Community discussions

Search found 191 matches

by millenium7
Wed Aug 21, 2019 7:31 am
Forum: Scripting
Topic: Triggered execution? Interface up/down etc
Replies: 5
Views: 529

Re: Triggered execution? Interface up/down etc

Yep works perfectly, thanks
by millenium7
Tue Aug 20, 2019 1:57 pm
Forum: Scripting
Topic: Triggered execution? Interface up/down etc
Replies: 5
Views: 529

Re: Triggered execution? Interface up/down etc

Ah maybe it does work then. I'll lab it up tomorrow and see how it goes

Nothing for ethernet though I presume?
by millenium7
Tue Aug 20, 2019 9:20 am
Forum: General
Topic: Hotspot and HTTPS? What solutions?
Replies: 44
Views: 3804

Re: Hotspot and HTTPS? What solutions?

Like said above, you should not be typing anything. Computers and phones have hotspot detection But as I keep saying, I want some actual information on this. Not just 'it should work' HOW does it work? I would like information on how all devices detect hotspot in the first place. Not just a brief o...
by millenium7
Tue Aug 20, 2019 9:12 am
Forum: Scripting
Topic: Triggered execution? Interface up/down etc
Replies: 5
Views: 529

Triggered execution? Interface up/down etc

Is there a way to have scripts run on a triggered event rather than by scheduler? In particular i'm looking for a way to run a script when an interface goes up or down I can see this can be done on VRRP or PPPoE servers (via profile) but I actually need an event to run when the PPPoE Client interfac...
by millenium7
Tue Aug 20, 2019 6:53 am
Forum: General
Topic: Hotspot and HTTPS? What solutions?
Replies: 44
Views: 3804

Re: Hotspot and HTTPS? What solutions?

Here's a list of domains that devices check. I have no idea if this list is totally accurate and if its missing any (can't see a post date) but its a start https://success.tanaza.com/s/article/How-Automatic-Detection-of-Captive-Portal-works It's all well and good saying what should or shouldn't be d...
by millenium7
Sat Aug 17, 2019 10:21 am
Forum: General
Topic: Hotspot and HTTPS? What solutions?
Replies: 44
Views: 3804

Re: Hotspot and HTTPS? What solutions?

My main focus here is not in actually trying to redirect HTTPS, I really honestly don't give a flying stuff about that The real issue is simply when hotspot detection fails, the user gets no prompt or no notification in any way that they need to first 'sign in' and the normal behavior is they just o...
by millenium7
Fri Aug 16, 2019 4:25 pm
Forum: General
Topic: Is the FT4232HL serial chipset supported?
Replies: 4
Views: 421

Re: Is the FT4232HL serial chipset supported?

Yeah its specific to that chip The freezing happens every time a channel is opened. And it can also be slow to be recognised and show up under system ports, sometimes up to 10+ minutes But it does work and is at least $1000 cheaper than a dedicated solution. Good enough for a worst case scenario Tha...
by millenium7
Fri Aug 16, 2019 11:14 am
Forum: General
Topic: Hotspot and HTTPS? What solutions?
Replies: 44
Views: 3804

Re: Hotspot and HTTPS? What solutions?

If the hotspot server is a mikrotik router, how do you accomplish this? Sorry, no idea, but doing this for long time already, on openwrt-based devices. Which are much better suited for hotspots with "advanced features", like this one. Any recommendations for a package we can put on a low cost or lo...
by millenium7
Fri Aug 16, 2019 11:08 am
Forum: General
Topic: Hotspot and HTTPS? What solutions?
Replies: 44
Views: 3804

Re: Hotspot and HTTPS? What solutions?

In part, HTTPS exists exactly to prevent such silent interception of web browsing. Doesn't change the fact that other hotspot devices have far, far better hotspot handling than MikroTik. It seems to 'just work' far more often. Whereas we constantly get the odd device that just doesn't play ball wit...
by millenium7
Fri Aug 16, 2019 9:11 am
Forum: General
Topic: Hotspot and HTTPS? What solutions?
Replies: 44
Views: 3804

Re: Hotspot and HTTPS? What solutions?

Make sure your hotspot is intercepting requests to hotspot-detection services that any modern OS has. This includes HTTP requests to URLs such as http://gstatic.com/generate_204 and intercepting all DNS requests eg for invalid / random hostnames like "xgjaiobman" If the hotspot server is a mikrotik...
by millenium7
Fri Aug 16, 2019 8:22 am
Forum: RouterOS v6 RC and v7 BETA
Topic: Mikrotik: Change the default Powerbox config!
Replies: 16
Views: 1286

Re: Mikrotik: Change the default Powerbox config!

Mikrotik devices are not always used as expected by many customers. So they try to make the safest configuration possible for customers. I have seen devices just plugged in and not configured, with blank admin password. Last power box i saw like that was at a hotel to power their access points. The...
by millenium7
Fri Aug 16, 2019 7:38 am
Forum: RouterOS v6 RC and v7 BETA
Topic: Feature Request: SNMP-GET output to variable
Replies: 5
Views: 570

Re: Feature Request: SNMP-GET output to variable

Bump I hope a MikroTik rep sees this and puts it on the drawing board. Would help a lot with the ability to read data off other devices Our primary use case is pre-emptive route failover but I can think of a lot of other use cases i.e. emailing to alert of high temperature of devices that don't supp...
by millenium7
Fri Aug 16, 2019 6:57 am
Forum: General
Topic: Is the FT4232HL serial chipset supported?
Replies: 4
Views: 421

Re: Is the FT4232HL serial chipset supported?

Thought i'd post an update to this. The answer is yes its supported (StarTech USB to 4 port RS232 adapter incase link dies) nothing more required other than just plugging it in Serial sessions can be opened via the 'system serial-terminal port=usb1 channel=' command, channel being 0-3 for ports 1-4 ...
by millenium7
Thu Aug 15, 2019 9:03 am
Forum: General
Topic: 'ip ssh forwarding' any instance where it'll enable itself?
Replies: 1
Views: 200

'ip ssh forwarding' any instance where it'll enable itself?

Are there any instances where /ip ssh set forwarding-enabled=remote would be set automatically? I.e. firmware update etc
I'm seeing this has been turned on for some routers. I'm thinking they may be compromised and this is being used as an attack mechanism
by millenium7
Mon Jul 29, 2019 1:28 am
Forum: Forwarding Protocols
Topic: WISP OSPF Multi Area optimum configuration
Replies: 10
Views: 1036

Re: WISP OSPF Multi Area optimum configuration

MTU is end to end. If the customers session is 1480 they can never send or receive anything larger without fragmentation anyway. There's no reason you can't use 1500 byte PPPoE sessions though, as long as the equipment to the customer supports large enough L2MTU. You set your PPPoE server to Max-MTU...
by millenium7
Sun Jul 28, 2019 11:27 am
Forum: Forwarding Protocols
Topic: WISP OSPF Multi Area optimum configuration
Replies: 10
Views: 1036

Re: WISP OSPF Multi Area optimum configuration

Late response and I'm on a phone so I won't quote specific sections of text but.... PPPoE is staying in place in our network. Because Mikrotik doesnt support /32 DHCP address assignment for customers properly. Or rather the actual assignment of the address works ok but the router doesn't add a route...
by millenium7
Thu Jul 25, 2019 12:46 pm
Forum: Forwarding Protocols
Topic: IS-IS
Replies: 44
Views: 13249

Re: IS-IS

OSPF suuuuucks for wireless networks, company acquisitions and companies with rapid expansion. It's ok for university campuses or businesses that generally don't change much with a fairly fixed topology, but not for service providers or many modern companies that expand in unpredictable ways Having ...
by millenium7
Fri Jul 19, 2019 7:51 am
Forum: Wireless Networking
Topic: MikroTik AP and Mimosa SM's. No WDS? Workaround?
Replies: 0
Views: 246

MikroTik AP and Mimosa SM's. No WDS? Workaround?

Is there a workaround I can implement for this? We have a network segment that is Mimosa with an A5 access point and C5 radio's. Behind all the C5 radio's are switches and then customers who use PPPoE The Mimosa's have been a constant pain in the ass and the biggest one is they don't even allow half...
by millenium7
Fri Jul 12, 2019 4:24 pm
Forum: General
Topic: CRS3xx hardware offload with split-horizon? or similar setup?
Replies: 6
Views: 510

Re: CRS3xx hardware offload with split-horizon? or similar setup?

Must be a bug then. Switch is a CRS317 running 6.44.3 so its a recent firmware. Definitely does not show up in a normal /export
It doesn't even show if I do a '/interface ethernet switch export'
I have to specifically do '/interface ethernet switch port export'
by millenium7
Fri Jul 12, 2019 2:43 pm
Forum: General
Topic: CRS3xx hardware offload with split-horizon? or similar setup?
Replies: 6
Views: 510

Re: CRS3xx hardware offload with split-horizon? or similar setup?

Yeah I managed to set it, wasn't messy

Thing I really don't like though is switch commands don't show up in a /export
by millenium7
Thu Jul 11, 2019 9:54 am
Forum: General
Topic: CRS3xx hardware offload with split-horizon? or similar setup?
Replies: 6
Views: 510

CRS3xx hardware offload with split-horizon? or similar setup?

Setting a horizon value on a bridge port disables hardware offload on that port, so this isn't an option But I have a setup that requires ports to be isolated from each other to prevent any accidental loop and reduce unnecessary broadcast traffic How else can it be achieved without lots of messy fil...
by millenium7
Thu Jul 04, 2019 9:26 am
Forum: Forwarding Protocols
Topic: WISP OSPF Multi Area optimum configuration
Replies: 10
Views: 1036

Re: WISP OSPF Multi Area optimum configuration

As present I don't have any PTP failover links ! So not sure if should still use BFD! Unfortunately MikroTik just isn't as stable as Cisco/Juniper etc. In an ideal world BFD would just work flawlessly all the time and then its an an easy answer of enable it everywhere in the network Sometimes its n...
by millenium7
Thu Jul 04, 2019 4:29 am
Forum: General
Topic: QoS prioritization only, without shaping?
Replies: 26
Views: 1328

Re: QoS prioritization only, without shaping?

Have started getting setup for this but its quite a long process adding VLAN tags to all router links - especially when there's a switch like a Netonix in between as their default policy is drop all unknown VLAN's, takes a fair bit more time per link to change But this is also a good opportunity to ...
by millenium7
Wed Jul 03, 2019 7:00 am
Forum: Forwarding Protocols
Topic: WISP OSPF Multi Area optimum configuration
Replies: 10
Views: 1036

Re: WISP OSPF Multi Area optimum configuration

So you're carrying the VLAN all the way through the network? Been there, seen that, it's really really bad and not scalable. I would make getting extended bridges out of your network a top priority, as it becomes much harder to remove the bigger you get. VLAN's shouldn't go any further than the dire...
by millenium7
Tue Jul 02, 2019 3:06 am
Forum: Scripting
Topic: Script to disable Wlan when no user are logged on
Replies: 8
Views: 714

Re: Script to disable Wlan when no user are logged on

Hello, I am well on my way to make our MikroTiks environmentally friendly. I have reduced their power output, assigned the mode button to switch wlan on or off, and now I would like the router to disable wlan when all users have disconnected from wlan. Have you done the calculations to determine ho...
by millenium7
Tue Jul 02, 2019 2:38 am
Forum: Forwarding Protocols
Topic: ❗️❓ UNSTABLE VPLS on Wireless networks
Replies: 13
Views: 993

Re: ❗️❓ UNSTABLE VPLS on Wireless networks

Just regarding NBMA OSPF type. I would advise against it. I've had issues with NBMA being unreliable for no apparent reason I've found the best option on MikroTik if you have a point-to-multipoint setup is to instead create separate VLAN interfaces (1 for each neighboring router) and then use the po...
by millenium7
Tue Jul 02, 2019 2:31 am
Forum: Forwarding Protocols
Topic: OSPF Loopback + MPLS Loopback
Replies: 7
Views: 1063

Re: OSPF Loopback + MPLS Loopback

Just curious asking why on our network that a previous techie would create both OSPF and MPLS loopbacks on routers each with there own ip range ?
Cause he was a massive goose?
by millenium7
Tue Jul 02, 2019 2:28 am
Forum: Forwarding Protocols
Topic: WISP OSPF Multi Area optimum configuration
Replies: 10
Views: 1036

Re: WISP OSPF Multi Area optimum configuration

Need more info on the topology For instance are PPPoE sessions terminated closest to the customer, or are they all terminated at a central PPPoE concentrator? If the latter are you using VPLS tunnels (or something else like EoIP?) Do you have BGP running internally in the network? These answers chan...
by millenium7
Tue Jun 25, 2019 2:05 am
Forum: RouterOS v6 RC and v7 BETA
Topic: Make OSPF 'adjacency' display by default in neighbors
Replies: 0
Views: 240

Make OSPF 'adjacency' display by default in neighbors

I don't know why this wouldn't have been the default since like ROS v1.0 Can you change it so that by default in the neighbors tab of OSPF it shows the adjacency time column? That's right in your face on any other routing platform when doing a "show ip neighbor" and is a really useful bit of informa...
by millenium7
Mon Jun 24, 2019 8:16 am
Forum: RouterBOARD hardware
Topic: CCR1036-8G-2S+ - SFP+ port stops transmitting data?
Replies: 7
Views: 808

Re: CCR1036-8G-2S+ - SFP+ port stops transmitting data?

I setup a lab using 1 of the existing routers, leaving config exactly the same. Used other devices to simulate switches and other routers Setup BGP+OSPF+MPLS routers as good as I can but obviously not as big as the actual network. Added 200 PPPoE sessions with traffic generator across several router...
by millenium7
Thu Jun 20, 2019 4:49 am
Forum: Forwarding Protocols
Topic: OSPF 60GHz and 5GHz with two hex
Replies: 5
Views: 733

Re: OSPF 60GHz and 5GHz

The way I do this in our network is first make sure you aren't bridging the 60ghz and 5ghz together. You want to use routing Set IP addresses on 60ghz and 5ghz links in different subnets i.e. 10.0.0.0/29 for 60ghz and 10.0.1.0/29 for 5ghz Set up OSPF for both networks. Use type point-to-point (most ...
by millenium7
Thu Jun 20, 2019 4:16 am
Forum: RouterOS v7
Topic: Feature Request: container host (e. g. Docker host) instead of MetaROUTER
Replies: 2
Views: 1247

Re: Feature Request: container host (e. g. Docker host) instead of MetaROUTER

This would be great if we could spin up small servers running on the RouterBoard hardware i.e. network monitoring collectors

However the downside is massive potential for security holes at the hardware and kernel level so thats why I think they would never implement it
by millenium7
Tue Jun 18, 2019 12:48 pm
Forum: The Dude
Topic: The Dude IS Dead, really, isn't it?
Replies: 30
Views: 4842

Re: The Dude IS Dead, really, isn't it?

NetXMS is IMO the very best 'free' platform out there, by quite a long margin. But its the best 'theoretically' That's the problem with it. It's not the best out of the box, it actually is really difficult to get it to do some pretty basic things like 'just start monitoring bandwidth on all interfac...
by millenium7
Tue Jun 18, 2019 12:34 pm
Forum: RouterBOARD hardware
Topic: CCR1036-8G-2S+ - SFP+ port stops transmitting data?
Replies: 7
Views: 808

Re: CCR1036-8G-2S+ - SFP+ port stops transmitting data?

We have this problem, but for us it happens every 30-90 days or so. It last happened 57 days ago. We have a ping watchdog to reboot the router when this happens. Disabling and re-enabling the interface might fix it too. Same CCR1036-8G-2S+, first generation. We have two CCR's connected to each othe...
by millenium7
Tue Jun 18, 2019 11:51 am
Forum: General
Topic: QoS prioritization only, without shaping?
Replies: 26
Views: 1328

Re: QoS prioritization only, without shaping?

We only do this queue tree setup on links from 3rd party connectivity vendors where they guarantee us a certain bandwidth amount where we are at risk of actually maxing out that amount. It doesn't make sense to set up these queue trees and packet marks if the router is only connected to radio links...
by millenium7
Tue Jun 18, 2019 6:04 am
Forum: RouterOS v6 RC and v7 BETA
Topic: Suggestion: Completely virtual router based on two physical routers
Replies: 81
Views: 12833

Re: Suggestion: Completely virtual router based on two physical routers

Just with the default 'disk' action which creates file beginning with 'log.' then the sequence number, then ends in txt i.e. log.0.txt and log.1.txt by default The reason for logging to disk is incase connectivity is lost i.e. interfaces locking up, at least logs would be stored if theres no other w...
by millenium7
Mon Jun 17, 2019 4:06 pm
Forum: General
Topic: CCR SFP interface locking up if OSPF/MPLS enabled
Replies: 0
Views: 187

CCR SFP interface locking up if OSPF/MPLS enabled

Further details are here https://forum.mikrotik.com/viewtopic.php?f=3&t=149273&p=735586#p735586 But the short version is we have plenty of MikroTik routers out there all working fine with OSPF, MPLS and BGP just fine. But the ones in our data center have their SFP+ interfaces partially lock up after...
by millenium7
Mon Jun 17, 2019 3:53 pm
Forum: RouterBOARD hardware
Topic: CCR1036-8G-2S+ - SFP+ port stops transmitting data?
Replies: 7
Views: 808

Re: CCR1036-8G-2S+ - SFP+ port stops transmitting data?

replaced with brand new CCR1016's and the same problem happens! This is caused by either OSPF or MPLS in combination with what's already running (eBGP, iBGP, PPPoE, IPSec). When OSPF+MPLS are disabled it's fine. But when enabling them the network is perfectly stable and looks totally fine for a few ...
by millenium7
Mon Jun 17, 2019 10:08 am
Forum: RouterOS v6 RC and v7 BETA
Topic: Suggestion: Completely virtual router based on two physical routers
Replies: 81
Views: 12833

Re: Suggestion: Completely virtual router based on two physical routers

I noticed the copying of files to be a problem. Is it possible for you to change that in your script to exclude anything beginning with 'log.' ? Reason is I was logging to disk any errors to try and help troubleshoot the issues we were having when we couldn't catch it in time, but when the router re...
by millenium7
Mon Jun 17, 2019 9:57 am
Forum: General
Topic: QoS prioritization only, without shaping?
Replies: 26
Views: 1328

Re: QoS prioritization only, without shaping?

Ok i'm liking this QoS implementaiton, its quite simple to implement and elegant. However couple more questions I've been labbing this just with a couple of routers connected via 100mbit ethernet to first get the queueing correct then i'll test with radio's in between Baseline was just to have no Qo...
by millenium7
Mon Jun 17, 2019 5:55 am
Forum: RouterOS v6 RC and v7 BETA
Topic: Suggestion: Completely virtual router based on two physical routers
Replies: 81
Views: 12833

Re: Suggestion: Completely virtual router based on two physical routers

Ok. As I said I don't think its the script because I can't think of any way to even make an interface do that, even if intentionally trying Good to know the reboots are a normal thing. It was happening more than once a day but knowing that its also caused by 'system history print' answers why becaus...
by millenium7
Mon Jun 17, 2019 5:54 am
Forum: General
Topic: QoS prioritization only, without shaping?
Replies: 26
Views: 1328

Re: QoS prioritization only, without shaping?

Ok but I have heard its best practice to use QoS tags at Layer3 as opposed to Layer2 so why not use DSCP tags instead of CoS?

And does a MikroTik router actually do anything with DSCP tagged packets by default or does it need to configured with mangle or queue's to apply prioritization to traffic?
by millenium7
Mon Jun 17, 2019 5:16 am
Forum: General
Topic: QoS prioritization only, without shaping?
Replies: 26
Views: 1328

Re: QoS prioritization only, without shaping?

The router-router links don't use VLAN's though They just speak to each other on the ethernet link i.e. ether5 on RouterA connects to PTP670 link connects to ether7 on RouterB So using the set priority mangle rule wouldn't do anything? Or would it still tag packets with native VLAN id so that priori...
by millenium7
Mon Jun 17, 2019 3:21 am
Forum: General
Topic: QoS prioritization only, without shaping?
Replies: 26
Views: 1328

Re: QoS prioritization only, without shaping?

Ok so i'm a bit confused as to which method to use here. So lets step it back and i'll give a couple of different scenario's that may need different methods Background: We primarily use Cambium radio's but do use some Ubiquiti and a few Mikrotik I'm going to talk about our backbone infrastructure an...
by millenium7
Thu Jun 13, 2019 1:33 pm
Forum: RouterBOARD hardware
Topic: CCR1036-8G-2S+ - SFP+ port stops transmitting data?
Replies: 7
Views: 808

Re: CCR1036-8G-2S+ - SFP+ port stops transmitting data?

Nope, new hardware revision and 6.44.3 still same problem So it's very likely some bug with the hardware or underlying OS that produces no logs and no information to us. As I can't possibly see how you can stop a SFP port from transmitting data no matter what you tried to do via scripting or configu...
by millenium7
Thu Jun 13, 2019 10:22 am
Forum: RouterOS v6 RC and v7 BETA
Topic: Suggestion: Completely virtual router based on two physical routers
Replies: 81
Views: 12833

Re: Suggestion: Completely virtual router based on two physical routers

Do you run this on any routers other than 1009's? I also want to ask if its normal behavior for the standby to regularly reboot? I don't know the exact interval but maybe once every 2 hours? We were running the older version on 6.42.3 and aside from the standby rebooting it did seem to work fine for...
by millenium7
Thu Jun 13, 2019 9:54 am
Forum: RouterBOARD hardware
Topic: CCR1036-8G-2S+ - SFP+ port stops transmitting data?
Replies: 7
Views: 808

Re: CCR1036-8G-2S+ - SFP+ port stops transmitting data?

Cycling interface isn't a solution and for us would still result in an extended outage as this router handles PPPoE connections Have replaced 1x router with the new CCR1036 revision that has dual power supplies and updated both to 6.44.3 including firmware Will report back if it continues to lock up...
by millenium7
Wed Jun 12, 2019 12:02 pm
Forum: RouterBOARD hardware
Topic: CCR1036-8G-2S+ - SFP+ port stops transmitting data?
Replies: 7
Views: 808

CCR1036-8G-2S+ - SFP+ port stops transmitting data?

This has just happened out of the blue. All data is transmitted to/from one of these routers via the SFPPlus1 port (connected with a Direct Attach Cable to a Mikrotik CRS328) I went to site and logged into the router via ethernet/laptop before touching anything and found the port just entirely stopp...
by millenium7
Wed Jun 12, 2019 7:42 am
Forum: General
Topic: QoS prioritization only, without shaping?
Replies: 26
Views: 1328

Re: QoS prioritization only, without shaping?

So for all our routers just add a rule at the top of mangle with passthrough ticked
'set priority'
new priority: from dscp

And that's all thats needed? (Assuming DSCP is already set, otherwise add more mangle rules to set DSCP bits)

No queue's added?
by millenium7
Wed Jun 12, 2019 6:57 am
Forum: General
Topic: QoS prioritization only, without shaping?
Replies: 26
Views: 1328

QoS prioritization only, without shaping?

How is QoS configured on MikroTik for just packet prioritization and no shaping? i.e. just making sure high priority packets that are received immediately get pushed to the front of the queue and transmitted as soon as possible, retransmissions for those packets take priority etc. Not any form of sh...