Community discussions

MikroTik App

Search found 374 matches

  • 1
  • 2
by millenium7
Wed Sep 15, 2021 7:19 am
Forum: Forwarding Protocols
Topic: OSPF Out Filter
Replies: 6
Views: 452

Re: OSPF Out Filter

OSPF has many frustrating issues, this is one of them. All routers in an area need to agree on the routing table, this means you can't filter rules to another router in the same area. The rule is there for a reason but unfortunately it's just not suitable in many modern dynamically expanding network...
by millenium7
Mon Sep 13, 2021 1:51 pm
Forum: Forwarding Protocols
Topic: MPLS - Fast reroute. When?
Replies: 25
Views: 9488

Re: MPLS - Fast reroute. When?

Whilst we wait, how are others dealing with quick fail-over? Poorly In our case its a routed network between almost all links. And on the ones with multiple links thats where we use BFD (as BFD is buggy on mikrotik and not entirely reliable) However this still isn't great because its only a hop-to-...
by millenium7
Mon Sep 13, 2021 1:35 pm
Forum: Forwarding Protocols
Topic: /30 with OSPF Network
Replies: 4
Views: 476

Re: /30 with OSPF Network

Are you assigning /30 to customers because you want to give them 4 public IP addresses? Or because you want to assign them just 1 public IP address and you are using the other 3 as network/broadcast/gateway addresses? i.e. wasting 3 Because if you are doing the latter, you don't need to. You are jus...
by millenium7
Mon Sep 13, 2021 5:27 am
Forum: Forwarding Protocols
Topic: /30 with OSPF Network
Replies: 4
Views: 476

Re: /30 with OSPF Network

If I understand correctly, you want to assign both a private IP i.e. 10.0.0.6, as well as additional IP addresses? You can assign additional IP's with additional RADIUS options. It depends if your system supports this or not (Splynx for instance does, you can assign as many IP addresses to a single ...
by millenium7
Mon Sep 13, 2021 4:27 am
Forum: RouterBOARD hardware
Topic: NetPower 16p.... Rubbish PoE design. Workarounds?
Replies: 9
Views: 792

Re: NetPower 16p.... Rubbish PoE design. Workarounds?

Don't need to run all 16 ports no. I'm fully aware of current limitations However current design is stupid. Ideally this device should support DC jack input as well as PoE-In with voltage switching Since it doesn't do the latter, it should at least have 24v-in on Ether1 and 48v-in on Ether2 (ideally...
by millenium7
Mon Sep 13, 2021 2:35 am
Forum: RouterBOARD hardware
Topic: NetPower 16p.... Rubbish PoE design. Workarounds?
Replies: 9
Views: 792

NetPower 16p.... Rubbish PoE design. Workarounds?

I can't actually wrap my head around the design philosophy of this design, it just seems so incredibly......... rubbish.... many known issues such as non isolated ground, no 24/48v switching capability etc Nevertheless we have some in stock and are trying to find a use for them. The main issue is th...
by millenium7
Sat Sep 04, 2021 2:01 am
Forum: Scripting
Topic: RouterOS SNMP Get
Replies: 17
Views: 6861

Re: RouterOS SNMP Get

Outputting to file is still not a great method, it's slow (will likely slow the router down while it waits) and going to wear out the flash memory very quickly when writing often. So it's not suitable for i.e. radio link monitoring every 5 seconds I just don't understand it, it makes me think MikroT...
by millenium7
Thu Sep 02, 2021 3:07 am
Forum: Forwarding Protocols
Topic: Customer and ISP failover not working as expected
Replies: 2
Views: 561

Re: Customer and ISP failover not working as expected

Seemingly the same problem was reported 4 years ago https://forum.mikrotik.com/viewtopic.php?t=119493 MikroTik please implement a feature (even if just in CLI) to override this behavior. It's not like this is a super niche scenario. Having a static route as a backup with OSPF internally is exceeding...
by millenium7
Tue Aug 31, 2021 11:25 am
Forum: Wireless Networking
Topic: Low throughput with 3x Audience
Replies: 20
Views: 1679

Re: Low throughput with 3x Audience

MikroTik wireless performance in general is garbage. It really hasn't improved much at all for years, and has been left in the dust by even very cheap off-the-shelf alternatives Audience is like buying a Ferrari but the handbrake is permanently on. Fantastic hardware but its so incredibly let down b...
by millenium7
Tue Aug 31, 2021 5:44 am
Forum: Forwarding Protocols
Topic: Customer and ISP failover not working as expected
Replies: 2
Views: 561

Re: Customer and ISP failover not working as expected

I've just labbed this and it still happens In essence it's a problem with OSPF. If the source of the route is redistributed (i.e. an external route) then it will not install in the routing table if a route already exists I've tested this with Static, BGP and other OSPF instance routes. If redistribu...
by millenium7
Mon Aug 30, 2021 12:19 pm
Forum: Forwarding Protocols
Topic: Customer and ISP failover not working as expected
Replies: 2
Views: 561

Customer and ISP failover not working as expected

https://i.ibb.co/FKXYQZm/image.png This basic diagram illustrates whats going on. We provide internet for a customer that has 2 sites, those sites are linked and by default both will use the much faster and more reliable primary link. This works perfectly fine Customer routers have OSPF between the...
by millenium7
Mon Aug 30, 2021 5:04 am
Forum: RouterOS v7 BETA
Topic: v7.1rc1 reasonable for production for my usecase?
Replies: 15
Views: 1634

Re: v7.1rc1 reasonable for production for my usecase?

It is completely inadequate, and devoid of any logic, to use "rc" software in production. But it's even worse to use a version (any) that just came out two days ago for something to put into production. Really absurd. (And it goes for anything, not just RouterOS) This sort of broad sweepi...
by millenium7
Tue Aug 24, 2021 2:52 pm
Forum: General
Topic: Urgently need help with strange forwarding issue
Replies: 6
Views: 485

Re: Urgently need help with strange forwarding issue

Sorry yes I see now how it's confusing. 'Customer' in this instance is the company to which we provide the primary ISP service. But we still manage the entire Infrastructure In much the same way an ISP would sell to a business with its main router, yet also manages the internal equipment i.e. switch...
by millenium7
Tue Aug 24, 2021 2:24 pm
Forum: General
Topic: Urgently need help with strange forwarding issue
Replies: 6
Views: 485

Re: Urgently need help with strange forwarding issue

I'll draw up a diagram tomorrow that explains better But no, the DSLAM exists between all customers and the RB3011. The 3011 is the 'internet gateway's or essentially just 'the router' in most organisations and the DSLAM is the switch. All VDSL routers behind it are acting as their own router (so do...
by millenium7
Tue Aug 24, 2021 5:30 am
Forum: General
Topic: Urgently need help with strange forwarding issue
Replies: 6
Views: 485

Urgently need help with strange forwarding issue

We've got an issue popping up thats causing a lot of grief and is seemingly unsolvable We've got VDSL2 modems connected to a DSLAM, and the DSLAM connects to a RB3011 (have also used a HEX) This is a common setup where nothing is different across almost a hundred DSLAM's that we've installed, there ...
by millenium7
Thu Jul 15, 2021 11:47 am
Forum: Forwarding Protocols
Topic: ospf nbma
Replies: 6
Views: 1129

Re: ospf nbma

It depends how OSPF is configured since you can set the dead timer. This just means if the hello packets havn't been received, the neighbor is considered down It could be that 99.99% of traffic gets through just fine but it just so happens to be that the 0.01% were OSPF hello packets, lose enough in...
by millenium7
Wed Jul 14, 2021 6:26 am
Forum: Forwarding Protocols
Topic: OSPF second area
Replies: 2
Views: 1202

Re: OSPF second area

What you are posting violates the operational rules of OSPF and will not work properly OSPF requires all area's to directly connect to the backbone/Area0 In your example, area 20 is not connected to area 0 You can bend this rule with 'virtual links' to form a tunnel between area0 and area20, however...
by millenium7
Wed Jul 14, 2021 6:15 am
Forum: Forwarding Protocols
Topic: ospf nbma
Replies: 6
Views: 1129

Re: ospf nbma

If you are losing OSPF adjacency its because you are losing packets, there is a link problem. You mention this is happening during weather well......... theres ur answer. Wireless link is not able to handle the weather conditions Essentially you either improve the wireless links themselves (ensuring...
by millenium7
Thu Jul 01, 2021 2:42 am
Forum: RouterOS v7 BETA
Topic: v7 launch date
Replies: 156
Views: 23430

Re: v7 launch date

And Ubiquiti, for exalmple, has AirFiber 60-LR with 2Gbp/s link but only 1Gbp/s Copper ethernet... This is actually a good thing for the most part. You ideally want your air transmission rate to be higher than your actual ethernet throughput rate to allow for a more consistent experience when the c...
by millenium7
Fri Jun 11, 2021 8:33 am
Forum: General
Topic: Multiple RADIUS servers
Replies: 8
Views: 821

Re: Multiple RADIUS servers

You can add various RAID server, but only one can be used for each service. The single services supported are: dhcp dot1x hotspot ipsec login ppp wireless Thank you, It would be nice if I can authenticate user@domain.one against domain.one RADIUS server, user@domain.two against domain.two RADIUS se...
by millenium7
Fri Apr 23, 2021 4:51 am
Forum: Forwarding Protocols
Topic: script to change ospf cost based on wireless modulation?
Replies: 2
Views: 1461

Re: script to change ospf cost based on wireless modulation?

Changing OSPF link cost will drop the adjacency, keep that in mind. It is not a dynamic process without interruption TX-Rate is also not a suitable metric, you'd want to build a script that uses RSSI, SNR and link quality. TX rate is just that, TX rate. Doesn't mean anything about actual effective r...
by millenium7
Mon Apr 19, 2021 7:37 am
Forum: General
Topic: New hack/bug? User accounts wiped
Replies: 7
Views: 816

Re: New hack/bug? User accounts wiped

Router has a pretty standard config. It's denied access unless from a trusted address list Enabled services are api/api-ssl/ssh/winbox If this is a hack then its at a level lower than RouterOS. It's either that, or the flash memory is corrupt Noticed now that the router is failing on backups, it can...
by millenium7
Sat Apr 17, 2021 1:21 pm
Forum: General
Topic: Request: Take OSPF state changes out of 'debug' log category
Replies: 4
Views: 1539

Re: Request: Take OSPF state changes out of 'debug' log category

I should make a follow up post, hence I am I've had to disable this script across out entire network. There's a bug somewhere and I can't find out what it is. For the most part this script works just fine, however occasionally for some reason the script just keeps on firing and reporting an 'up' sta...
by millenium7
Fri Apr 16, 2021 4:28 am
Forum: General
Topic: New hack/bug? User accounts wiped
Replies: 7
Views: 816

Re: New hack/bug? User accounts wiped

RouterOS version is 6.44.6, device is a CCR1036-8G-2S+ I think 6.44.x was vulnerable, so I don't think this is a new'ish hack. Here is a post about it. I updated to 6.47.x a while back to play it safe. just checked, SMB was not enabled (and shouldn't be enabled anywhere in our network. regular comp...
by millenium7
Fri Apr 16, 2021 2:45 am
Forum: General
Topic: New hack/bug? User accounts wiped
Replies: 7
Views: 816

Re: New hack/bug? User accounts wiped

What is strange is a professional IT person not keeping their exposed to the net equipment up to date on firmware. I do get the fact that IT folks have become extremely lazy compared to olden days now that most apps like virus programs auto udpate files but even still there are major upgrades that ...
by millenium7
Fri Apr 16, 2021 1:23 am
Forum: General
Topic: New hack/bug? User accounts wiped
Replies: 7
Views: 816

New hack/bug? User accounts wiped

This is a strange one Approx midnight last night one of our routers became unreachable by monitoring software I discovered I could log into it with admin/*blank* and there were no user accounts other than this admin one saying default In addition, AAA/radius was turned off (though the entry in RADIU...
by millenium7
Wed Mar 31, 2021 3:54 am
Forum: General
Topic: Enable port 80 in lan
Replies: 3
Views: 449

Re: Enable port 80 in lan

Need further clarification I'm guessing that you are running your own website on a server thats in the LAN? is that correct? And so your existing firewall rule would just be a port forward i.e. /ip firewall nat chain=dstnet in-interface=WAN protocol=tcp dst-port=80 action=dst-nat to-addresses=[SERVE...
by millenium7
Wed Mar 31, 2021 3:36 am
Forum: General
Topic: Three Subnets in one ethernet interface [SOLVED]
Replies: 9
Views: 943

Re: Three Subnets in one ethernet interface [SOLVED]

We run something like a dozen subnets on our office LAN. It's totally legal and a very valid reason for doing so The major use case for us is we deal with a lot of vendors equipment, all that equipment is usually setup for various static IP addresses out-of-the-box or we configure it to go into anot...
by millenium7
Mon Mar 29, 2021 5:22 am
Forum: Forwarding Protocols
Topic: OSPF with redundant Routers
Replies: 3
Views: 1647

Re: OSPF with redundant Routers

PTMP has issues on MikroTik

I'd suggest you create a separate VLAN interface for every router to router link over wireless and then use point-to-point type. You'll have far less issues
by millenium7
Wed Mar 24, 2021 8:57 am
Forum: The Dude
Topic: OSPF state as link status?
Replies: 0
Views: 1761

OSPF state as link status?

I've never really used The Dude as my bigger priority has been a whole lot of custom work for historical monitoring which is why I mostly use NetXMS However I thought i'd install The Dude to function as a link status monitor that I can put up on a TV The one thing I want to monitor are all the links...
by millenium7
Mon Mar 22, 2021 1:59 am
Forum: Wireless Networking
Topic: LHG 60G experience
Replies: 603
Views: 144834

Re: LHG 60G experience

This is of course not LHG 60G limited, I'm generally interested in any 60GHz experience. Sure I know crappy plastic LHG is something different to professional grade all-metal antennas/devices etc. but Im interested in any experience Actually it is specifically a problem with the MikroTik 60ghz. The...
by millenium7
Sun Mar 21, 2021 1:44 am
Forum: Forwarding Protocols
Topic: Selective routing with failover in MikroTik - How?
Replies: 8
Views: 2520

Re: Selective routing with failover in MikroTik - How?

Thanks, I read through it. If I understand correctly, you are manipulating the traffic direction for a destination subnet. This seems like it could work if a client is given 2 IP addresses, 1 is used for regular data, the other is used for voice traffic This way you can influence voice to use the le...
by millenium7
Sat Mar 20, 2021 8:32 am
Forum: Wireless Networking
Topic: ETA on a long range 60ghz product?
Replies: 9
Views: 1329

Re: ETA on a long range 60ghz product?

Higher channels would help, but the +3db output is not a solid argument The dishes are already tiny, just make them bigger, much much bigger I would install a 60ghz dish thats 1.5m across if it allowed for significantly improved range in the 6km+ region (reliably in rain, not just on-paper in space)...
by millenium7
Thu Mar 18, 2021 12:03 am
Forum: General
Topic: Feature requests
Replies: 1384
Views: 353222

Re: Feature requests

I don't like OSPF for wireless networks, it really isn't a very good protocol for it at all, EIGRP definitely would be better suited but i've had this discussion before but it seemed to fall on deaf ears The next best thing (and I actually agree for more widespread use, not just wireless networks) i...
by millenium7
Wed Mar 17, 2021 11:34 pm
Forum: General
Topic: Hot to handle VOIP on multiple WANs/backup
Replies: 21
Views: 1667

Re: Hot to handle VOIP on multiple WANs/backup

So if what you described is what the RB4011 does, it would be a quite strange thing to do for a router. I would like to be corrected if someone knows for sure, but I believe it is expected behavior if using nothing more than a masquerade rule. But doesn't happen with src-nat rules, the problem is s...
by millenium7
Wed Mar 17, 2021 3:00 am
Forum: General
Topic: Feature requests
Replies: 1384
Views: 353222

Re: Feature requests

I agree, but although it would be possible to do all kinds of custom scripting for this it would be even more welcome when there would be some standard facility to automatically use link quality metrics in routing protocols. I.e. a worse link can get a lower preference so it is not completely disab...
by millenium7
Mon Mar 15, 2021 11:50 pm
Forum: General
Topic: Hot to handle VOIP on multiple WANs/backup
Replies: 21
Views: 1667

Re: Hot to handle VOIP on multiple WANs/backup

yes, it seems as some of the traffic would maintain the backup path once swapped for the main connection failure. The backup is flawless because there is "no choice".. the sessions are dead for the down of the WAN1, but when WAN1 comes up again you don't have a down of the WAN2 so all tha...
by millenium7
Mon Mar 15, 2021 8:08 am
Forum: General
Topic: Mikrotik UPS Solution
Replies: 11
Views: 1075

Re: Mikrotik UPS Solution

Is there such a thing but with ethernet inputs/outputs to go in between regular injectors and devices? Would make things a bit simpler Use your existing POE injectors, but power if from a 24 volt battery plant. Use the same thing to power the routers. Much easier than any sort of UPS. I'm confused ...
by millenium7
Mon Mar 15, 2021 6:42 am
Forum: General
Topic: Mikrotik UPS Solution
Replies: 11
Views: 1075

Re: Mikrotik UPS Solution

You can purchase modules designed for just such a use: UPS with battery charging and monitoring, with DC input (from your PSU) and direct battery power when the PSU/mains fails. For instance the DRU-24V10ACZ for 24V: http://www.farnell.com/datasheets/3182601.pdf That one seems to cost around £35; q...
by millenium7
Mon Mar 15, 2021 2:48 am
Forum: General
Topic: Feature requests
Replies: 1384
Views: 353222

Re: Feature requests

MikroTik please fix/implement the SNMP-Get output as standard Currently /tool snmp-get does not allow you to store the output to a string/variable, it remains empty, making it a rather useless command I need to be able to poll other devices in our network and then take action Our main use case is fo...
by millenium7
Fri Mar 12, 2021 11:13 am
Forum: Wireless Networking
Topic: ETA on a long range 60ghz product?
Replies: 9
Views: 1329

Re: ETA on a long range 60ghz product?

Mikrotik has been good on 60GHz in my opinion They were an extremely mixed bag for us until we finally got some answers (which was like drawing blood from a stone) It's not until we finally figured out we need to run through a specific process that we could actually rely on them. Out of the box the...
by millenium7
Fri Mar 12, 2021 3:52 am
Forum: Wireless Networking
Topic: ETA on a long range 60ghz product?
Replies: 9
Views: 1329

ETA on a long range 60ghz product?

LHG60 is ok-ish but Ubiquiti's new offering puts it to shame with reports of 8km real world distances without dropping in moderate rainfall, and pushing far beyond that in clear weather I'm frothing at the mouth to get my hands on them to use as backhaul links as it would solve a lot of our problems...
by millenium7
Wed Feb 17, 2021 7:46 am
Forum: Wireless Networking
Topic: LHG 60G experience
Replies: 603
Views: 144834

Re: LHG 60G experience

I always use 64800 if the links are above about 250m and often even less than thag 58320 is complete garbage. It theoretically should go much further but we've had radios drop out daily at only ~170m (LHG60G units) when it rains. Others have dropped when it's just overcast it doesn't even need to ra...
by millenium7
Wed Feb 10, 2021 9:38 am
Forum: Forwarding Protocols
Topic: Selective routing with failover in MikroTik - How?
Replies: 8
Views: 2520

Re: Selective routing with failover in MikroTik - How?

I've managed to get this to work but its a lot of commands and a bit messy. Surely there's a cleaner and simpler way..... The way i'm accomplishing it at the moment is to - Create another VLAN and IP addresses on interfaces between routers - in Route->VRF add those VLAN's with a routing mark like &q...
by millenium7
Mon Feb 08, 2021 6:17 am
Forum: Scripting
Topic: Persistent Environment Variables
Replies: 4
Views: 1092

Re: Persistent Environment Variables

For the moment you can kinda-sorta get away with it by storing variables as comments. The layer7-protocol area is not a bad one because it is practically unused these days so it doesn't clutter up the interface if you put a bunch of variables in there Comments will not store arrays correctly, or rat...
by millenium7
Fri Feb 05, 2021 10:16 am
Forum: General
Topic: Request: Take OSPF state changes out of 'debug' log category
Replies: 4
Views: 1539

Re: Request: Take OSPF state changes out of 'debug' log category

Since MikroTik still hasn't implemented 'state changed from Down to Up' i've written a script to simulate it in the meantime. It isn't perfect but it does the job. It relies on running as a script so it doesn't notify you immediately And messages show up under the 'script,info' category not 'route,o...
by millenium7
Fri Feb 05, 2021 8:11 am
Forum: General
Topic: Feature requests
Replies: 1384
Views: 353222

Re: Feature requests

Please make some adjustments to OSPF neighbor reporting First and foremost please take adjacency changes out of the debug,raw log location, its ridiculous. At the moment only 'Down' is included in 'route, ospf, info' so you can see when a neighbor goes down, but you cannot get a log message when nei...
by millenium7
Sat Dec 05, 2020 12:32 am
Forum: Wireless Networking
Topic: Band Steering implementation?
Replies: 74
Views: 27887

Re: Band Steering implementation?

Yeah its too little too late hAP AC1/2 level hardware at a minimum needs to get beamforming and mu-mimo as they are insanely popular and widespread consumer devices And all AC devices need the bloody spectrum analyzer. I actually don't know why anyone would deploy MikroTik outdoor gear in a business...
by millenium7
Fri Dec 04, 2020 1:54 am
Forum: General
Topic: Routing table filtering for 'all subnets containing'?
Replies: 1
Views: 433

Routing table filtering for 'all subnets containing'?

At the moment if filtering for a route to i.e. 1.1.1.1 there's no easy way to see it in the routing table if i.e. the best route is 1.1.1.0/24 Using the route filters 'in' will show no results because 1.1.1.1 is too specific. So I have to manually back off my dst-address search criteria to 1.1.1.0/2...
by millenium7
Thu Dec 03, 2020 2:27 am
Forum: Wireless Networking
Topic: Band Steering implementation?
Replies: 74
Views: 27887

Re: Band Steering implementation?

Late to this party, but yeah the idea of setting the power output on the AP the same as SM is not a great idea Signal is not just there or not there, people are saying "the client needs to be able to talk back" yes thats true, but its all about Signal to Noise Ratio, NOT just signal If cli...
by millenium7
Thu Dec 03, 2020 1:05 am
Forum: Forwarding Protocols
Topic: Disable ECMP on OSPF?
Replies: 7
Views: 1147

Re: Disable ECMP on OSPF?

Ok it can't be turned off, fair enough
But it isn't a bad idea to turn it off, many other vendors allow you to turn it off for precisely the reasons i'm mentioning, it just adds another variable to troubleshooting
Asymmetrical routing is not a good excuse, it's already asymmetrical with ECMP anyway
by millenium7
Wed Dec 02, 2020 11:37 pm
Forum: RouterBOARD hardware
Topic: CubeG-5ac60ad
Replies: 21
Views: 3323

Re: CubeG-5ac60ad

Looks like it will use bonding for failover https://help.mikrotik.com/docs/display/ROS/Fail-over+PtP+CLIexample Bonding failover is waaaaaaaaaaaaay too slow. Modern day failover times should be less than a second Only 1 way I know of to accomplish this in the MikroTik world, and thats with OSPF and...
by millenium7
Tue Dec 01, 2020 10:54 am
Forum: Forwarding Protocols
Topic: Disable ECMP on OSPF?
Replies: 7
Views: 1147

Re: Disable ECMP on OSPF?

We can sit here and debate this but here's the simple reality: ECMP does nothing beneficial for us and only introduces even more unknowns My goal is not to say "well we can't be 100% totally guaranteed of everything so lets just give up, close the whole operation down boys" it's to elimina...
by millenium7
Tue Dec 01, 2020 10:34 am
Forum: Forwarding Protocols
Topic: Disable ECMP on OSPF?
Replies: 7
Views: 1147

Re: Disable ECMP on OSPF?

Vast majority of our environment is wireless. Link speeds are inherently unreliable as they change with conditions. Trees grow, buildings get constructed in the path, others put up radio's that cause interference etc etc etc there's a million possibilities that ultimately mean you cannot predict any...
by millenium7
Tue Dec 01, 2020 8:14 am
Forum: Forwarding Protocols
Topic: Disable ECMP on OSPF?
Replies: 7
Views: 1147

Disable ECMP on OSPF?

Is there a way to disable ECMP?
Yes I am aware I can change costs but its just yet another administrative overhead, i'd rather just disable ECMP as we don't need it anywhere in our network
by millenium7
Tue Dec 01, 2020 4:30 am
Forum: General
Topic: Any way to have a private network inside a single SSID?
Replies: 2
Views: 392

Any way to have a private network inside a single SSID?

Maybe there's a industry feature/implementation for this but i'm unaware of what it would be called Essentially is there a way to have a single Wifi SSID yet have private networks inside of it so that i.e. we have devices A/B/C/D/E connected to it A and B are guests, on their own, client isolation, ...
by millenium7
Wed Nov 11, 2020 3:28 am
Forum: RouterBOARD hardware
Topic: CubeG-5ac60ad
Replies: 21
Views: 3323

Re: CubeG-5ac60ad

Looks like it will use bonding for failover https://help.mikrotik.com/docs/display/ROS/Fail-over+PtP+CLIexample Bonding failover is waaaaaaaaaaaaay too slow. Modern day failover times should be less than a second Only 1 way I know of to accomplish this in the MikroTik world, and thats with OSPF and...
by millenium7
Thu Nov 05, 2020 1:18 pm
Forum: Wireless Networking
Topic: MikroTik as Spectrum Analyzer [SOLVED]
Replies: 15
Views: 2037

Re: MikroTik as Spectrum Analyzer [SOLVED]

but Scan is NOT a spectrum analyzer, it only shows recognized beacons that show i.e. SSID etc. You might pick a channel that looks like it has little or no wireless on it, but in reality its being flooded because something like a Cambium PTP670 is transmitting on that frequency right over your radio...
by millenium7
Thu Nov 05, 2020 12:51 pm
Forum: Wireless Networking
Topic: MikroTik as Spectrum Analyzer [SOLVED]
Replies: 15
Views: 2037

Re: MikroTik as Spectrum Analyzer [SOLVED]

Question to those who actually use MikroTik outdoor radio gear (which we don't except for the 60ghz): What do you actually do? and what are your expectations? Do you just spray and pray and offer 2mbit/s internet services to customers? I cannot fathom how any outdoor gear can be used in pretty much ...
by millenium7
Fri Oct 30, 2020 3:45 pm
Forum: General
Topic: How to identify routers with compromised password?
Replies: 3
Views: 527

Re: How to identify routers with compromised password?

Essentially i want to scan the entire network for any devices that allow login with 'MyAdmin / Password123' (not actual credentials) I can either do that with a machine running a program or script (I don't know of one personally, open to suggestions) but that would only test for SSH, ideally i'd als...
by millenium7
Fri Oct 30, 2020 2:16 am
Forum: General
Topic: How to identify routers with compromised password?
Replies: 3
Views: 527

How to identify routers with compromised password?

Is there a method to identify routers which are using a compromised password? I.e. lets say a bunch were originally setup with user account 'MyAdmin' and 'Password123' I want to do a scan of the network and find any routers that allow that login so I can go in and change it Most of our routers use R...
by millenium7
Mon Sep 28, 2020 12:07 am
Forum: Wireless Networking
Topic: MikroTik AP and Mimosa SM's. No WDS? Workaround?
Replies: 2
Views: 1139

Re: MikroTik AP and Mimosa SM's. No WDS? Workaround?

Yes. We went up to each and every Mimosa radio in our network, unscrewed its high quality hose clamp fitting and promptly turfed it into the nearest bin so as to not infect any potential eBay 2nd hand buyers with deep regret and seething hatred. We then fit MikroTik/Cambium/Ubiquiti and lived a bett...
by millenium7
Thu Sep 24, 2020 7:19 am
Forum: General
Topic: DNS server selection based on Layer7 - viable?
Replies: 9
Views: 1221

Re: DNS server selection based on Layer7 - viable?

I hear you, and we're trying to get that to happen. For now the Mikrotik will suffice at the same time however, the reality is the vast majority of smaller businesses do only run a single AD and DNS server without issue. And the reality is with virtualisation and image backups it's not the end of th...
by millenium7
Thu Sep 24, 2020 5:02 am
Forum: General
Topic: DNS server selection based on Layer7 - viable?
Replies: 9
Views: 1221

Re: DNS server selection based on Layer7 - viable?

Wasn't aware of the DNS changes in 6.47 That would work I've also just setup a lab environment with an AD server and PC It does also work the 'old' way with layer7 protocol and 2x NAT rules /ip firewall layer7-protocol add comment=!!! name=domainrequests regexp="((.*).testdomain.local|(.*).test...
by millenium7
Thu Sep 24, 2020 3:54 am
Forum: General
Topic: DNS server selection based on Layer7 - viable?
Replies: 9
Views: 1221

Re: DNS server selection based on Layer7 - viable?

Specify two DNS servers and clients will try the first and if not responding, try the next. Windows clients are sticky with their DNS selection If I put i.e. the AD server as the first DNS server, and google/cloudflare as an alternative server, then if the AD server is unreachable yes it will fail ...
by millenium7
Thu Sep 24, 2020 3:22 am
Forum: General
Topic: DNS server selection based on Layer7 - viable?
Replies: 9
Views: 1221

DNS server selection based on Layer7 - viable?

Is it viable to use Layer7 filtering to selectively route DNS requests to different servers? I want to use a MikroTik router in an organization as the DNS server. This organization runs Active Directory with only a single Domain/DNS server and relies on it for certain internal resources However if t...
by millenium7
Tue Sep 15, 2020 11:32 am
Forum: General
Topic: Mark routing to establish SSTP not working
Replies: 3
Views: 376

Re: Mark routing to establish SSTP not working

Bingo, you nailed it. Never would have thought that I did log the packets at the server side and it shows the packets coming in from the 'correct' IP (NAT'd by the LTE router) and packets therefore should get sent back correctly. I guess thats not enough, and would have been a nightmare to troublesh...
by millenium7
Tue Sep 15, 2020 9:25 am
Forum: General
Topic: Mark routing to establish SSTP not working
Replies: 3
Views: 376

Mark routing to establish SSTP not working

Can someone help me with this? I have in the mangle rules /ip firewall mangle add action=mark-routing chain=output comment="Establish SSTP via LTE" dst-address=1.2.3.4 dst-port=443 new-routing-mark=LTE passthrough=no protocol=tcp This is placed at the very top, no further mangle rules woul...
by millenium7
Mon Aug 31, 2020 4:34 am
Forum: General
Topic: LTE modem disconnects every 2 minutes
Replies: 9
Views: 4411

Re: LTE modem disconnects every 2 minutes

having the same problem on 6.47 (and many previous versions before that, don't remember one thats 100% stable)
by millenium7
Tue Aug 25, 2020 10:14 am
Forum: Wireless Networking
Topic: LHG 60G experience
Replies: 603
Views: 144834

Re: LHG 60G experience

Thanks for responding but that just isn't true..... or at least its woefully inaccurate, or isn't explained correctly. I still don't know if its referring to the AP or the SM (assuming logged into the AP) I was physically up onsite at this location, I know for a fact that this particular location th...
by millenium7
Sat Aug 22, 2020 11:51 am
Forum: Wireless Networking
Topic: LHG 60G experience
Replies: 603
Views: 144834

Re: LHG 60G experience

Those are not simple things and each installation is different and there are much more factors that may affect success with link. We can't simplify those details as they are much complicated compared to regular wireless. Simple explanation is available in our wiki. I disagree. MikroTik engineers do...
by millenium7
Fri Aug 21, 2020 3:57 am
Forum: Wireless Networking
Topic: LHG 60G experience
Replies: 603
Views: 144834

Re: LHG 60G experience

frequent tx-sector changes indicate, that there is issue related to devices moving in wind or alignment issues. In theory tx-sector should only change on very rare occasions - during first minutes of established connection, rain or on line of sight loss And what about if its rapidly changing but th...
by millenium7
Thu Aug 20, 2020 7:32 am
Forum: Wireless Networking
Topic: LHG 60G experience
Replies: 603
Views: 144834

Re: LHG 60G experience

Ok so 'frequency=auto' is seemingly a really bad idea. And using the terminal with 'int w60g mon 0' is essential as tx-error rate shows a more accurate picture than signal/MCS/rssi Pretty sure the way auto works is it just picks 58320 regardless, as i've only ever seen it on that frequency. It defin...
by millenium7
Wed Aug 19, 2020 3:08 am
Forum: Wireless Networking
Topic: LHG 60G experience
Replies: 603
Views: 144834

Re: LHG 60G experience

You're using LHG-60's as AP's? The antenna pattern is 3 degrees. So, across 120 degrees at ~100m, you're running off the RF equivalent of fumes. In theory yes, theoretically it shouldn't even work at all, but so far nothings made sense and matched up with the theoretical data. We used the LHG 60G a...
by millenium7
Tue Aug 18, 2020 2:13 am
Forum: Wireless Networking
Topic: LHG 60G experience
Replies: 603
Views: 144834

Re: LHG 60G experience

So to add some more experience and more confusion needing clarification.... Went out to the AP side of a site thats doing multipoint, spread is about 10 degrees between the 2 SM's. Distance is ~170m and ~340m respectively All of them are LHG 60G Found it was a little bit out of alignment, slightly u...
by millenium7
Sun Aug 16, 2020 4:17 am
Forum: Wireless Networking
Topic: LHG 60G experience
Replies: 603
Views: 144834

Re: LHG 60G experience

I've read through this entire thread and I still don't know exactly how to use these things 'properly'. There's too much confusion We have a few of them out in the field and they are unpredictable. Some links drop in the rain at just 300m, yet people are claiming over 10x that distance Speed doesn't...
by millenium7
Fri Jul 17, 2020 2:04 am
Forum: General
Topic: Why does both L2MTU and MAX-L2MTU exist?
Replies: 11
Views: 2848

Re: Why does both L2MTU and MAX-L2MTU exist?

Thats all well and good in theory, and that is the case for L3 MTU as there is path MTU discovery as well as response mechanisms to indicate the MTU is too large But unless i'm mistaken, L2 MTU will always silently drop. And i'm also not aware of any protocols that specifically go looking for the L2...
by millenium7
Wed Jul 15, 2020 4:50 am
Forum: Forwarding Protocols
Topic: OSPF VPLS/MPLS load balancing and failover
Replies: 7
Views: 2983

Re: OSPF VPLS/MPLS load balancing and failover

I'm investigating the same thing at the moment It appears the only way to do this properly and retain failover in both directions (if backup link goes down, should failover to primary) is using MPLS Traffic Engineering. I'm still investigating how to properly implement it with Mikrotik in the most m...
by millenium7
Mon Jun 22, 2020 3:04 am
Forum: Forwarding Protocols
Topic: Redundant paths to OSPF?
Replies: 1
Views: 999

Re: Redundant paths to OSPF?

Routes are chosen in this order - Most specific route - Administrative Distance (lower is better) - Metric/Cost (lower is better) If a packet has a destination of 192.168.1.2 and you have the following routes in the table... 192.168.0.0/16 - Distance 1 - Cost 0 192.168.1.0/24 - Distance 110 - Cost 5...
by millenium7
Mon Jun 22, 2020 2:57 am
Forum: Forwarding Protocols
Topic: Marking packets between mikrotik routers! [SOLVED]
Replies: 3
Views: 1971

Re: Marking packets between mikrotik routers! [SOLVED]

DSCP on its own is just a tag Yes its used for QoS but its up to each device along the chain to decide what to do, there's nothing stopping it from just entirely ignoring the DSCP number and doing no QoS whatsoever. It's common for most devices to just bundle a range of DSCP values into only 3 or so...
by millenium7
Tue Jun 16, 2020 4:15 am
Forum: General
Topic: Hotspot bypass for a range of MAC addresses?
Replies: 0
Views: 601

Hotspot bypass for a range of MAC addresses?

Is there a way to use wildcards or a range of MAC addresses in the hotspot bypass?
by millenium7
Fri Jun 12, 2020 11:52 am
Forum: General
Topic: Feature requests
Replies: 1384
Views: 353222

Re: Feature requests

I'm sorry to tell you, but that isn't possible. Addresses have not been assigned that way! I also sometimes thought it would have been much better when it had been done that way, but it hasn't. LIRs have assigned /24.../16 blocks to "users" (companies, internet providers) completely rando...
by millenium7
Fri Jun 12, 2020 6:15 am
Forum: Forwarding Protocols
Topic: MPLS TE and OSPF. Some clarification?
Replies: 0
Views: 879

MPLS TE and OSPF. Some clarification?

I been labbing MPLS TE and things aren't quite as they seem, and work a little differently to how i'd expect. I'm hoping someone can clarify Reading through the wiki page https://wiki.mikrotik.com/wiki/Manual:Simple_TE It gives some examples, but it's not thoroughly explaining everything in use The ...
by millenium7
Fri Jun 12, 2020 3:25 am
Forum: General
Topic: Feature requests
Replies: 1384
Views: 353222

Re: Feature requests

My first claim is that it is useless. And I will explain that: You have not defined what "the country of an IP address" is, and neither has the internet. You are WAY overthinking this. It's really as simple as an address list generated from IANA that says i.e. 1.x.x.x/8 = Belongs in USA. ...
by millenium7
Wed Jun 10, 2020 3:59 am
Forum: General
Topic: Feature requests
Replies: 1384
Views: 353222

Re: Feature requests

Consider a GeoIP package allowing for firewall filtering by Country I'm against that. It is completely useless, and it tends to racism. lmao, oh god, political correctness has now extended to routers..... There are very good reasons for country blocking, first and foremost is for many people there'...
by millenium7
Thu Jun 04, 2020 6:18 am
Forum: Forwarding Protocols
Topic: Selective routing with failover in MikroTik - How?
Replies: 8
Views: 2520

Selective routing with failover in MikroTik - How?

So I have 2 scenario's that I need to find a solution for Scenario A : 1 hop selective routing https://i.imgur.com/rqLBmlo.png RouterA & RouterB are running OSPF to each other, the 60ghz path is set to the default cost of 10 and is running BFD, the 5ghz path is a cost of 15 This works perfectly ...
by millenium7
Thu Jun 04, 2020 5:18 am
Forum: General
Topic: Why does both L2MTU and MAX-L2MTU exist?
Replies: 11
Views: 2848

Re: Why does both L2MTU and MAX-L2MTU exist?

L2MTU is what its actually set to, it will never transmit more than that Max L2MTU is the hardware limit of what its capable of doing. This varies from model to model, some only support ~2000 others support ~11000 etc Removing it would be a really bad idea, its extremely useful for determining the m...
by millenium7
Thu May 28, 2020 3:33 am
Forum: Forwarding Protocols
Topic: OSPF configuration rules
Replies: 2
Views: 1572

Re: OSPF configuration rules

Actually i've found NBMA to be quite buggy on MikroTik and I can't think of any upsides to using it. The only 2 possible scenario's I can think it has any merit whatsoever is 1) You have some really antiquated shitty radio equipment or you are leasing a link from another company that does not suppor...
by millenium7
Thu May 28, 2020 2:56 am
Forum: Forwarding Protocols
Topic: WE NEED EIGRP
Replies: 39
Views: 19030

Re: WE NEED EIGRP

We just had a major network outage yesterday due to OSPF's design limitations. We expanded a network that was originally setup as a separate area but now has major transit link in it. That network needs to be in the backbone because of OSPF's limited design restrictions, but its joined to the rest o...
by millenium7
Thu May 28, 2020 2:34 am
Forum: Forwarding Protocols
Topic: Unable to route between WAN and inside network - Public IP and no Nat required.
Replies: 2
Views: 949

Re: Unable to route between WAN and inside network - Public IP and no Nat required.

Might need a /export of the relevant sections It really depends how you've set your firewall filter rules up, but if you have a typical set of requirements (public IP that the LAN shares, additional public IP's for other devices) you shouldn't need anything at all in 'firewall filter' you just need ...
by millenium7
Tue May 26, 2020 3:32 am
Forum: Forwarding Protocols
Topic: [Stability] Multiple PPPoE servers (+10) at the same router - Is there any alternatives?
Replies: 3
Views: 2204

Re: [Stability] Multiple PPPoE servers (+10) at the same router - Is there any alternatives?

Since PPPoE is something that hits the CPU anyway, you won't have any noticeable performance drop by bridging all the interfaces And PPPoE stability has never been an issue in my experience with MikroTik, it's the one thing thats worked perfectly every single time for me, and I much prefer MikroTik'...
by millenium7
Tue May 12, 2020 12:26 am
Forum: Forwarding Protocols
Topic: WE NEED EIGRP
Replies: 39
Views: 19030

Re: WE NEED EIGRP

I don't dispute its lack of popularity and support But saying things like "I can probably count on one hand the number of times i've seen EIGRP used in a WISP in the last 15 years." is a chicken or egg scenario. It's like me saying "I can count on 1 hand the number of electric vehicle...
by millenium7
Tue May 05, 2020 2:28 am
Forum: General
Topic: How to test the speed of a cable
Replies: 2
Views: 993

Re: How to test the speed of a cable

Devices send as a certain modulation rate, in the case of ethernet this is not variable its fixed at 10/100/1000mbit. It can't drop its speed down to say 800mbit/s if the cable is a little wonky. It can drop down to 100mbit if the NIC detects a missing pair or a poor enough signal ratio, it will nev...
by millenium7
Wed Apr 29, 2020 2:59 am
Forum: Forwarding Protocols
Topic: WE NEED EIGRP
Replies: 39
Views: 19030

Re: WE NEED EIGRP

This is definitely an antiquated and very closed minded view. Let's look over the fact that EIGRP - regardless of its usefulness - was a closed system with a fairly insignificant (comparatively speaking) install base and is very unlikely to ever make it into other platforms with any level of deploy...
by millenium7
Wed Apr 22, 2020 6:59 am
Forum: General
Topic: How does RSTP work with vlan interfaces in bridge?
Replies: 0
Views: 1358

How does RSTP work with vlan interfaces in bridge?

How does STP work on MikroTik when you put vlan interfaces into a bridge? And does it work differently when you put the physical interfaces into the bridge but use the 'vlan' tab and then create a VLAN interface on the bridge Take this example which is close to a real world example that was experien...
by millenium7
Tue Apr 21, 2020 12:30 pm
Forum: Wireless Networking
Topic: DHCP lease over wireless bridge does not work for Ethernet clients [SOLVED]
Replies: 7
Views: 5942

Re: DHCP lease over wireless bridge does not work for Ethernet clients [SOLVED]

It does work, there will be an explanation for whats going on, why it isn't working for you and a way to fix it. It may be something like your AP is blocking multiple DHCP requests (unlikely but you never know). The mikrotik does not need a lease, so disable that to start with, heck just do a system...
by millenium7
Tue Apr 21, 2020 2:35 am
Forum: Wireless Networking
Topic: DHCP lease over wireless bridge does not work for Ethernet clients [SOLVED]
Replies: 7
Views: 5942

Re: DHCP lease over wireless bridge does not work for Ethernet clients [SOLVED]

I've used station-pseudobridge mode in the past and its worked fine, havn't needed to do anything special just put in a bridge with an ethernet port The wiki does say this This mode is limited to complete L2 bridging of data to single device connected to station (by means of single MAC address trans...
by millenium7
Thu Apr 09, 2020 11:56 am
Forum: General
Topic: Can traffic generator be used over more than 1 hop?
Replies: 2
Views: 1246

Re: Can traffic generator be used over more than 1 hop?

That's not suited, I need to test routing performance. If it's in a tunnel its not going to pass traffic in the same fashion
by millenium7
Thu Apr 09, 2020 10:34 am
Forum: General
Topic: RB3011 - low routing performance with low CPU usage?
Replies: 7
Views: 2739

Re: RB3011 - low routing performance with low CPU usage?

Ok very interesting I setup a lab with a CCR as the core a HEX/RB2011/RB3011 as routers connected to it through a gigabit switch Then another CCR behind it that I used as a customer to simulate this In my initial testing I got the expected behaviour, which is slower tests 'from' the router and faste...
by millenium7
Thu Apr 09, 2020 9:32 am
Forum: General
Topic: Can traffic generator be used over more than 1 hop?
Replies: 2
Views: 1246

Can traffic generator be used over more than 1 hop?

I don't see a way to do this and all the examples i've come across have 2 routers directly connected I want to measure the packet throughput rate of routers. So I need to send traffic 'through' them and also have packets bounced back to measure jitter, packet loss etc If I have RouterA->RouterB It's...
by millenium7
Thu Apr 09, 2020 2:32 am
Forum: RouterBOARD hardware
Topic: CCR1036-8G-2S+ - SFP+ port stops transmitting data?
Replies: 19
Views: 7578

Re: CCR1036-8G-2S+ - SFP+ port stops transmitting data?

That's not a great fix But would simply increasing the L2MTU and not restoring it back down help? Because there is no harm in setting L2MTU to max. Infact I don't know why it isn't set to maximum (that goes for every single device on the market). Nothing will ever send larger L2 frames unless specif...
by millenium7
Wed Apr 08, 2020 1:13 pm
Forum: General
Topic: RB3011 - low routing performance with low CPU usage?
Replies: 7
Views: 2739

Re: RB3011 - low routing performance with low CPU usage?

It wouldn't. But everything is already set to point to point
by millenium7
Wed Apr 08, 2020 10:23 am
Forum: RouterBOARD hardware
Topic: CCR1036-8G-2S+ - SFP+ port stops transmitting data?
Replies: 19
Views: 7578

Re: CCR1036-8G-2S+ - SFP+ port stops transmitting data?

This happened AGAIN in our network at a different location, but to 'ethernet' ports this time. So this bug seemingly doesn't care if its ethernet or SFP modules This happened on a CCR1009-7G-1C-1S+ That site has had issues with VPLS tunnels randomly dropping off over the past couple months. I very t...
by millenium7
Wed Apr 08, 2020 3:38 am
Forum: General
Topic: 20km Point-to-Point 5HPacD2HPnD-XL or LHGXL52ac has 5dBi less gain due to antenna construction dual band design
Replies: 5
Views: 1952

Re: 20km Point-to-Point 5HPacD2HPnD-XL or LHGXL52ac

That distance is nothing for this antenna... https://mikrotik.com/products/ptp Has anyone experience with the unit not being able to reach the full output Full output? Actually you must setup the antenna within the Limits allowed in your Country. I call bulllllllllllllllshit on those graphs lol LHG...
by millenium7
Wed Apr 08, 2020 3:22 am
Forum: General
Topic: RB3011 - low routing performance with low CPU usage?
Replies: 7
Views: 2739

Re: RB3011 - low routing performance with low CPU usage?

CPU usage is very low ~5-15%. It's not even close to maxing out 1 core, yet the actual results of passing packets through it look very much like a lack of processing power So either CPU usage is reported completely incorrectly for routed traffic, or there's something else going on Note that if I use...
by millenium7
Tue Apr 07, 2020 8:05 am
Forum: General
Topic: Feature Request: Interface in OSPF state change log entry
Replies: 0
Views: 1468

Feature Request: Interface in OSPF state change log entry

We use Syslog to get fast notifications of OSPF neighbor state changes pushed to SLACK. Problem is the log entry only contains the neighbor ID When we have a primary and backup path, the messages are identical if primary or secondary fails. Can the message be changed to also include the interface na...
by millenium7
Tue Apr 07, 2020 7:09 am
Forum: Forwarding Protocols
Topic: How can this BGP session possibly drop when OSPF changes?
Replies: 3
Views: 1967

Re: How can this BGP session possibly drop when OSPF changes?

Ok well take the following example https://i.imgur.com/WVLFeSx.png RouterA/B/C establish an iBGP session to the core using their physical link addresses (i.e. 10.0.1.1), not loopbacks, so the routes directly to the core should never be affected, they'll use their directly connected links at all time...
by millenium7
Tue Apr 07, 2020 3:48 am
Forum: General
Topic: Policy routing for VoIP across backup links?
Replies: 1
Views: 1672

Re: Policy routing for VoIP across backup links?

Bump. Anyone?
by millenium7
Mon Apr 06, 2020 5:02 am
Forum: Forwarding Protocols
Topic: How can this BGP session possibly drop when OSPF changes?
Replies: 3
Views: 1967

How can this BGP session possibly drop when OSPF changes?

The topology/setup We have a core router that uses iBGP sessions to the rest of our network, it only establishes iBGP sessions to the sites that have a layer2 fibre connection (We'll call them A/B/C). The core is setup as a route reflector to these sites. Each of these site has its own Layer2 conne...
by millenium7
Sat Apr 04, 2020 1:43 pm
Forum: Wireless Networking
Topic: Why no 60/80ghz with 5ghz failover?
Replies: 13
Views: 3758

Re: Why no 60/80ghz with 5ghz failover?

Again you are missing the point that it is a 'backup' Don't need super long range, or particular high performance. 99.99% of the time it is not being used at all It's entire purpose in life is to provide connectivity when there otherwise is none, it's not to be an awesome standalone 5ghz product tha...
by millenium7
Sat Apr 04, 2020 2:00 am
Forum: Wireless Networking
Topic: Why no 60/80ghz with 5ghz failover?
Replies: 13
Views: 3758

Re: Why no 60/80ghz with 5ghz failover?

Yes it doesnt NEED to be high gain Who would install a 60+5ghz radio and want 30db of gain? So you can make a link go 8km on 5ghz only and never use the 60ghz? :lol: that would be stupid It doesn't need much gain, the PRIMARY purpose is the 60ghz radio, so as long as the 5ghz can do the same distanc...
by millenium7
Fri Apr 03, 2020 6:32 am
Forum: General
Topic: Is BTest broken after 1 hop?
Replies: 4
Views: 1763

Re: Is BTest broken after 1 hop?

Ok its not the btest program, it's something funky going on with the RB3011's in our network. They can do good performance only when passing packets to a directly connected neighbor, but if they have to go more than 1 hop it all turns to shit. Even if packets are being passed 'through' a RB3011 and ...
by millenium7
Fri Apr 03, 2020 6:30 am
Forum: General
Topic: RB3011 - low routing performance with low CPU usage?
Replies: 7
Views: 2739

RB3011 - low routing performance with low CPU usage?

Ok so riddle me this We've been encountering speed issues since starting to migrate off PPPoE client connections inside VPLS tunnels to a PPPoE concentrator, and onto DHCP instead Why are we doing this? - Faster recovery if a link goes down - Faster failover - Multi path selection - Simpler topology...
by millenium7
Fri Apr 03, 2020 1:42 am
Forum: Wireless Networking
Topic: Why no 60/80ghz with 5ghz failover?
Replies: 13
Views: 3758

Re: Why no 60/80ghz with 5ghz failover?

2 devices is vastly inferior to 1 combined device - Need to run extra cables (PoE passthrough does not help if they are different voltages) - More config on switches/routers with more ports or VLANs, extra IP addresses - Need to pay a lot more attention to loop prevention - Need more physical mast s...
by millenium7
Fri Apr 03, 2020 1:12 am
Forum: General
Topic: Routing a Block of Public IP Addresses to Other Mikrotik [SOLVED]
Replies: 12
Views: 5060

Re: Routing a Block of Public IP Addresses to Other Mikrotik [SOLVED]

I figured the routers already have some config on them, MikroTik2 already has a route to 1 or a default route etc. But yes that is needed if there's no existing routes From a routers perspective there are no 'private' or 'public' IP addresses, they are just IP's NAT has changed the way most of us th...
by millenium7
Thu Apr 02, 2020 12:45 pm
Forum: Wireless Networking
Topic: Why no 60/80ghz with 5ghz failover?
Replies: 13
Views: 3758

Re: Why no 60/80ghz with 5ghz failover?

Yep, lots of really good products and really good ideas that are only halfway finished. It's like their R&D department do nothing until 4:30pm on a friday then madly come up with something before 5pm beers - 36/72 core router, with no support for MetaRouter/Virtualization and almost everything i...
by millenium7
Thu Apr 02, 2020 12:23 pm
Forum: Wireless Networking
Topic: Why no 60/80ghz with 5ghz failover?
Replies: 13
Views: 3758

Why no 60/80ghz with 5ghz failover?

I don't understand this, why no dual 60/80ghz with 5ghz failover products? The 60ghz LHG radios are FANTASTIC, I really, really like them due to the beamforming. You just chuck them in and hey presto you have a 2gbit/s link, I don't even really bother to align them they 'just work', right up until i...
by millenium7
Thu Apr 02, 2020 11:44 am
Forum: General
Topic: RB750gr3 for 140mb WAN + 20 clients [SOLVED]
Replies: 10
Views: 4278

Re: RB750gr3 for 140mb WAN + 20 clients [SOLVED]

umm what the hell lol. HEX/RB750gr3 has PLENTY of grunt, will effortlessly do 140mb/s even with lots of firewall/NAT/mangle rules We use them a lot as distribution routers on small sites that don't yet warrant a CCR running OSPF/MPLS/VPLS as well as DHCP servers, several firewall entries etc and all...
by millenium7
Thu Apr 02, 2020 11:40 am
Forum: General
Topic: Routing a Block of Public IP Addresses to Other Mikrotik [SOLVED]
Replies: 12
Views: 5060

Re: Routing a Block of Public IP Addresses to Other Mikrotik [SOLVED]

Well I work as the lead engineer for an ISP so if it doesn't work i'm out of a job :lol:
by millenium7
Thu Apr 02, 2020 11:10 am
Forum: General
Topic: Routing a Block of Public IP Addresses to Other Mikrotik [SOLVED]
Replies: 12
Views: 5060

Re: Routing a Block of Public IP Addresses to Other Mikrotik [SOLVED]

however i had some overthinking since those are Public IPs and i dont know if the ISP has any limitation to the TTL of the packets or anything... Nope, and on that topic.... TTL can be manipulated on MikroTik with mangle rules. It actually does come in very handy if you have known, fixed number of ...
by millenium7
Thu Apr 02, 2020 3:22 am
Forum: General
Topic: Routing a Block of Public IP Addresses to Other Mikrotik [SOLVED]
Replies: 12
Views: 5060

Re: Routing a Block of Public IP Addresses to Other Mikrotik [SOLVED]

Ummm this is super easy. All you do is add a static route on MikroTik 1 pointing to MikroTik 2 But MikroTik 2 still needs to have an address. Normally on the link between MikroTik 1 and 2 you would give them a private IP i.e. 10.0.12.1/30 and 10.0.12.2/30 Then on MikroTik1 you just add your static r...
by millenium7
Tue Mar 31, 2020 8:35 pm
Forum: General
Topic: Is BTest broken after 1 hop?
Replies: 4
Views: 1763

Re: Is BTest broken after 1 hop?

No, doing independent tests from A to B and B to C shows roughly the actual bandwidth available. Testing A to C shows way lower It's not interference, completely different (80ghz one side, 5ghz the other). Radios are not pointing in the same direction A to C should be seeing 150 but it doesn't I tes...
by millenium7
Tue Mar 31, 2020 7:28 am
Forum: General
Topic: Policy routing for VoIP across backup links?
Replies: 1
Views: 1672

Policy routing for VoIP across backup links?

Not quite sure of the way to go about this Essentially we have a OSPF+MPLS network, almost all of it is wireless Some sites have 24/60/80ghz primary and 5ghz backup links. The 5ghz always sit idle until used, the main link has BFD for faster failover. But occasionally a link flaps in bad conditions ...
by millenium7
Tue Mar 31, 2020 6:13 am
Forum: General
Topic: Load external image on captive portal
Replies: 19
Views: 4447

Re: Load external image on captive portal

use the walled garden section to whitelist the URL or IP address
by millenium7
Tue Mar 31, 2020 2:28 am
Forum: General
Topic: Is BTest broken after 1 hop?
Replies: 4
Views: 1763

Is BTest broken after 1 hop?

This is something we rely on quite a bit to test for available 'real usable' capacity but 99% of the time we've been using it 1 hop away, either direct router-router connections or across PPPoE connections at customer sites, and for this its fairly accurate especially with UDP However i've been test...
by millenium7
Mon Mar 30, 2020 10:38 am
Forum: Forwarding Protocols
Topic: EOIP alternative?
Replies: 10
Views: 4687

Re: EOIP alternative?

EoIP is going to fragment anyway, it's a Layer2 bridging protocol, not Layer3 MTU (which is a L3 MTU) shouldn't even really be used. It will carry all L2 traffic at an MTU up to ~65535 or whatever its set to So if you put it in a bridge or any standard Layer2 segment with switches etc you're going t...
by millenium7
Fri Mar 27, 2020 10:43 am
Forum: Announcements
Topic: v6.45.8 [long-term] is released!
Replies: 87
Views: 72027

Re: v6.45.8 [long-term] is released!

I think 6.45.8 is a mess and feel that MikroTik should withdraw it. There's multiple issues with it and some of them are pretty damn serious
by millenium7
Wed Mar 25, 2020 1:14 am
Forum: Scripting
Topic: Are special parameters parsed when script ran by DHCP server?
Replies: 3
Views: 1763

Re: Are special parameters parsed when script ran by DHCP server?

err yes there is
agent-remote-id and agent-circuit-id are parameters that are injected into DHCP request packets by another inline device, also knows as DHCP Option 82
Both are supported in MikroTik's DHCP server as read-only parameters
by millenium7
Mon Mar 23, 2020 5:12 am
Forum: Scripting
Topic: Are special parameters parsed when script ran by DHCP server?
Replies: 3
Views: 1763

Are special parameters parsed when script ran by DHCP server?

At the moment I have a 30 line script to ensure only 1 DHCP lease can be active per Remote-ID at a time, the newest lease clears all other entries that have the same Remote-ID (potential issue if a client plugged a switch into their WAN connection instead of a router) but there's currently a bug in ...
by millenium7
Sun Mar 22, 2020 12:42 am
Forum: RouterBOARD hardware
Topic: CCR1036-8G-2S+ - SFP+ port stops transmitting data?
Replies: 19
Views: 7578

Re: CCR1036-8G-2S+ - SFP+ port stops transmitting data?

The biggest benefit of DHCP for both for us and customers is they can just take any router straight out of the box, plug it in and bam immediately have internet access, as almost all routers are configured for DHCP by default. They can factory reset it, still works just fine. Because MikroTik router...
by millenium7
Sat Mar 21, 2020 12:50 am
Forum: RouterBOARD hardware
Topic: CCR1036-8G-2S+ - SFP+ port stops transmitting data?
Replies: 19
Views: 7578

Re: CCR1036-8G-2S+ - SFP+ port stops transmitting data?

I found no solution, and the amount of outages and customer issues this caused i'll never be trying it again We've had to keep those core routers entirely OSPF and MPLS free. As PPPoE is still terminated on those routers, this means we lose automatic failover if a major site goes down, and we have t...
by millenium7
Fri Mar 13, 2020 2:15 pm
Forum: Forwarding Protocols
Topic: OSPF and multiple areas
Replies: 9
Views: 4658

Re: OSPF and multiple areas

You need to use route filtering I've said it multiple times, OSPF kinda sucks with its design limitations at scale in a WISP but it's what we have so we have to deal with it Note also that additional areas can all be fringe networks but using the exact same area I.e. there's absolutely no problem wi...
by millenium7
Fri Mar 13, 2020 4:49 am
Forum: General
Topic: DHCP leases based on Circuit/Remote ID information?
Replies: 0
Views: 1849

DHCP leases based on Circuit/Remote ID information?

As far as I can tell the only way to identify a device for a static lease on MikroTik is by MAC address? The 'use src MAC address' option I believe uses the Remote ID information but it still needs to be entered into the 'MAC Address' field of a static lease, meaning it can only accept standard MAC ...
by millenium7
Wed Mar 11, 2020 2:43 am
Forum: Forwarding Protocols
Topic: VPLS woes, tunnel will not come up
Replies: 4
Views: 3406

Re: VPLS woes, tunnel will not come up

Really need help with this. Downgraded all routers in our network that were on 6.45.x back to 6.44.6 and still havn't the same problem Various tunnels (completely different locations this time) are just going down and not coming back up. This is a huge problem I've put in half a dozen EoIP tunnels f...
by millenium7
Tue Mar 10, 2020 8:46 am
Forum: Announcements
Topic: v6.45.8 [long-term] is released!
Replies: 87
Views: 72027

Re: v6.45.8 [long-term] is released!

I upgraded some routers from 6.44.x to 6.45.8 and i've been experiencing VPLS issues in our network More information here https://forum.mikrotik.com/viewtopic.php?f=14&t=158525 but the basics are that VPLS tunnels are randomly stopping, won't go into running state. But everything I check manuall...
by millenium7
Tue Mar 10, 2020 4:01 am
Forum: Forwarding Protocols
Topic: OSPF and multiple areas
Replies: 9
Views: 4658

Re: OSPF and multiple areas

Is stubbing and range/summary mandatory for take advantage of the benefits? At what level (# of routers, # of routes) is an MPLS+iBGP solution a more logical to use than plain OSPF? MPLS LDP does not use BGP routes. So you still HAVE to use OSPF (unless you statically add labels I guess) And LDP al...
by millenium7
Tue Mar 10, 2020 1:11 am
Forum: Forwarding Protocols
Topic: VPLS woes, tunnel will not come up
Replies: 4
Views: 3406

VPLS woes, tunnel will not come up

I can't work out this, I chalk it up to yet another mikrotik bug I have 2 routers in our network that just refuse to bring up a VPLS tunnel now. They were working fine, then suddenly out of nowhere they just flat out refuse to connect to each other. And I can't for the life of me work it out Before ...
by millenium7
Sat Mar 07, 2020 2:24 am
Forum: Forwarding Protocols
Topic: WE NEED EIGRP
Replies: 39
Views: 19030

Re: WE NEED EIGRP

OSPF works fine for corporate/enterprise IS-IS works far better for 'service provider' environments EIGRP works in both This is **NOT** the way to look at routing protocols. Routing protocols solve problems. We have to stop looking at them as enterprise vs. service provider. You can't separate them...
by millenium7
Fri Mar 06, 2020 6:22 am
Forum: Forwarding Protocols
Topic: WE NEED EIGRP
Replies: 39
Views: 19030

Re: WE NEED EIGRP

I can't imagine devoting the resources to bring up EIGRP. As networks continue to stop being Cisco-exclusive, the demand for EIGRP drops even more. You can run OSPF and EIGRP in parallel if you wish to make a transition to OSPF. I can't imagine why people are against EIGRP on MikroTik and think OSP...
by millenium7
Fri Mar 06, 2020 2:35 am
Forum: General
Topic: feature request ADVANCED DNS Server
Replies: 42
Views: 13746

Re: feature request ADVANCED DNS Server

I disagree with this feature request The included DNS features are as functional as they realistically need to be, for what MikroTik routers are You need to keep things in perspective. At the end of the day it is a router, not a server. MikroTik already has a huge amount of quality of life improveme...
by millenium7
Wed Mar 04, 2020 9:29 am
Forum: Forwarding Protocols
Topic: Multicast routing, confused
Replies: 0
Views: 3029

Multicast routing, confused

I've managed to kind-of-sort-of get multicast working in a lab environment but it seems buggy. Like i'll have a working configuration and then i'll reboot a router and all of a sudden, stops working Or I try and break it on purpose, and yet multicast is still flowing I'm just confused with it all, s...
by millenium7
Tue Feb 25, 2020 12:08 pm
Forum: Forwarding Protocols
Topic: EOIP alternative?
Replies: 10
Views: 4687

Re: EOIP alternative?

If your home network is connected via private network and does not go over the internet. Then your best bet is VPLS This takes a bit more to setup but its not too bad. All routers between you and the destination need to be running MPLS, and you need to make sure your L2MTU on every device (every rad...
by millenium7
Tue Feb 25, 2020 9:37 am
Forum: General
Topic: DHCP Option 82 route injection?
Replies: 2
Views: 2063

Re: DHCP Option 82 route injection?

Script updated and tested. Does exactly what it should (only supports /32 routes)

/32 routes are added for DHCP leases handed out on a specific interface. This script can be copied and used multiple times on multiple instances
Routes will get removed when the lease expires
by millenium7
Tue Feb 25, 2020 2:37 am
Forum: Forwarding Protocols
Topic: EOIP alternative?
Replies: 10
Views: 4687

Re: EOIP alternative?

MTU could also be an issue here How are you using EoIP? Is it just native EoIP or is it running inside another tunnel i.e. PPTP or L2TP? If the latter, absolutely only use L2TP as thats the only UDP based VPN that MikroTik supports at this point in time Either way i'd manually set the MTU to 1500 on...
by millenium7
Tue Feb 25, 2020 2:19 am
Forum: General
Topic: DHCP Option 82 route injection?
Replies: 2
Views: 2063

Re: DHCP Option 82 route injection?

Well I stayed up late and adapted a script I made for updating address lists ### DHCP Option 82 route injection script { :local DHCPServerName "DHCP82Clients" ; # Set this to the name of the DHCP Server instance :local Comment "Added by DHCP82 Script" :local Distance 5 ; # Route ...
by millenium7
Mon Feb 24, 2020 8:31 am
Forum: General
Topic: DHCP Option 82 route injection?
Replies: 2
Views: 2063

DHCP Option 82 route injection?

I want to move to DHCP option 82 on MikroTik for easier provisioning of clients, just plug in any off-the-shelf router including MikroTik and bang client is online. However at the moment it is entirely useless for /32 and/or public IP address space because I can't see any way to have the routes inje...
by millenium7
Thu Feb 20, 2020 1:21 am
Forum: Wireless Networking
Topic: 60ghz products, some clarification?
Replies: 3
Views: 2437

Re: 60ghz products, some clarification?

Interesting, the multi element array explains why you can just point it practically anywhere and it works So why is it the center is stronger? Why does it matter if its using any other element in the array? And if MikroTik's beam width of 1 degree still holds any validity then that would mean that 6...
by millenium7
Fri Feb 14, 2020 5:16 am
Forum: Wireless Networking
Topic: 60ghz products, some clarification?
Replies: 3
Views: 2437

60ghz products, some clarification?

Ok so we've had a bunch of 60ghz dishes deployed in the field for a while now and they seem to 'just work' which contradicts the information i'm reading on the wiki and is also vastly different to other 60ghz products on the market. I want to get some clarification on how they actually work, and to ...
by millenium7
Tue Feb 04, 2020 1:58 am
Forum: Forwarding Protocols
Topic: Selective filtering of BGP routes distributed into OSPF not working?
Replies: 2
Views: 2039

Re: Selective filtering of BGP routes distributed into OSPF not working?

Ah figured it out straight after posting this. I figured that the best place to do this is on the 'in' filter since in my head BGP routes are going 'in' to the OSPF instance and I don't even want them in the internal OSPF route database in the first place, but I guess thats not how it works? It seem...
by millenium7
Tue Feb 04, 2020 1:52 am
Forum: Forwarding Protocols
Topic: Selective filtering of BGP routes distributed into OSPF not working?
Replies: 2
Views: 2039

Selective filtering of BGP routes distributed into OSPF not working?

Why does this not work? /routing filter add action=accept chain=ospf-in comment="Allow specific routes" prefix=10.240.254.0/24 prefix-length=24-32 protocol=bgp /routing filter add action=discard chain=ospf-in comment="Drop all other BGP redistributed routes" protocol=bgp Yet as s...
by millenium7
Sun Feb 02, 2020 1:56 am
Forum: General
Topic: Audiophile Level(Low Noise Floor, Silent) Mikrotik vs Ubiquiti Unifi Network Switch
Replies: 31
Views: 6397

Re: Audiophile Level(Low Noise Floor, Silent) Mikrotik vs Ubiquiti Unifi Network Switch

I'm sure those 500$ patch cords are worth it too. 1.5m of pure zeroes and ones trough those wires.... No, no, thats the thing. There's a big difference between and 1's and 0's. Those audiophile grade cables will tweak them just right so that you get -0.0023's and 1.0067's instead = higher dynamic r...
by millenium7
Fri Jan 31, 2020 7:28 am
Forum: General
Topic: Audiophile Level(Low Noise Floor, Silent) Mikrotik vs Ubiquiti Unifi Network Switch
Replies: 31
Views: 6397

Re: Audiophile Level(Low Noise Floor, Silent) Mikrotik vs Ubiquiti Unifi Network Switch

lmao @ the 'audiophile switch' It takes a special kind of ignorance and lack of willingness to understand how things actually work to buy into that crap @OP if you don't want to believe it, go and look into ethernet actually works, how packet flow and processing works etc and you'll realize it makes...
by millenium7
Thu Jan 30, 2020 11:15 pm
Forum: General
Topic: NetInstall changed config back to factory defaults?
Replies: 4
Views: 998

Re: NetInstall changed config back to factory defaults?

You misunderstand, there's been a different config applied that overrides the default configuration. So when holding the reset button it reverts NOT to the factory defaults, but to a config that somebody else applied

I don't want this, I want to restore it truly back to factory defaults
by millenium7
Thu Jan 30, 2020 4:28 am
Forum: General
Topic: NetInstall changed config back to factory defaults?
Replies: 4
Views: 998

NetInstall changed config back to factory defaults?

We have a bunch of wAP's in storage that were originally flashed with a different default config, hence using the reset method just applies the config I don't want. I want to restore them back to original factory defaults. Is this possible? Alternatively what is the factory default for a device in C...
by millenium7
Mon Jan 13, 2020 1:43 pm
Forum: RouterOS v7 BETA
Topic: New User Manager in RouterOS v7
Replies: 104
Views: 70892

Re: New User Manager in RouterOS v7

True but my workday does no consist of sitting around twiddling my thumbs wondering what I could do next :) I don't mind tinkering with things but time is limited and if its not viable yet i'm happy to just wait and move onto other things. After all V7 is not production ready just yet anyway, but ke...
by millenium7
Mon Jan 13, 2020 5:16 am
Forum: RouterOS v7 BETA
Topic: New User Manager in RouterOS v7
Replies: 104
Views: 70892

Re: New User Manager in RouterOS v7

Can this new user manager (or the old one) be used in a centralized way for multiple sites? We currently use HSNM because it gives us a web UI to setup new sites and generate new voucher codes for any site with an administrative overview. Plus change images etc for the hotspot page But we could very...
by millenium7
Thu Jan 09, 2020 8:41 am
Forum: General
Topic: Hotspot and HTTPS? What solutions?
Replies: 58
Views: 14062

Re: Hotspot and HTTPS? What solutions?

I don't think theres anything more MikroTik could do (maybe better handling of IPv6 with this? But we don't use IPv6 so it doesn't affect me right now) The industry should move to a better system in general, such as a new DHCP option number that includes a URL. So when a client connects and gets an ...
by millenium7
Thu Dec 19, 2019 6:09 am
Forum: General
Topic: SNMP OID for bad blocks?
Replies: 1
Views: 787

Re: SNMP OID for bad blocks?

Nope? There is none?

In that case what is the error message generated in the log file when a bad block is encountered? At least that way I can write a syslog alert when its detected. But I need to write a regex match statement and I don't know what the message is
by millenium7
Thu Dec 19, 2019 6:08 am
Forum: Beginner Basics
Topic: CRS1xx/2xx suuuuuuuuuuuuucks. Help with configuring VLANs?
Replies: 4
Views: 2057

Re: CRS1xx/2xx suuuuuuuuuuuuucks. Help with configuring VLANs?

I had it configured similarly in the first place and it wasn't working. Turns out you need to disable 'vlan filtering' on the bridge otherwise no traffic passes through when you set the switch VLAN rules, it just stops entirely. I figured it would still work just not have hardware offload until it w...
by millenium7
Thu Dec 12, 2019 6:21 am
Forum: Beginner Basics
Topic: CRS1xx/2xx suuuuuuuuuuuuucks. Help with configuring VLANs?
Replies: 4
Views: 2057

CRS1xx/2xx suuuuuuuuuuuuucks. Help with configuring VLANs?

Urgh I absolutely HATE the 'switch' menu its the worst piece of crap configuration i've ever seen. The most basic things like VLAN's go from being simple to overwhelmingly complicated. I'm glad this garbage was scrapped in favor of bridges, however CRS1xx/2xx still don't work properly with bridges! ...
by millenium7
Wed Dec 11, 2019 5:03 am
Forum: General
Topic: Suggestion: Completely virtual router based on two physical routers
Replies: 185
Views: 41409

Re: Suggestion: Completely virtual router based on two physical routers

Mikrotik continues to make it hard to keep this thing working. :( I'm somewhat surprised and also irritated that they havn't implemented this natively into RouterOS by now. If nothing else they should contact you and ask to work on native implementation (paid of course!) This script is one of the b...
by millenium7
Tue Dec 10, 2019 12:02 pm
Forum: General
Topic: /interface ethernet set [ find default-name=ether1 ] speed=100Mbps
Replies: 5
Views: 2495

Re: /interface ethernet set [ find default-name=ether1 ] speed=100Mbps

Is there an 'unset' command for the speed parameter then? I want to push to hundreds of routers but need a command that will work for them all, I don't mind scripting it either if its fairly straightforward, but don't want to push a bunch of 'set speed=' commands that result in half of them no longe...
by millenium7
Tue Dec 10, 2019 11:37 am
Forum: General
Topic: /interface ethernet set [ find default-name=ether1 ] speed=100Mbps
Replies: 5
Views: 2495

Re: /interface ethernet set [ find default-name=ether1 ] speed=100Mbps

In RouterOS any other configured speed value than 1Gbps (default) we be included in the export. But I 'DONT' manually set the speed in our network, yet ~50% of devices when running an export show this I suspect its due to something in a firmware update. Yet some of them DO still have the defaults (...
by millenium7
Tue Dec 10, 2019 4:25 am
Forum: General
Topic: SNMP OID for bad blocks?
Replies: 1
Views: 787

SNMP OID for bad blocks?

Can't seem to find an OID for the bad blocks percentage. I want to add this to our monitoring system to alert on any failing flash memory so we can replace the devices as soon as any are detected
by millenium7
Tue Dec 10, 2019 1:50 am
Forum: General
Topic: /interface ethernet set [ find default-name=ether1 ] speed=100Mbps
Replies: 5
Views: 2495

/interface ethernet set [ find default-name=ether1 ] speed=100Mbps

Why is this in so many router configs? Very rarely do I ever want to force the interface speed, yet this command appears very frequently for absolutely no reason First question is if auto-negotiation is ticked, does it do anything? (big problem if it does) Secondly why is it being set like that? It'...
by millenium7
Fri Dec 06, 2019 5:48 am
Forum: General
Topic: Any way to ignore FCS errors on a particular port?
Replies: 2
Views: 981

Any way to ignore FCS errors on a particular port?

This is a known issue with MikroTik and other vendors (Cambium and Ubiquiti in particular) with some devices. In my case specifically Cambium PTP radio's connected to a MikroTik router FCS errors are generated with very regular intervals,it's not an actual frame error and is not caused by bad cablin...
by millenium7
Thu Nov 14, 2019 11:55 am
Forum: General
Topic: Possible to export/print password?
Replies: 3
Views: 1087

Re: Possible to export/print password?

Well here's hoping that password hashes get included in the /export in a future firmware
by millenium7
Thu Nov 14, 2019 2:34 am
Forum: RouterOS v7 BETA
Topic: Poll: who wants to have a better /export ?
Replies: 17
Views: 5916

Re: Poll: who wants to have a better /export ?

There's a few things I would like to see - Definitely add options to specify terminal width and not export with any color or other terminal options using the /export command. Right now this only works if adding options to the username when logging in i.e. instead of "admin" you have to use...
by millenium7
Thu Nov 14, 2019 2:03 am
Forum: General
Topic: Possible to export/print password?
Replies: 3
Views: 1087

Re: Possible to export/print password?

Bump

Still need a way to audit for out of date passwords
by millenium7
Wed Nov 06, 2019 1:26 am
Forum: Beginner Basics
Topic: 2 public IPs from the same ISP
Replies: 3
Views: 981

Re: 2 public IPs from the same ISP

Policy based routing is really quite simple - Optionally add all internet services into an Interface List. I.e. I use 'InternetFacing' this way I don't need to duplicate all my firewall rules, i.e. instead of 'in-interface=ether1-ISP1' drop all rule. I just use 'in-interface-list=InternetFacing' wit...
by millenium7
Mon Nov 04, 2019 7:48 am
Forum: General
Topic: Chnage MTU PPPoE
Replies: 19
Views: 3283

Re: Chnage MTU PPPoE

I'm confused You can set the PPPoE MTU, but you don't type it in where it says "Actual MTU" you type 1492 into "Max MTU" and "Max MRU" The way MikroTik works with its PPPoE clients, if it can't successfully carry the requested size (or you don't enter one) it will drop ...
by millenium7
Mon Nov 04, 2019 7:34 am
Forum: General
Topic: Request: Take OSPF state changes out of 'debug' log category
Replies: 4
Views: 1539

Request: Take OSPF state changes out of 'debug' log category

Part of our monitoring is to log and alert of OSPF state changes. At the moment only the transition 'to DOWN' is logged as a 'route, ospf, info' message but anything else i.e. "state changed from Loading to Full" is in the 'route, ospf, debug' logging category This means I can't generate m...
by millenium7
Wed Oct 30, 2019 7:19 am
Forum: General
Topic: Possible to export/print password?
Replies: 3
Views: 1087

Possible to export/print password?

I know the obvious answer is 'no' for security reasons but i'm not actually looking for the password itself to a user account. I'm actually looking for user accounts that match a known password The reason being is I have templates I use to setup distribution routers with a default known password so ...
by millenium7
Wed Oct 23, 2019 6:21 am
Forum: Forwarding Protocols
Topic: OSPF PtMP type removes network advertisements?
Replies: 8
Views: 4501

Re: OSPF PtMP type removes network advertisements?

I would recommend using individual VLAN interfaces to each router anyway for the reason you can then apply CoS priority based on DSCP high 3 bits. As many radios will not read DSCP tags. But applying CoS at every hop in the network ensures you have working QoS everywhere and the only way to do that ...
by millenium7
Mon Oct 14, 2019 8:47 am
Forum: General
Topic: Collisions and deferred on gigabit port? how?
Replies: 3
Views: 1357

Re: Collisions and deferred on gigabit port? how?

the gigabit standard is full duplex. It may be possible to force it on a MikroTik but thats not the case therefore it should always 'fall back' to full duplex if the other side isn't explicitly asking to do half duplex. The opposite of what ethernet/fast ethernet is Either way, it's reporting full d...
by millenium7
Thu Oct 10, 2019 3:04 am
Forum: General
Topic: Collisions and deferred on gigabit port? how?
Replies: 3
Views: 1357

Collisions and deferred on gigabit port? how?

Riddle me this name="ether1" tx-packet=57 236 390 tx-64=996 840 tx-65-127=7 610 302 tx-128-255=49 379 966 tx-256-511=273 234 tx-512-1023=493 835 tx-1024-1518=15 100 tx-broadcast=559 491 tx-pause=0 tx-multicast=973 397 tx-collision=180 tx-excessive-collision=0 tx-multiple-collision=28 tx-si...
by millenium7
Fri Oct 04, 2019 10:59 am
Forum: General
Topic: Feature Request: SNMP-GET output to variable
Replies: 10
Views: 3195

Re: Feature Request: SNMP-GET output to variable

It's a bit of a chicken and egg scenario Because this feature doesn't work, it doesn't get used, people don't even think of it But if it was implemented, there's A LOT of potential power that can be leveraged with a simple MikroTik router I know i'd be writing monitoring templates then just chucking...
by millenium7
Tue Oct 01, 2019 1:19 am
Forum: General
Topic: Recommended hotel hotspot management software?
Replies: 5
Views: 1505

Re: Recommended hotel hotspot management software?

In all honesty I don't care if its MikroTik based or not. Infact having dedicated boxes we can easily spin up and install onsite to take care of that location i'm all in favor of as it moves that component completely off the main onsite router, easing troubleshooting and management But it must be so...
by millenium7
Mon Sep 30, 2019 9:00 am
Forum: General
Topic: Recommended hotel hotspot management software?
Replies: 5
Views: 1505

Recommended hotel hotspot management software?

We're currently using HSNM Hotspot Manager which is ok management wise and it ingrates nicely with MikroTik to serve HTML pages and handle logins locally, but there's just too many issues that seemingly cannot be fixed. Such as users having to continually log in (despite having the timeout periods s...
by millenium7
Wed Sep 18, 2019 2:10 am
Forum: General
Topic: Any way to filter out FCS errors on a specific interface?
Replies: 0
Views: 737

Any way to filter out FCS errors on a specific interface?

Doesn't have to be for the physical counters, but stop it appearing in the log files. This is a known issue between some cambium PTP products and MikroTik routers with neither one taking the blame. Every 30/60 seconds a FCS error happens, its extremely regular its not a physical line issue. It doesn...
by millenium7
Tue Sep 03, 2019 4:17 am
Forum: Wireless Networking
Topic: Hotspot woes, users having to keep signing in
Replies: 1
Views: 888

Hotspot woes, users having to keep signing in

We have 1 hotel in particular that continually complains about an issue that I can't seem to diagnose thus I can't fix it They keep saying that users are getting logged off and having to re sign in even in short periods of time I would like to know 'everywhere' that can influence hotspot users so I ...
by millenium7
Thu Aug 29, 2019 7:53 am
Forum: General
Topic: CAPSMAN - Control or disable ethernet interfaces?
Replies: 1
Views: 538

CAPSMAN - Control or disable ethernet interfaces?

We have some WSAP devices that have 2 accessible ethernet interfaces on the front. I want these ports to either be disabled, or bridged with the wireless interfaces so if any guests plug in to these ports they get access to the hotspot network and not the uplink interface that the WSAP is connected ...
by millenium7
Sun Aug 25, 2019 4:06 am
Forum: General
Topic: Hotspot and HTTPS? What solutions?
Replies: 58
Views: 14062

Re: Hotspot and HTTPS? What solutions?

Awesome response. Thank you for taking the time to clear it up Before I created this thread I had no knowledge of how the actual 'hotspot detection' works outside of a HTTP redirect when the user themselves opens a page and try and browse. But that's really a last ditch effort and in an ideal world ...
by millenium7
Wed Aug 21, 2019 7:31 am
Forum: Scripting
Topic: Triggered execution? Interface up/down etc
Replies: 6
Views: 4098

Re: Triggered execution? Interface up/down etc

Yep works perfectly, thanks
by millenium7
Tue Aug 20, 2019 1:57 pm
Forum: Scripting
Topic: Triggered execution? Interface up/down etc
Replies: 6
Views: 4098

Re: Triggered execution? Interface up/down etc

Ah maybe it does work then. I'll lab it up tomorrow and see how it goes

Nothing for ethernet though I presume?
by millenium7
Tue Aug 20, 2019 9:20 am
Forum: General
Topic: Hotspot and HTTPS? What solutions?
Replies: 58
Views: 14062

Re: Hotspot and HTTPS? What solutions?

Like said above, you should not be typing anything. Computers and phones have hotspot detection But as I keep saying, I want some actual information on this. Not just 'it should work' HOW does it work? I would like information on how all devices detect hotspot in the first place. Not just a brief o...
by millenium7
Tue Aug 20, 2019 9:12 am
Forum: Scripting
Topic: Triggered execution? Interface up/down etc
Replies: 6
Views: 4098

Triggered execution? Interface up/down etc

Is there a way to have scripts run on a triggered event rather than by scheduler? In particular i'm looking for a way to run a script when an interface goes up or down I can see this can be done on VRRP or PPPoE servers (via profile) but I actually need an event to run when the PPPoE Client interfac...
by millenium7
Tue Aug 20, 2019 6:53 am
Forum: General
Topic: Hotspot and HTTPS? What solutions?
Replies: 58
Views: 14062

Re: Hotspot and HTTPS? What solutions?

Here's a list of domains that devices check. I have no idea if this list is totally accurate and if its missing any (can't see a post date) but its a start https://success.tanaza.com/s/article/How-Automatic-Detection-of-Captive-Portal-works It's all well and good saying what should or shouldn't be d...
by millenium7
Sat Aug 17, 2019 10:21 am
Forum: General
Topic: Hotspot and HTTPS? What solutions?
Replies: 58
Views: 14062

Re: Hotspot and HTTPS? What solutions?

My main focus here is not in actually trying to redirect HTTPS, I really honestly don't give a flying stuff about that The real issue is simply when hotspot detection fails, the user gets no prompt or no notification in any way that they need to first 'sign in' and the normal behavior is they just o...
by millenium7
Fri Aug 16, 2019 4:25 pm
Forum: General
Topic: Is the FT4232HL serial chipset supported?
Replies: 4
Views: 1389

Re: Is the FT4232HL serial chipset supported?

Yeah its specific to that chip The freezing happens every time a channel is opened. And it can also be slow to be recognised and show up under system ports, sometimes up to 10+ minutes But it does work and is at least $1000 cheaper than a dedicated solution. Good enough for a worst case scenario Tha...
by millenium7
Fri Aug 16, 2019 11:14 am
Forum: General
Topic: Hotspot and HTTPS? What solutions?
Replies: 58
Views: 14062

Re: Hotspot and HTTPS? What solutions?

If the hotspot server is a mikrotik router, how do you accomplish this? Sorry, no idea, but doing this for long time already, on openwrt-based devices. Which are much better suited for hotspots with "advanced features", like this one. Any recommendations for a package we can put on a low ...
by millenium7
Fri Aug 16, 2019 11:08 am
Forum: General
Topic: Hotspot and HTTPS? What solutions?
Replies: 58
Views: 14062

Re: Hotspot and HTTPS? What solutions?

In part, HTTPS exists exactly to prevent such silent interception of web browsing. Doesn't change the fact that other hotspot devices have far, far better hotspot handling than MikroTik. It seems to 'just work' far more often. Whereas we constantly get the odd device that just doesn't play ball wit...
by millenium7
Fri Aug 16, 2019 9:11 am
Forum: General
Topic: Hotspot and HTTPS? What solutions?
Replies: 58
Views: 14062

Re: Hotspot and HTTPS? What solutions?

Make sure your hotspot is intercepting requests to hotspot-detection services that any modern OS has. This includes HTTP requests to URLs such as http://gstatic.com/generate_204 and intercepting all DNS requests eg for invalid / random hostnames like "xgjaiobman" If the hotspot server is ...
by millenium7
Fri Aug 16, 2019 8:22 am
Forum: General
Topic: Mikrotik: Change the default Powerbox config!
Replies: 16
Views: 3895

Re: Mikrotik: Change the default Powerbox config!

Mikrotik devices are not always used as expected by many customers. So they try to make the safest configuration possible for customers. I have seen devices just plugged in and not configured, with blank admin password. Last power box i saw like that was at a hotel to power their access points. The...
by millenium7
Fri Aug 16, 2019 7:38 am
Forum: General
Topic: Feature Request: SNMP-GET output to variable
Replies: 10
Views: 3195

Re: Feature Request: SNMP-GET output to variable

Bump I hope a MikroTik rep sees this and puts it on the drawing board. Would help a lot with the ability to read data off other devices Our primary use case is pre-emptive route failover but I can think of a lot of other use cases i.e. emailing to alert of high temperature of devices that don't supp...
by millenium7
Fri Aug 16, 2019 6:57 am
Forum: General
Topic: Is the FT4232HL serial chipset supported?
Replies: 4
Views: 1389

Re: Is the FT4232HL serial chipset supported?

Thought i'd post an update to this. The answer is yes its supported (StarTech USB to 4 port RS232 adapter incase link dies) nothing more required other than just plugging it in Serial sessions can be opened via the 'system serial-terminal port=usb1 channel=' command, channel being 0-3 for ports 1-4 ...
by millenium7
Thu Aug 15, 2019 9:03 am
Forum: General
Topic: 'ip ssh forwarding' any instance where it'll enable itself?
Replies: 1
Views: 783

'ip ssh forwarding' any instance where it'll enable itself?

Are there any instances where /ip ssh set forwarding-enabled=remote would be set automatically? I.e. firmware update etc
I'm seeing this has been turned on for some routers. I'm thinking they may be compromised and this is being used as an attack mechanism
by millenium7
Mon Jul 29, 2019 1:28 am
Forum: Forwarding Protocols
Topic: WISP OSPF Multi Area optimum configuration
Replies: 10
Views: 4291

Re: WISP OSPF Multi Area optimum configuration

MTU is end to end. If the customers session is 1480 they can never send or receive anything larger without fragmentation anyway. There's no reason you can't use 1500 byte PPPoE sessions though, as long as the equipment to the customer supports large enough L2MTU. You set your PPPoE server to Max-MTU...
by millenium7
Sun Jul 28, 2019 11:27 am
Forum: Forwarding Protocols
Topic: WISP OSPF Multi Area optimum configuration
Replies: 10
Views: 4291

Re: WISP OSPF Multi Area optimum configuration

Late response and I'm on a phone so I won't quote specific sections of text but.... PPPoE is staying in place in our network. Because Mikrotik doesnt support /32 DHCP address assignment for customers properly. Or rather the actual assignment of the address works ok but the router doesn't add a route...
by millenium7
Thu Jul 25, 2019 12:46 pm
Forum: Forwarding Protocols
Topic: IS-IS
Replies: 46
Views: 20488

Re: IS-IS

OSPF suuuuucks for wireless networks, company acquisitions and companies with rapid expansion. It's ok for university campuses or businesses that generally don't change much with a fairly fixed topology, but not for service providers or many modern companies that expand in unpredictable ways Having ...
by millenium7
Fri Jul 19, 2019 7:51 am
Forum: Wireless Networking
Topic: MikroTik AP and Mimosa SM's. No WDS? Workaround?
Replies: 2
Views: 1139

MikroTik AP and Mimosa SM's. No WDS? Workaround?

Is there a workaround I can implement for this? We have a network segment that is Mimosa with an A5 access point and C5 radio's. Behind all the C5 radio's are switches and then customers who use PPPoE The Mimosa's have been a constant pain in the ass and the biggest one is they don't even allow half...
by millenium7
Fri Jul 12, 2019 4:24 pm
Forum: General
Topic: CRS3xx hardware offload with split-horizon? or similar setup?
Replies: 6
Views: 1358

Re: CRS3xx hardware offload with split-horizon? or similar setup?

Must be a bug then. Switch is a CRS317 running 6.44.3 so its a recent firmware. Definitely does not show up in a normal /export
It doesn't even show if I do a '/interface ethernet switch export'
I have to specifically do '/interface ethernet switch port export'
by millenium7
Fri Jul 12, 2019 2:43 pm
Forum: General
Topic: CRS3xx hardware offload with split-horizon? or similar setup?
Replies: 6
Views: 1358

Re: CRS3xx hardware offload with split-horizon? or similar setup?

Yeah I managed to set it, wasn't messy

Thing I really don't like though is switch commands don't show up in a /export
by millenium7
Thu Jul 11, 2019 9:54 am
Forum: General
Topic: CRS3xx hardware offload with split-horizon? or similar setup?
Replies: 6
Views: 1358

CRS3xx hardware offload with split-horizon? or similar setup?

Setting a horizon value on a bridge port disables hardware offload on that port, so this isn't an option But I have a setup that requires ports to be isolated from each other to prevent any accidental loop and reduce unnecessary broadcast traffic How else can it be achieved without lots of messy fil...
by millenium7
Thu Jul 04, 2019 9:26 am
Forum: Forwarding Protocols
Topic: WISP OSPF Multi Area optimum configuration
Replies: 10
Views: 4291

Re: WISP OSPF Multi Area optimum configuration

As present I don't have any PTP failover links ! So not sure if should still use BFD! Unfortunately MikroTik just isn't as stable as Cisco/Juniper etc. In an ideal world BFD would just work flawlessly all the time and then its an an easy answer of enable it everywhere in the network Sometimes its n...
by millenium7
Thu Jul 04, 2019 4:29 am
Forum: General
Topic: QoS prioritization only, without shaping?
Replies: 26
Views: 6391

Re: QoS prioritization only, without shaping?

Have started getting setup for this but its quite a long process adding VLAN tags to all router links - especially when there's a switch like a Netonix in between as their default policy is drop all unknown VLAN's, takes a fair bit more time per link to change But this is also a good opportunity to ...
by millenium7
Wed Jul 03, 2019 7:00 am
Forum: Forwarding Protocols
Topic: WISP OSPF Multi Area optimum configuration
Replies: 10
Views: 4291

Re: WISP OSPF Multi Area optimum configuration

So you're carrying the VLAN all the way through the network? Been there, seen that, it's really really bad and not scalable. I would make getting extended bridges out of your network a top priority, as it becomes much harder to remove the bigger you get. VLAN's shouldn't go any further than the dire...
by millenium7
Tue Jul 02, 2019 3:06 am
Forum: Scripting
Topic: Script to disable Wlan when no user are logged on
Replies: 8
Views: 3035

Re: Script to disable Wlan when no user are logged on

Hello, I am well on my way to make our MikroTiks environmentally friendly. I have reduced their power output, assigned the mode button to switch wlan on or off, and now I would like the router to disable wlan when all users have disconnected from wlan. Have you done the calculations to determine ho...
by millenium7
Tue Jul 02, 2019 2:38 am
Forum: Forwarding Protocols
Topic: ❗️❓ UNSTABLE VPLS on Wireless networks
Replies: 13
Views: 4264

Re: ❗️❓ UNSTABLE VPLS on Wireless networks

Just regarding NBMA OSPF type. I would advise against it. I've had issues with NBMA being unreliable for no apparent reason I've found the best option on MikroTik if you have a point-to-multipoint setup is to instead create separate VLAN interfaces (1 for each neighboring router) and then use the po...
by millenium7
Tue Jul 02, 2019 2:31 am
Forum: Forwarding Protocols
Topic: OSPF Loopback + MPLS Loopback
Replies: 7
Views: 3525

Re: OSPF Loopback + MPLS Loopback

Just curious asking why on our network that a previous techie would create both OSPF and MPLS loopbacks on routers each with there own ip range ?
Cause he was a massive goose?
by millenium7
Tue Jul 02, 2019 2:28 am
Forum: Forwarding Protocols
Topic: WISP OSPF Multi Area optimum configuration
Replies: 10
Views: 4291

Re: WISP OSPF Multi Area optimum configuration

Need more info on the topology For instance are PPPoE sessions terminated closest to the customer, or are they all terminated at a central PPPoE concentrator? If the latter are you using VPLS tunnels (or something else like EoIP?) Do you have BGP running internally in the network? These answers chan...
by millenium7
Tue Jun 25, 2019 2:05 am
Forum: General
Topic: Make OSPF 'adjacency' display by default in neighbors
Replies: 0
Views: 778

Make OSPF 'adjacency' display by default in neighbors

I don't know why this wouldn't have been the default since like ROS v1.0 Can you change it so that by default in the neighbors tab of OSPF it shows the adjacency time column? That's right in your face on any other routing platform when doing a "show ip neighbor" and is a really useful bit ...
by millenium7
Mon Jun 24, 2019 8:16 am
Forum: RouterBOARD hardware
Topic: CCR1036-8G-2S+ - SFP+ port stops transmitting data?
Replies: 19
Views: 7578

Re: CCR1036-8G-2S+ - SFP+ port stops transmitting data?

I setup a lab using 1 of the existing routers, leaving config exactly the same. Used other devices to simulate switches and other routers Setup BGP+OSPF+MPLS routers as good as I can but obviously not as big as the actual network. Added 200 PPPoE sessions with traffic generator across several router...
by millenium7
Thu Jun 20, 2019 4:49 am
Forum: Forwarding Protocols
Topic: OSPF 60GHz and 5GHz with two hex
Replies: 5
Views: 3055

Re: OSPF 60GHz and 5GHz

The way I do this in our network is first make sure you aren't bridging the 60ghz and 5ghz together. You want to use routing Set IP addresses on 60ghz and 5ghz links in different subnets i.e. 10.0.0.0/29 for 60ghz and 10.0.1.0/29 for 5ghz Set up OSPF for both networks. Use type point-to-point (most ...
by millenium7
Thu Jun 20, 2019 4:16 am
Forum: General
Topic: Feature Request: container host (e. g. Docker host) instead of MetaROUTER
Replies: 3
Views: 3558

Re: Feature Request: container host (e. g. Docker host) instead of MetaROUTER

This would be great if we could spin up small servers running on the RouterBoard hardware i.e. network monitoring collectors

However the downside is massive potential for security holes at the hardware and kernel level so thats why I think they would never implement it
by millenium7
Tue Jun 18, 2019 12:48 pm
Forum: The Dude
Topic: The Dude IS Dead, really, isn't it?
Replies: 41
Views: 17859

Re: The Dude IS Dead, really, isn't it?

NetXMS is IMO the very best 'free' platform out there, by quite a long margin. But its the best 'theoretically' That's the problem with it. It's not the best out of the box, it actually is really difficult to get it to do some pretty basic things like 'just start monitoring bandwidth on all interfac...
by millenium7
Tue Jun 18, 2019 12:34 pm
Forum: RouterBOARD hardware
Topic: CCR1036-8G-2S+ - SFP+ port stops transmitting data?
Replies: 19
Views: 7578

Re: CCR1036-8G-2S+ - SFP+ port stops transmitting data?

We have this problem, but for us it happens every 30-90 days or so. It last happened 57 days ago. We have a ping watchdog to reboot the router when this happens. Disabling and re-enabling the interface might fix it too. Same CCR1036-8G-2S+, first generation. We have two CCR's connected to each othe...
by millenium7
Tue Jun 18, 2019 11:51 am
Forum: General
Topic: QoS prioritization only, without shaping?
Replies: 26
Views: 6391

Re: QoS prioritization only, without shaping?

We only do this queue tree setup on links from 3rd party connectivity vendors where they guarantee us a certain bandwidth amount where we are at risk of actually maxing out that amount. It doesn't make sense to set up these queue trees and packet marks if the router is only connected to radio links...
by millenium7
Tue Jun 18, 2019 6:04 am
Forum: General
Topic: Suggestion: Completely virtual router based on two physical routers
Replies: 185
Views: 41409

Re: Suggestion: Completely virtual router based on two physical routers

Just with the default 'disk' action which creates file beginning with 'log.' then the sequence number, then ends in txt i.e. log.0.txt and log.1.txt by default The reason for logging to disk is incase connectivity is lost i.e. interfaces locking up, at least logs would be stored if theres no other w...
by millenium7
Mon Jun 17, 2019 4:06 pm
Forum: General
Topic: CCR SFP interface locking up if OSPF/MPLS enabled
Replies: 0
Views: 636

CCR SFP interface locking up if OSPF/MPLS enabled

Further details are here https://forum.mikrotik.com/viewtopic.php?f=3&t=149273&p=735586#p735586 But the short version is we have plenty of MikroTik routers out there all working fine with OSPF, MPLS and BGP just fine. But the ones in our data center have their SFP+ interfaces partially lock ...
by millenium7
Mon Jun 17, 2019 3:53 pm
Forum: RouterBOARD hardware
Topic: CCR1036-8G-2S+ - SFP+ port stops transmitting data?
Replies: 19
Views: 7578

Re: CCR1036-8G-2S+ - SFP+ port stops transmitting data?

replaced with brand new CCR1016's and the same problem happens! This is caused by either OSPF or MPLS in combination with what's already running (eBGP, iBGP, PPPoE, IPSec). When OSPF+MPLS are disabled it's fine. But when enabling them the network is perfectly stable and looks totally fine for a few ...
by millenium7
Mon Jun 17, 2019 10:08 am
Forum: General
Topic: Suggestion: Completely virtual router based on two physical routers
Replies: 185
Views: 41409

Re: Suggestion: Completely virtual router based on two physical routers

I noticed the copying of files to be a problem. Is it possible for you to change that in your script to exclude anything beginning with 'log.' ? Reason is I was logging to disk any errors to try and help troubleshoot the issues we were having when we couldn't catch it in time, but when the router re...
by millenium7
Mon Jun 17, 2019 9:57 am
Forum: General
Topic: QoS prioritization only, without shaping?
Replies: 26
Views: 6391

Re: QoS prioritization only, without shaping?

Ok i'm liking this QoS implementaiton, its quite simple to implement and elegant. However couple more questions I've been labbing this just with a couple of routers connected via 100mbit ethernet to first get the queueing correct then i'll test with radio's in between Baseline was just to have no Qo...
by millenium7
Mon Jun 17, 2019 5:55 am
Forum: General
Topic: Suggestion: Completely virtual router based on two physical routers
Replies: 185
Views: 41409

Re: Suggestion: Completely virtual router based on two physical routers

Ok. As I said I don't think its the script because I can't think of any way to even make an interface do that, even if intentionally trying Good to know the reboots are a normal thing. It was happening more than once a day but knowing that its also caused by 'system history print' answers why becaus...
by millenium7
Mon Jun 17, 2019 5:54 am
Forum: General
Topic: QoS prioritization only, without shaping?
Replies: 26
Views: 6391

Re: QoS prioritization only, without shaping?

Ok but I have heard its best practice to use QoS tags at Layer3 as opposed to Layer2 so why not use DSCP tags instead of CoS?

And does a MikroTik router actually do anything with DSCP tagged packets by default or does it need to configured with mangle or queue's to apply prioritization to traffic?
by millenium7
Mon Jun 17, 2019 5:16 am
Forum: General
Topic: QoS prioritization only, without shaping?
Replies: 26
Views: 6391

Re: QoS prioritization only, without shaping?

The router-router links don't use VLAN's though They just speak to each other on the ethernet link i.e. ether5 on RouterA connects to PTP670 link connects to ether7 on RouterB So using the set priority mangle rule wouldn't do anything? Or would it still tag packets with native VLAN id so that priori...
by millenium7
Mon Jun 17, 2019 3:21 am
Forum: General
Topic: QoS prioritization only, without shaping?
Replies: 26
Views: 6391

Re: QoS prioritization only, without shaping?

Ok so i'm a bit confused as to which method to use here. So lets step it back and i'll give a couple of different scenario's that may need different methods Background: We primarily use Cambium radio's but do use some Ubiquiti and a few Mikrotik I'm going to talk about our backbone infrastructure an...
by millenium7
Thu Jun 13, 2019 1:33 pm
Forum: RouterBOARD hardware
Topic: CCR1036-8G-2S+ - SFP+ port stops transmitting data?
Replies: 19
Views: 7578

Re: CCR1036-8G-2S+ - SFP+ port stops transmitting data?

Nope, new hardware revision and 6.44.3 still same problem So it's very likely some bug with the hardware or underlying OS that produces no logs and no information to us. As I can't possibly see how you can stop a SFP port from transmitting data no matter what you tried to do via scripting or configu...
by millenium7
Thu Jun 13, 2019 10:22 am
Forum: General
Topic: Suggestion: Completely virtual router based on two physical routers
Replies: 185
Views: 41409

Re: Suggestion: Completely virtual router based on two physical routers

Do you run this on any routers other than 1009's? I also want to ask if its normal behavior for the standby to regularly reboot? I don't know the exact interval but maybe once every 2 hours? We were running the older version on 6.42.3 and aside from the standby rebooting it did seem to work fine for...
by millenium7
Thu Jun 13, 2019 9:54 am
Forum: RouterBOARD hardware
Topic: CCR1036-8G-2S+ - SFP+ port stops transmitting data?
Replies: 19
Views: 7578

Re: CCR1036-8G-2S+ - SFP+ port stops transmitting data?

Cycling interface isn't a solution and for us would still result in an extended outage as this router handles PPPoE connections Have replaced 1x router with the new CCR1036 revision that has dual power supplies and updated both to 6.44.3 including firmware Will report back if it continues to lock up...
by millenium7
Wed Jun 12, 2019 12:02 pm
Forum: RouterBOARD hardware
Topic: CCR1036-8G-2S+ - SFP+ port stops transmitting data?
Replies: 19
Views: 7578

CCR1036-8G-2S+ - SFP+ port stops transmitting data?

This has just happened out of the blue. All data is transmitted to/from one of these routers via the SFPPlus1 port (connected with a Direct Attach Cable to a Mikrotik CRS328) I went to site and logged into the router via ethernet/laptop before touching anything and found the port just entirely stopp...
by millenium7
Wed Jun 12, 2019 7:42 am
Forum: General
Topic: QoS prioritization only, without shaping?
Replies: 26
Views: 6391

Re: QoS prioritization only, without shaping?

So for all our routers just add a rule at the top of mangle with passthrough ticked
'set priority'
new priority: from dscp

And that's all thats needed? (Assuming DSCP is already set, otherwise add more mangle rules to set DSCP bits)

No queue's added?
by millenium7
Wed Jun 12, 2019 6:57 am
Forum: General
Topic: QoS prioritization only, without shaping?
Replies: 26
Views: 6391

QoS prioritization only, without shaping?

How is QoS configured on MikroTik for just packet prioritization and no shaping? i.e. just making sure high priority packets that are received immediately get pushed to the front of the queue and transmitted as soon as possible, retransmissions for those packets take priority etc. Not any form of sh...
by millenium7
Thu May 30, 2019 10:52 am
Forum: Scripting
Topic: Script for DHCP leases without terminal width issue
Replies: 0
Views: 956

Script for DHCP leases without terminal width issue

I've written a small script that solves the problem of values being cut off in the output, as MikroTik sometimes infers an 80 character column width Note to MikroTik devs: Please add a console command to manually set terminal width like almost every network vendor has. I know you can set it via the ...
by millenium7
Wed May 22, 2019 6:35 am
Forum: General
Topic: SNMPv3 Encryption doesn't work?
Replies: 0
Views: 664

SNMPv3 Encryption doesn't work?

Trying to setup SNMPv3 on a few routers that are polled across the internet If I set 'security' type to Authorized (no encryption) it works fine. But 'Private' doesn't work when I turn on logging on the MikroTik I see Packet(v3)from: [Source IP] v3 user: [Username] bad v3 packet security level: 1 v3...
by millenium7
Mon May 20, 2019 3:31 pm
Forum: General
Topic: Mikrotik as XModem transmitter?
Replies: 3
Views: 1214

Re: Mikrotik as XModem transmitter?

Perfect, thanks

Next question though is can I actually upload firmware via serial? because a bit of reading seems to suggest its only for boot loader not RouterOS
by millenium7
Mon May 20, 2019 7:22 am
Forum: General
Topic: Mikrotik as XModem transmitter?
Replies: 3
Views: 1214

Mikrotik as XModem transmitter?

I've build an out of band management solution with a 4 port RS232 hub and a mikrotik mAP. It works perfectly fine connecting to other Mikrotik devices using /system serial-terminal usb1 channel=0/1/2/3 Even allows simultaneous sessions to multiple ports. This is all great stuff However I can't see a...
by millenium7
Fri Apr 26, 2019 8:03 am
Forum: Forwarding Protocols
Topic: Your experience with larger/diverse Area0 OSPF networks?
Replies: 19
Views: 4806

Re: Your experience with larger/diverse Area0 OSPF networks?

; I you have that scenario I'll prefer BGP to the customer instead of OSPF;
Regarding BGP, it's not an option in the Mikrotik world if you want MPLS based services to the customer (we almost exclusively use PPPoE and carry it over VPLS tunnels) as Mikrotik doesn't support BGP LU
by millenium7
Fri Apr 26, 2019 1:44 am
Forum: Forwarding Protocols
Topic: Your experience with larger/diverse Area0 OSPF networks?
Replies: 19
Views: 4806

Re: Your experience with larger/diverse Area0 OSPF networks?

EIGRP was Cisco proprietary for a long time, it no longer is. There are a couple other vendors that use it Many extensions to EIGRP are still Cisco proprietary but the core functionality and the bits that matter are there for anyone to implement There is no technical reason why EIGRP couldn't be a w...
by millenium7
Thu Apr 25, 2019 7:13 am
Forum: Forwarding Protocols
Topic: Your experience with larger/diverse Area0 OSPF networks?
Replies: 19
Views: 4806

Re: Your experience with larger/diverse Area0 OSPF networks?

millenium7, if your WISP grows enough you'll see that an OSPF structured design combined with BGP is a great advantage, I've seen so many networks that grows in many directions became really unstable You can't always structure it the way OSPF wants you to due to its inherently restrictive enterpris...
by millenium7
Thu Apr 25, 2019 4:39 am
Forum: Forwarding Protocols
Topic: Your experience with larger/diverse Area0 OSPF networks?
Replies: 19
Views: 4806

Re: Your experience with larger/diverse Area0 OSPF networks?

At only 7 sites in and 250 routes, we are already looking for a new solution before we grow out of control. The concept of Area0, no area-to-area communication (must go through area0) and all area's must connect to 0, no ability to summarize except at ABR's is just awful for WISP design where the n...
by millenium7
Tue Apr 23, 2019 8:22 am
Forum: Forwarding Protocols
Topic: Your experience with larger/diverse Area0 OSPF networks?
Replies: 19
Views: 4806

Re: Your experience with larger/diverse Area0 OSPF networks?

1. 276 routers and 2385 active routes 2. 202 routers and 1338 active routes 3. 142 routers and 846 active routes The current networks are stable, even when one or two routers are flapping (due for example to a marginal radio link). On the other hand, our current success may or may not be helped by ...
by millenium7
Tue Apr 23, 2019 3:15 am
Forum: General
Topic: HotSpot IP POOL - running out of addresses
Replies: 6
Views: 7061

Re: HotSpot IP POOL - running out of addresses

I know this is an old post but it comes up in a google search so I feel I should post the solution here Had the same problem, DHCP leases were expiring just fine but they were stuck in the IP Pool / Used Addresses section Fix is simple. Go to IP Hotspot Servers and specify an idle timeout period, mi...
by millenium7
Tue Apr 23, 2019 1:27 am
Forum: Forwarding Protocols
Topic: Your experience with larger/diverse Area0 OSPF networks?
Replies: 19
Views: 4806

Re: Your experience with larger/diverse Area0 OSPF networks?

Besides that, those Mikrotik works great, the convergence by default in OSPF (hello/dead timers at 10secs & 40secs) is practically imperceptible for my customers; the ECMP load-balancing works great too, it's my best solution to deploy a 20gig ring between two cities in the country, or even to ...
by millenium7
Sat Apr 20, 2019 2:44 am
Forum: Forwarding Protocols
Topic: VLAN - best practice?
Replies: 9
Views: 4375

Re: VLAN - best practice?

Interesting functionality what is the use case for that scenario vice simply using one vlan for both subnets?? Obviously there seems to be a reason to have two VLANS vice one and normally if there is some degree of sharing (common printer etc) then firewall can be made so that the connectivity need...
by millenium7
Tue Apr 16, 2019 7:56 am
Forum: General
Topic: LTE failover just doesn't work properly
Replies: 2
Views: 906

LTE failover just doesn't work properly

We've had a growing number of complaints about backup 4g/LTE services just not working and it's been a constant source of frustration for both parties, as whenever I tested is in the lab and heck even on site it would work just fine Our primary internet service is delivered via PPPoE so if there's a...
by millenium7
Tue Apr 16, 2019 7:04 am
Forum: Forwarding Protocols
Topic: IS-IS
Replies: 46
Views: 20488

Re: IS-IS

+1 for IS-IS
+1000 for EIGRP which is not Cisco proprietary and hasn't been for years
by millenium7
Tue Apr 16, 2019 5:11 am
Forum: Forwarding Protocols
Topic: Your experience with larger/diverse Area0 OSPF networks?
Replies: 19
Views: 4806

Your experience with larger/diverse Area0 OSPF networks?

Thought i'd throw this out there to get a case study of OSPF backbone networks that have continually grown and not segregated into multiple area's or multiple instances I'd primarily like to hear from people who have routers that include wireless links, slow/unreliable links, long daisy chained segm...
by millenium7
Tue Apr 16, 2019 4:33 am
Forum: Forwarding Protocols
Topic: VLAN - best practice?
Replies: 9
Views: 4375

Re: VLAN - best practice?

Due to the nature of bridges, I always put the vlans on the physical interfaces then create a bridge for each vlan, I don't rely on the bridges switch logic for vlan filtering (and I believe it is disabled by default anyways). That method is only for the CCR platforms though which is why I asked. T...
by millenium7
Tue Apr 16, 2019 4:29 am
Forum: Forwarding Protocols
Topic: OSPF PtMP type removes network advertisements?
Replies: 8
Views: 4501

Re: OSPF PtMP type removes network advertisements?

I don't remember where this was in our topology so I can't go and find what I did to fix it But I do know that I don't ever use the PTMP network type anymore, and I exclusively use point-to-point so i'm guessing this is what I did with that link as well All multi-point links now use individual VLAN'...
  • 1
  • 2