Community discussions

Search found 784 matches

  • 1
  • 2
  • 3
  • 4
  • 5
  • 16
by mducharme
Fri Jul 19, 2019 8:16 pm
Forum: Announcements
Topic: v6.44.5 [long-term] is released!
Replies: 63
Views: 9370

Re: v6.44.5 [long-term] is released!

I got problem with dhcp-relay , after upgrade my client cannot get address.
Now I downgrade to version 6.43.16 it work fine.
FYI we have tested this on our devices - DHCP relay is working fine for us on 6.44.5.
by mducharme
Tue Jul 16, 2019 12:39 am
Forum: Forwarding Protocols
Topic: PPPoE over VPLS Tunnel - Client Ping mac server pppoe but it does not connect
Replies: 6
Views: 388

Re: PPPoE over VPLS Tunnel - Client Ping mac server pppoe but it does not connect

When you do ping, its travel via IP protocols with ospf support. Try to look at your mpls LSP to your pppoe server. Dont work. In R3 adding an IP and pinged to R1. But if I add this ip on the client that is on the R3 bridge I can not ping. You'll have to share more of your config to get proper assi...
by mducharme
Sat Jul 13, 2019 7:51 pm
Forum: General
Topic: Routing Question: Not able to get 1 gbps through our gateway with our router inline can without it
Replies: 4
Views: 458

Re: Routing Question: Not able to get 1 gbps through our gateway with our router inline can without it

It's a multi thread test such as speedtest.net I have also worked with my upstream provider to setup a speedtest called truespeed this is a test from their data center to my gateway. Same poor results on both test. Hooked directly to their copper gateway port I get tcp throughput in the 940mbps are...
by mducharme
Thu Jul 11, 2019 10:12 pm
Forum: Forwarding Protocols
Topic: OSPF Loopback + MPLS Loopback
Replies: 7
Views: 920

Re: OSPF Loopback + MPLS Loopback

The main reason why you would want to do something like this is if you wanted to have traffic from loopback to loopback that didn't have an MPLS label. If the advertisement filter is set to only advertise the MPLS loopbacks and not the other loopback, you can use the other loopback for cases where y...
by mducharme
Thu Jul 11, 2019 10:07 pm
Forum: Announcements
Topic: v6.46beta [testing] is released!
Replies: 45
Views: 7605

Re: v6.46beta [testing] is released!

3) Update server to the v6.45beta9;
4) Then update all the hosts to the v6.45beta9;
Don't you mean v6.46beta9?
by mducharme
Thu Jul 11, 2019 3:54 am
Forum: General
Topic: DHCPd specific IP addresses to specific physical ETHx ports.
Replies: 5
Views: 390

Re: DHCPd specific IP addresses to specific physical ETHx ports.

I don't believe proxy ARP is a good solution for your needs, it is a bit of a hack. You are better off assigning subnets to each port (i.e. allocate a bunch of /30 subnets) and set up a dhcp server for each.
by mducharme
Mon Jul 08, 2019 5:40 am
Forum: Beginner Basics
Topic: QoS question.
Replies: 4
Views: 287

Re: QoS question.

You can try this: viewtopic.php?f=9&t=129294

That is not a typical feature for QoS, but it looks like someone has implemented it.
by mducharme
Mon Jul 08, 2019 5:20 am
Forum: Beginner Basics
Topic: QoS question.
Replies: 4
Views: 287

Re: QoS question.

Is this a MIkrotik limitation or a QoS limitation in general? How other vendors handle this? This is a general QoS limitation. With all products you need to enter a maximum rate and they use this to determine if the upstream provider is congested. If you are below this maximum rate and the provider...
by mducharme
Mon Jul 08, 2019 12:41 am
Forum: Forwarding Protocols
Topic: OSPF Force path for specific subnet
Replies: 6
Views: 392

Re: OSPF Force path for specific subnet

Can you run two instances of OSPF between the same two routers (with multiple loopback addresses, etc) and make this work?
Possibly, but that would be a really strange setup. It is very unusual to establish OSPF neighbor with another ISP. You would typically use BGP in this role.
by mducharme
Sun Jul 07, 2019 9:20 pm
Forum: General
Topic: Bridge is resetting CoS to 0 (was: Setting CoS from DSCP on PPPoE server)
Replies: 7
Views: 465

Re: Bridge is resetting CoS to 0 (was: Setting CoS from DSCP on PPPoE server)

Another thing I didn't mention is that after this VLAN-tagged PPPoE frame leaves the PPPoE NAS, it gets shoved into a VPLS tunnel. And the thing that kills me is that there is a CLEAR inconsistency between how ROS treats priority when it comes to MPLS EXP and how it treats priority when it comes to...
by mducharme
Sun Jul 07, 2019 9:09 pm
Forum: Beginner Basics
Topic: QoS question.
Replies: 4
Views: 287

Re: QoS question.

is there any way to set aside 2 Mbits for certain type of traffic (VoIP for example) , regardless of the total available bandwidth? I want to make sure certain traffic gets at least 2 Mbits, leaving the rest for anything else (web browsing, email, chat, etc) No - you might be able to build a script...
by mducharme
Sun Jul 07, 2019 3:27 am
Forum: Forwarding Protocols
Topic: OSPF Force path for specific subnet
Replies: 6
Views: 392

Re: OSPF Force path for specific subnet

Any other option? Another routing protocol? multiple OSPF instances perhaps?
You might be able to do this with BGP, depending on your topology.
by mducharme
Mon Jul 01, 2019 9:56 pm
Forum: Announcements
Topic: v6.45.1 [stable] is released!
Replies: 416
Views: 55366

Re: v6.45.1 [stable] is released!

The API logins were broken in the last beta of 6.45 as well. Is it related to the removal of the old unencrypted password store?
by mducharme
Thu Jun 27, 2019 4:04 am
Forum: General
Topic: Routing a Block of Public IP Addresses
Replies: 37
Views: 1920

Re: Routing a Block of Public IP Addresses

Does this look right?
John
Yes, that looks good to me, and correct. Should work fine.
by mducharme
Wed Jun 26, 2019 6:08 pm
Forum: General
Topic: Routing a Block of Public IP Addresses
Replies: 37
Views: 1920

Re: Routing a Block of Public IP Addresses

Or would this be more correct: Edge Router route: Destination Address: 198.1.2.128/29 Gateway Address: 10.0.247.101 where 198.1.2.128/29 sets up 6 usable IP addresses and routes those to the Network 2 (which is the first Site Router network) Destination Address: 198.1.2.136/29 Gateway Address: 10.0...
by mducharme
Wed Jun 26, 2019 5:41 pm
Forum: General
Topic: Routing a Block of Public IP Addresses
Replies: 37
Views: 1920

Re: Routing a Block of Public IP Addresses

And I made a mistake. It's 198.1.2.128/26, not /29. John If it is a /26, then you can do it the normal way and split that up across multiple site routers - as long as you only have a few "sites", the trade-off is not bad. The advantage is this will work with any router and is the normal way so it i...
by mducharme
Wed Jun 26, 2019 5:15 pm
Forum: General
Topic: Routing a Block of Public IP Addresses
Replies: 37
Views: 1920

Re: Routing a Block of Public IP Addresses

No, the 38.1.2.128/29 range is provided by the upstream provider as a 'transport' only. The client 'block is the 198.1.2.128/29 range. Right, sorry, misread your last post. I meant 198.1.2.128/29 Something else that others, with whom I've spoken to about this subject, had mentioned was the necessit...
by mducharme
Wed Jun 26, 2019 7:45 am
Forum: Forwarding Protocols
Topic: MPLS over GRE MTU question
Replies: 8
Views: 495

Re: MPLS over GRE MTU question

So you're saying the MPLS L2MTU is the GRE tunnels' 1500-24? So I have to use the IP MTU of the GRE tunnel to determine the L2MTU of MPLS? A GRE packet is never going to grow above the IP MTU of the interface that it is sent over. I am assuming you are probably using IP MTU 1500 on most interfaces ...
by mducharme
Wed Jun 26, 2019 7:33 am
Forum: General
Topic: Routing a Block of Public IP Addresses
Replies: 37
Views: 1920

Re: Routing a Block of Public IP Addresses

I think I've got it! That actually sounds pretty simple. :-) So I just need to set up incoming routes to get traffic to the correct Client Router/Network. I assume you are trying trying to use the IPs on that 38.1.2.128/29 subnet to assign to various client routers on their WAN ports (one for each)...
by mducharme
Tue Jun 25, 2019 1:19 am
Forum: Forwarding Protocols
Topic: MPLS over GRE MTU question
Replies: 8
Views: 495

Re: MPLS over GRE MTU question

But there is a physical L2MTU, depending on the parent interface that the traffic is leaving from, correct? When does GRE start fragmenting the L2 stuff? It's long before 65535, obviously. GRE is 24 bytes overhead - assuming your GRE tunnel is running over 1500 IP MTU, subtract 24 bytes for the GRE...
by mducharme
Tue Jun 25, 2019 1:12 am
Forum: General
Topic: Bridge is resetting CoS to 0 (was: Setting CoS from DSCP on PPPoE server)
Replies: 7
Views: 465

Re: Setting CoS from DSCP on PPPoE server

What am I missing? I haven't tried this myself, but is your setup a bridge with a VLAN on it, or is it a bridge where there is a VLAN interface as the port of the bridge? There is sometimes a difference in behavior between the two - we do some QoS stuff with bridge filters that works only with the ...
by mducharme
Mon Jun 24, 2019 11:54 pm
Forum: Beginner Basics
Topic: Captive portal for Wi-Fi users (no authentication, no internet)
Replies: 8
Views: 502

Re: Captive portal for Wi-Fi users (no authentication, no internet)

Apologies for the doubt but like I said I'm new with this mikrotik and I've tried most hotspot tutorials from here but with no luck. Perhaps if you could please kindly show me how, step by step on how to accomplish this I would really really appreciate it. What you want to do is very similar to the...
by mducharme
Mon Jun 24, 2019 9:40 pm
Forum: General
Topic: Routing a Block of Public IP Addresses
Replies: 37
Views: 1920

Re: Routing a Block of Public IP Addresses

So, other 'regular' traffic should pass then, correct? Unless it's specifically blocked in the firewall of one of the routers. Correct?
Yes, exactly. Also as an ISP it makes sense to allow most (if not all) ICMP - it makes troubleshooting much easier.
by mducharme
Mon Jun 24, 2019 8:43 pm
Forum: General
Topic: Routing a Block of Public IP Addresses
Replies: 37
Views: 1920

Re: Routing a Block of Public IP Addresses

I've typed /24 too many times. Yes, it's 0.0.0.0/0 on all routers.

John
Add two firewall rules to allow all ICMP on input and forward chains and move them to the top of the list on all three routers, then try the ping again.
by mducharme
Mon Jun 24, 2019 8:26 pm
Forum: Announcements
Topic: v6.45beta [testing] is released!
Replies: 305
Views: 66266

Re: v6.45beta [testing] is released!

Are there any plans to add a simple EAP server authentication where there is no RADIUS server? i.e. Something like xauth for IKEv1 where you can define local users on the router itself? We have a few situations where there is no local RADIUS and certificates are more complicated for end users where ...
by mducharme
Mon Jun 24, 2019 7:53 pm
Forum: General
Topic: Routing a Block of Public IP Addresses
Replies: 37
Views: 1920

Re: Routing a Block of Public IP Addresses

They are set up as a chain. Client Router has 0.0.0.0/24 with Gateway as 10.1.1.254 (which is one of the LAN IP addresses on the Site Router). Site Router has 0.0.0.0/24 with Gateway as 10.0.247.254 (which is one of the LAN IP addresses on the Edge Router). Client routers have internet access just ...
by mducharme
Mon Jun 24, 2019 7:23 pm
Forum: General
Topic: Routing a Block of Public IP Addresses
Replies: 37
Views: 1920

Re: Routing a Block of Public IP Addresses

From Site Router 1, I can ping the Client Router. If I understand correctly, this is because there is a route automatically set up in Site Router 1, since the Client Router is directly connected to Site Router 1. Is this correct? Yes But I still can't ping 10.1.1.1 from the Edge Router. What am I d...
by mducharme
Sun Jun 23, 2019 11:12 pm
Forum: General
Topic: Push remote route through ppp
Replies: 2
Views: 309

Re: Push remote route through ppp

There is no good solution for this with l2tp. The best way to accomplish this is with IPsec road warrior.

https://wiki.mikrotik.com/wiki/Manual:I ... _Mode_Conf

The split-include takes care of this.
by mducharme
Sun Jun 23, 2019 6:15 pm
Forum: General
Topic: Routing a Block of Public IP Addresses
Replies: 37
Views: 1920

Re: Routing a Block of Public IP Addresses

mducharme, I think I understand what you're saying. I think this again goes back to my background in communications. I'm definitely going to have to 'reshape' my thinking. :-) And there's obviously going to have to be routes in the Client Router to reach the internet, correct? Yes, obviously, but t...
by mducharme
Sun Jun 23, 2019 5:49 am
Forum: General
Topic: Routing a Block of Public IP Addresses
Replies: 37
Views: 1920

Re: Routing a Block of Public IP Addresses

The Edge Router needs a route in place to get incoming traffic to the Client Router, because there's another Router (Router 1) between the Edge Router and the Client Router. Correct? The Edge Router already knows how to reach Router 1, because they're directly connected (so the route is automatical...
by mducharme
Sun Jun 23, 2019 1:03 am
Forum: Forwarding Protocols
Topic: MPLS over GRE MTU question
Replies: 8
Views: 495

Re: MPLS over GRE MTU question

Well it seems to work ok, and I asked around about it first before trying, and many others said it works fine. Just unsure about the MTU. MPLS works fine over GRE or EoIP. Only the L2MTU matters, and for GRE the L2MTU is 65535 and you can't change it. The only disadvantage of GRE vs EoIP for MPLS i...
by mducharme
Sat Jun 22, 2019 6:57 pm
Forum: Beginner Basics
Topic: Captive portal for Wi-Fi users (no authentication, no internet)
Replies: 8
Views: 502

Re: Captive portal for Wi-Fi users (no authentication, no internet)

Really? Will this work without intetnet? Cos i've tried a few hotspot guides from here but most requires internet connection to work properly.
Yes it does - why would it not?
by mducharme
Thu Jun 20, 2019 7:02 pm
Forum: Beginner Basics
Topic: Captive portal for Wi-Fi users (no authentication, no internet)
Replies: 8
Views: 502

Re: Captive portal for Wi-Fi users (no authentication, no internet)

@AidanAus...I'm not quite sure what you're saying "bump the threads", I did post 2 of the same topic since my first post was taking so long for the admin to post it or not so I made a second one. I'm still waiting for the reply on my request since, like I said I was looking for the same topic but c...
by mducharme
Thu Jun 20, 2019 6:26 pm
Forum: General
Topic: Routing a Block of Public IP Addresses
Replies: 37
Views: 1920

Re: Routing a Block of Public IP Addresses

Ok. Now let's expand this a bit. If the 'device' is another route that's on the other side of another router, like this: Edge Router --> Router 1 --> Client Router Then, I would need a route (static or use something like OSPF) in the Edge Router, to route a public IP to the Client Router, since the...
by mducharme
Thu Jun 20, 2019 5:02 am
Forum: General
Topic: Routing a Block of Public IP Addresses
Replies: 37
Views: 1920

Re: Routing a Block of Public IP Addresses

Would I still have to have routes to reach each device from the 'outside world'? Not "each device", but one route for the subnet, yes. However, since you are adding an IP on that subnet onto your router, your router will automatically have a "connected" route to that subnet, so you do not need to a...
by mducharme
Thu Jun 20, 2019 3:22 am
Forum: General
Topic: Routing a Block of Public IP Addresses
Replies: 37
Views: 1920

Re: Routing a Block of Public IP Addresses

So, would I set up my WAN port with 38.1.2.133 and then a 'default route' with 0.0.0.0/0 and the Gateway address as 38.1.2.131? Yes Then, would I set one of the 198.7.8.x addresses (such as 198.7.8.128) as the LAN IP address on my router (which would then be the Gateway IP address in the 'devices' ...
by mducharme
Wed Jun 19, 2019 6:46 pm
Forum: General
Topic: Question - Bandwidth shaping Simple Queues
Replies: 2
Views: 189

Re: Question - Bandwidth shaping Simple Queues

Hi, ether2 interface will not work as a target - you need to use a subnet (ex. 192.168.88.0/24). You will likely also find that you need to set max limit on the "all bandwidth" queue for upload and download in order for it to work.
by mducharme
Tue Jun 18, 2019 4:40 pm
Forum: General
Topic: QoS prioritization only, without shaping?
Replies: 26
Views: 1125

Re: QoS prioritization only, without shaping?

This is the primary reason for this post. We want better QoS for backhaul wireless links that we own, and the bandwidth varies it cannot be guaranteed. Real world is not perfect, radio frequencies get crowded, new constructions go up and partially block signal, a bin chicken fly's into the radio an...
by mducharme
Tue Jun 18, 2019 9:16 am
Forum: General
Topic: Radical change coming for home and small business networking
Replies: 37
Views: 2477

Re: Radical change coming for home and small business networking

I think you are really blowing this out of proportion in a “the sky is falling” sort of way. I can tell you right now that cable providers are not going to prevent you from using third party routers just because of this new technology option. You will be able to continue to use CCR routers on these ...
by mducharme
Tue Jun 18, 2019 2:04 am
Forum: RouterBOARD hardware
Topic: CCR1036-8G-2S+ - SFP+ port stops transmitting data?
Replies: 7
Views: 647

Re: CCR1036-8G-2S+ - SFP+ port stops transmitting data?

We have this problem, but for us it happens every 30-90 days or so. It last happened 57 days ago. We have a ping watchdog to reboot the router when this happens. Disabling and re-enabling the interface might fix it too. Same CCR1036-8G-2S+, first generation. We have two CCR's connected to each other...
by mducharme
Mon Jun 17, 2019 9:30 pm
Forum: General
Topic: QoS prioritization only, without shaping?
Replies: 26
Views: 1125

Re: QoS prioritization only, without shaping?

First question: Are you changing the hardware queue type on the MikroTik's? What are you using and what settings? Second question: Are you using a common template for QoS settings and would you care to share it? Answer to First question: No we aren't. One thing you need to realize is that, at least...
by mducharme
Mon Jun 17, 2019 6:15 am
Forum: General
Topic: QoS prioritization only, without shaping?
Replies: 26
Views: 1125

Re: QoS prioritization only, without shaping?

Also, AirFiber (except for the AF5XHD) can only read CoS, so you have to copy DSCP to CoS for the AirFiber devices to be able to read it. CoS is really the most universal priority tag available - basically everything supports it, even if DSCP or MPLS EXP bits are not supported. The only downside of ...
by mducharme
Mon Jun 17, 2019 6:04 am
Forum: General
Topic: QoS prioritization only, without shaping?
Replies: 26
Views: 1125

Re: QoS prioritization only, without shaping?

Ok but I have heard its best practice to use QoS tags at Layer3 as opposed to Layer2 so why not use DSCP tags instead of CoS? And does a MikroTik router actually do anything with DSCP tagged packets by default or does it need to configured with mangle or queue's to apply prioritization to traffic? ...
by mducharme
Mon Jun 17, 2019 5:26 am
Forum: General
Topic: QoS prioritization only, without shaping?
Replies: 26
Views: 1125

Re: QoS prioritization only, without shaping?

The router-router links don't use VLAN's though They just speak to each other on the ethernet link i.e. ether5 on RouterA connects to PTP670 link connects to ether7 on RouterB So using the set priority mangle rule wouldn't do anything? Or would it still tag packets with native VLAN id so that prior...
by mducharme
Mon Jun 17, 2019 4:52 am
Forum: General
Topic: QoS prioritization only, without shaping?
Replies: 26
Views: 1125

Re: QoS prioritization only, without shaping?

Here is an example setup from memory: concentrator <-cable-> P-1 <-radio-> P-2 <-radio-> PE <-cable-> CE (customer router) In this example VPLS tunnel runs from concentrator to PE router, so concentrator and PE apply MPLS labels. VPLS tunnel on concentrator would terminate on a bridge (running the P...
by mducharme
Mon Jun 17, 2019 4:15 am
Forum: General
Topic: QoS prioritization only, without shaping?
Replies: 26
Views: 1125

Re: QoS prioritization only, without shaping?

Ok so i'm a bit confused as to which method to use here. So lets step it back and i'll give a couple of different scenario's that may need different methods Background: We primarily use Cambium radio's but do use some Ubiquiti and a few Mikrotik I'm going to talk about our backbone infrastructure a...
by mducharme
Sun Jun 16, 2019 10:20 pm
Forum: Wireless Networking
Topic: Guest Wi-Fi Captive Portal Setup [SOLVED]
Replies: 1
Views: 259

Re: Guest Wi-Fi Captive Portal Setup [SOLVED]

You can accomplish this with the hotspot feature in MikroTik - edit the login page to remove the "username" and "password" prompts, add the EULA, and rename the "Connect as Guest" link to "Accept EULA"
by mducharme
Fri Jun 14, 2019 4:53 am
Forum: General
Topic: vlan bridge to port [SOLVED]
Replies: 10
Views: 547

Re: vlan bridge to port [SOLVED]

What the OP is doing is OK and is simply the old way of creating "access" ports for VLANs where the VLAN is untagged (before bridge VLAN filtering). Doing it the old way can still be justified on platforms other than CRS3xx due to the fact that you can have VLANs while not losing hardware offload fo...
by mducharme
Thu Jun 13, 2019 8:50 am
Forum: General
Topic: Queues lie
Replies: 11
Views: 512

Re: Queues lie

Manifestly improbable, as our bandwidth tests quite often show speeds well in excess of any customer's bursted queue. I can run BTest from one end of our network to the other (three or four wireless hops) and see speeds in the range of of 80-140Mb. That speed will also be reflected in the first que...
by mducharme
Thu Jun 13, 2019 8:05 am
Forum: General
Topic: Queues lie
Replies: 11
Views: 512

Re: Queues lie

1-POE-Host is port 1 on the PowerBox, which would normally supply the host's own service, except the property is vacant currently so there's no connection. Here is a partial printout of the queue, the rest of the rules are identical except for address. sqcli.jpg OK Thanks. So, there are a few thing...
  • 1
  • 2
  • 3
  • 4
  • 5
  • 16