views: 26456

Re: Feature Request: TACACS/TACACS+

+1 for TACACS/TACACS+ support
by tonny
Mon Sep 18, 2017 3:45 pm
Forum: General
Topic: interface graph refresh
Replies: 0
Views: 738

interface graph refresh

Ho, can we get
<meta http-equiv="refresh" content="300">
in the graphings ( http://mydevice/graphs/iface/etherx ) ? we have a customer who likes to put it up on a wallboard

Kind regards
Tonny
by tonny
Tue Aug 29, 2017 8:27 pm
Forum: The Dude
Topic: Dude v6/v7 - Feature request list
Replies: 109
Views: 154815

Re: Feature request list for Dude v6

scheduled device upgrades
scheduled config backups
by tonny
Fri Aug 18, 2017 4:59 pm
Forum: Wireless Networking
Topic: 1 WiFi Device as Station and AP Bridge
Replies: 9
Views: 5215

Re: 1 WiFi Device as Station and AP Bridge

Thanks for the suggestion but reversing it and do manual frequency etc is not the way i would like it to use or work. I'll stick to dual radio
Especially for my main application later on. I will be re-using an RB433 for which i have radios to spare.
by tonny
Fri Aug 18, 2017 10:32 am
Forum: Wireless Networking
Topic: 1 WiFi Device as Station and AP Bridge
Replies: 9
Views: 5215

Re: 1 WiFi Device as Station and AP Bridge

Got it all up and running nicly, but after some real usage i found a flaw in the design The connection list only works on the "real" wlan interface in station mode. The virtual wlan interface (in AP mode where i connect my devices to) will not work unless real wlan is running, which requir...
by tonny
Wed Aug 16, 2017 11:41 am
Forum: The Dude
Topic: Dude v6/v7 - Feature request list
Replies: 109
Views: 154815

Re: Feature request list for Dude v6

I'd like to have import/export between winbox ( Addresses.CDB / addresses.WBX ) and Dude. We have multiple engineers installing devices. Every once in a while we merge the winbox addresses so we all know each customer box(es). For firmware updates dude will be more effective. Also access to multiple...
by tonny
Mon Aug 14, 2017 9:32 pm
Forum: Scripting
Topic: security profile & connectionlist
Replies: 1
Views: 1285

security profile & connectionlist

Hi, I am carrying an mAP as my personal ap which also builds a encrypted tunnel to my home router. For internet access the mAP is using a set of security profiles and a connectionlist to connect itself to a known available WiFi network. Every now and then i need to add a profile and connection. I wa...
by tonny
Thu Aug 03, 2017 9:19 pm
Forum: Wireless Networking
Topic: mAP auto connect to (known) available network
Replies: 3
Views: 1527

Re: mAP auto connect to (known) available network

Thanks, that got me going.
Looks like it can't be done on a virtual wlan interface (found that the hard way)
by tonny
Tue Aug 01, 2017 9:10 pm
Forum: Wireless Networking
Topic: 1 WiFi Device as Station and AP Bridge
Replies: 9
Views: 5215

Re: 1 WiFi Device as Station and AP Bridge

do you mind sharing the config ?
by tonny
Tue Aug 01, 2017 8:41 pm
Forum: Wireless Networking
Topic: mAP auto connect to (known) available network
Replies: 3
Views: 1527

mAP auto connect to (known) available network

Hi, I often have got an mAP with me. I make it connect to an available WiFi network, and have my devices connected via the two eth ports. However, i want to get rid of each time entering the ssid/psk. I would like to have a list of SSIS/psk pairs in the mAP and the mAP connect automatically to an av...
by tonny
Tue Mar 28, 2017 10:00 am
Forum: General
Topic: BW test tool
Replies: 3
Views: 1969

Re: BW test tool

Thnx, maybe that explains why i never get above 2Gb ..... i'll try traffic-gen
by tonny
Mon Mar 27, 2017 10:38 am
Forum: General
Topic: BW test tool
Replies: 3
Views: 1969

BW test tool

Hi, we have got 2 CCR1009-8G-1S-1S+ connected with 10Gb fiber modules. We reset the routers and only put an IP on each SFP+ interface.
UDP bandwithtest never gets above 2Gb. Any suggestions on how to test Bw up to 10Gb ??
by tonny
Thu Mar 09, 2017 10:12 am
Forum: Scripting
Topic: joblist fills with scheduled job
Replies: 0
Views: 722

joblist fills with scheduled job

Hi, I have a script that cycles the sniffer every 10 minutes which looks like this : /system scheduler add interval=10m name=Dumpcap on-event=":local timestamp [/system clock get date] \r\ \n:local DAY [ :pick \$timestamp 4 6 ]\r\ \n:local timestamp [/system clock get time] \r\ \n:local HR [ :p...
by tonny
Wed Feb 01, 2017 1:26 pm
Forum: The Dude
Topic: Passing configuration from dude to Mikrotik devices
Replies: 1
Views: 996

Re: Passing configuration from dude to Mikrotik devices

i've just logged in to look for exact the same thing. I've managed the software updates which is nice, but indeed, i would like to use the dude for config changes as well. Going over 108 devices for each and every change is not funny, and instead of writing scripts that simulates console login and t...
by tonny
Wed Dec 21, 2016 10:15 am
Forum: General
Topic: VRRP adresses
Replies: 3
Views: 1007

Re: VRRP adresses

after some testing ..... the value running does not represent the fact the vrrp is enabled, but represents master (1) of backup (0)
by tonny
Wed Dec 21, 2016 9:53 am
Forum: General
Topic: VRRP adresses
Replies: 3
Views: 1007

Re: VRRP adresses

@Sob, thanks, indeed it works.

Does anybody know by chance how to test the VRRP state in mikrotik script language ? I would like to doe something like :
if "vrrp_1_state = backup" then {
if "vrrp_2_state = master" then {
}
}
by tonny
Mon Dec 19, 2016 9:06 pm
Forum: General
Topic: winbox for ubuntu
Replies: 37
Views: 51400

Re: winbox for ubuntu

native winbox for Ubuntu/linux
+1
by tonny
Mon Dec 19, 2016 8:46 pm
Forum: General
Topic: VRRP adresses
Replies: 3
Views: 1007

VRRP adresses

Hi, In all VRRP examples you see the VRRP address in the same subnet as the routers individual IP address. But is that mandatory ? For the connection to an external party, a /30 subnet is used, so i don't have addresses to do so. Is the config below a valid solution to get around that ? [Router 1] /...
by tonny
Mon Jul 11, 2016 10:33 am
Forum: General
Topic: new nic on i386
Replies: 0
Views: 707

new nic on i386

Hi,

We have installed the i386 router o/s (lic. level 4) as virtual machine which works fine. However, we added new networkcards, but they don't show up in winbox not even after reboot

Any suggestions ?
Thnx, Tonny
by tonny
Fri Mar 25, 2016 3:45 pm
Forum: General
Topic: win10 mac-telnet
Replies: 4
Views: 1696

Re: win10 mac-telnet

a bit of fiddling with the bindings (ethernet as first card), disable virtualbox and tab network cards ....
can get it to work when really needed but still has me puzzled
by tonny
Sun Jan 24, 2016 5:35 pm
Forum: General
Topic: win10 mac-telnet
Replies: 4
Views: 1696

win10 mac-telnet

Hi,
After "upgrade" to win10 it seems i can no longer use the mac-telnet to mikrotik. I asked someone else who recently switched to win10 and he has the same issue. Any sugesstions ho to fix that ?
( I would expect something you need to tweak in powershell :? )
Thnx,
by tonny
Mon Oct 19, 2015 10:28 am
Forum: Forwarding Protocols
Topic: RIP route consolidation
Replies: 7
Views: 2954

Re: RIP route consolidation

Thanks, i thought along the same lines, and I tried is again with your suggestions, but ..... nope still no route summary as i would like to see it :?
by tonny
Fri Oct 09, 2015 11:03 am
Forum: Forwarding Protocols
Topic: RIP route consolidation
Replies: 7
Views: 2954

RIP route consolidation

Hi, We've created a network of 50 (and growing) Mikrotik routers. Each router has 3 local networks with subnets 10.x.10.y /24 10.x.60.y /24 10.x.80.y /24 where x represents the location number and y is assigned by dhcp in the mikrotik. All mikrotik's can see each other via the wan interface using 17...