Community discussions

MikroTik App

Search found 116 matches

by leopardus2
Mon Jan 15, 2024 12:37 pm
Forum: RouterBOARD hardware
Topic: MikroTik CRS309-1G-8S+INL -- 10G RJ45 Transceiver?
Replies: 54
Views: 7457

Re: MikroTik CRS309-1G-8S+INL -- 10G RJ45 Transceiver?

Why buying a fanless unit if then you add a fan to it?
Just get one of the ones that have built in fan.
My reason to go fanless is desktop use. Otherwise I would have chosen a different model.
by leopardus2
Thu Nov 16, 2023 8:51 pm
Forum: RouterBOARD hardware
Topic: MikroTik CRS309-1G-8S+INL -- 10G RJ45 Transceiver?
Replies: 54
Views: 7457

Re: MikroTik CRS309-1G-8S+INL -- 10G RJ45 Transceiver?

BTW I see you are pasting info from the webfig interface, that's why your output is different from mine (I am using CLI). Amazon has free returns... I would try and get another SFP from Amazon and see if you get the same version I have... Why returning if it's working? To get the model which report...
by leopardus2
Thu Nov 16, 2023 4:47 pm
Forum: RouterBOARD hardware
Topic: MikroTik CRS309-1G-8S+INL -- 10G RJ45 Transceiver?
Replies: 54
Views: 7457

Re: MikroTik CRS309-1G-8S+INL -- 10G RJ45 Transceiver?

BTW I see you are pasting info from the webfig interface, that's why your output is different from mine (I am using CLI).
Amazon has free returns... I would try and get another SFP from Amazon and see if you get the same version I have...
by leopardus2
Thu Nov 16, 2023 4:42 pm
Forum: RouterBOARD hardware
Topic: MikroTik CRS309-1G-8S+INL -- 10G RJ45 Transceiver?
Replies: 54
Views: 7457

Re: MikroTik CRS309-1G-8S+INL -- 10G RJ45 Transceiver?

Likely , the SFP is not reporting the info, although I find it strange.
I assume the S+RJ10 does if you plug it in?
You can also try and get another 10Gtek SFP from Amazon, that has not the "for intel" note, and return your current one.
by leopardus2
Thu Nov 16, 2023 2:02 pm
Forum: RouterBOARD hardware
Topic: MikroTik CRS309-1G-8S+INL -- 10G RJ45 Transceiver?
Replies: 54
Views: 7457

Re: MikroTik CRS309-1G-8S+INL -- 10G RJ45 Transceiver?

I don't think they have changed hardware. Yours must be a special version, like you said.
Why is your output different than mine? I am running latest RouterOS 7. Maybe you could try upgrading.
by leopardus2
Thu Nov 16, 2023 1:58 pm
Forum: RouterBOARD hardware
Topic: MikroTik CRS309-1G-8S+INL -- 10G RJ45 Transceiver?
Replies: 54
Views: 7457

Re: MikroTik CRS309-1G-8S+INL -- 10G RJ45 Transceiver?

Mine is not old... sfp-manufacturing-date: 23-02-14
You have a different chip it seems. But if it works for you without thermal shutdown, then fine :-)
by leopardus2
Thu Nov 16, 2023 1:27 pm
Forum: RouterBOARD hardware
Topic: MikroTik CRS309-1G-8S+INL -- 10G RJ45 Transceiver?
Replies: 54
Views: 7457

Re: MikroTik CRS309-1G-8S+INL -- 10G RJ45 Transceiver?

I got it from Amazon. Search for "10gtek asf-10g-t". Got it now since monday and it's been running without issue. Although the outside temperatures have come down also. However in my CRS305 it doesn't show the current temperature of the module. Is it the same for you? [...] Vendor Name In...
by leopardus2
Thu Nov 16, 2023 12:10 pm
Forum: RouterBOARD hardware
Topic: MikroTik CRS309-1G-8S+INL -- 10G RJ45 Transceiver?
Replies: 54
Views: 7457

Re: MikroTik CRS309-1G-8S+INL -- 10G RJ45 Transceiver?

An additional, unrelated but amusing, piece of information.
My Imac PRO has a 10Gbit ethernet interface, which suffers same problem -- when running at 10G, it goes over 90 degrees C and causes
the computer to termal throttle!!!! Had to buy a separate thunderbolt to 10G adapter....
by leopardus2
Thu Nov 16, 2023 12:07 pm
Forum: RouterBOARD hardware
Topic: MikroTik CRS309-1G-8S+INL -- 10G RJ45 Transceiver?
Replies: 54
Views: 7457

Re: MikroTik CRS309-1G-8S+INL -- 10G RJ45 Transceiver?

It looks like you got a different model than mine. You sure you bought the 10Gtek? sfp-vendor-name: OEM sfp-vendor-part-number: SFP-10G-SR sfp-vendor-revision: 02 sfp-vendor-serial: CSF101N25484 sfp-manufacturing-date: 23-02-14 sfp-wavelength: 850nm sfp-temperature: 54C sfp-supply-voltage: 3.221V sf...
by leopardus2
Thu Nov 09, 2023 6:03 pm
Forum: RouterBOARD hardware
Topic: MikroTik CRS309-1G-8S+INL -- 10G RJ45 Transceiver?
Replies: 54
Views: 7457

Re: MikroTik CRS309-1G-8S+INL -- 10G RJ45 Transceiver?

I replaced the S+RJ10 with a 10Gtek SFP and it runs way cooler at 10G speed, around 65 degrees..
Got a link?
I got it from Amazon. Search for "10gtek asf-10g-t".
by leopardus2
Thu Nov 09, 2023 5:50 pm
Forum: RouterBOARD hardware
Topic: MikroTik CRS309-1G-8S+INL -- 10G RJ45 Transceiver?
Replies: 54
Views: 7457

Re: MikroTik CRS309-1G-8S+INL -- 10G RJ45 Transceiver?

The S+RJ10 I have fitted in my CRS309, when connected at 10G speed, runs around 90 degrees Celsius, this is just insane. From time to time it reaches 95C and the OS shuts it down. Another S+RJ10 in same switch running at 2.5G stays around 70 degrees. Now, I have read a lot about the topic on this fo...
by leopardus2
Tue Mar 02, 2021 11:03 am
Forum: RouterBOARD hardware
Topic: RB3011 port flopping - bad design
Replies: 131
Views: 61807

Re: RB3011 port flopping - bad design

Never had before port flaps. Using 6.48. Yesterday I changed a the topology of my home network and now wan is connected through switch (1gbit tplink). And since then I have terrible port flaps. I lost a lot of time trying different cables, ports speeds, only one port occupied, etc, etc... nothing h...
by leopardus2
Mon Feb 22, 2021 11:05 am
Forum: RouterBOARD hardware
Topic: RB3011 port flopping - bad design
Replies: 131
Views: 61807

Re: RB3011 port flopping - bad design

need the same fix in 7.x
by leopardus2
Thu Jan 28, 2021 11:10 am
Forum: RouterBOARD hardware
Topic: RB3011 port flopping - bad design
Replies: 131
Views: 61807

Re: RB3011 port flopping - bad design

I wish it was that simple.
by leopardus2
Fri Jan 15, 2021 1:34 pm
Forum: RouterBOARD hardware
Topic: RB3011 port flopping - bad design
Replies: 131
Views: 61807

Re: RB3011 port flopping - bad design

My RB3011 started flapping on ports 6-10 after a reconfiguration, and I'm running 7.1beta3 . Apparently, OS version doesn't really count anything re. this flapping issue. I really would like to see some extra debugging about the interfaces. I tried to set debug logging but nothing is printed in logs...
by leopardus2
Fri Jan 15, 2021 1:18 am
Forum: General
Topic: separate trunks CSS610 <-> RB3011 weirdness
Replies: 8
Views: 1037

Re: separate trunks CSS610 <-> RB3011 weirdness

I have replaced the CSS610 with an RB4011 and the bonding now behaves properly, and speed is proper.
I think the CSS610 is a flawed product and recommend to stay away from it for the time being.
by leopardus2
Wed Jan 13, 2021 2:06 pm
Forum: General
Topic: separate trunks CSS610 <-> RB3011 weirdness
Replies: 8
Views: 1037

Re: separate trunks CSS610 <-> RB3011 weirdness

it does not run SWOS. it runs "SWOS lite". I am not sure if the limitation is in hardware but seems quite a serious one for a switch considering
that for $40 more you get a full-fledged CSS326 with more ports and more pps
by leopardus2
Wed Jan 13, 2021 1:22 pm
Forum: General
Topic: separate trunks CSS610 <-> RB3011 weirdness
Replies: 8
Views: 1037

Re: separate trunks CSS610 <-> RB3011 weirdness

OK, so this thing called "SWOS lite" is ridiculous. A great switch with a terrible OS.
I will be replacing the CSS610 with an RB4011 and will retry the bonding thing with a "real" OS.
by leopardus2
Tue Jan 12, 2021 11:31 pm
Forum: General
Topic: separate trunks CSS610 <-> RB3011 weirdness
Replies: 8
Views: 1037

Re: separate trunks CSS610 <-> RB3011 weirdness

Actually I spoke too fast, the explanation is at the CSS610 manual page : The main differences compared to CSS3xx series switches are: unsupported Independent VLAN Learning; [/color] So the switch uses MAC addresses alone to populate the "MAC to port" mapping table, ignoring the VLAN IDs....
by leopardus2
Tue Jan 12, 2021 11:30 pm
Forum: General
Topic: separate trunks CSS610 <-> RB3011 weirdness
Replies: 8
Views: 1037

Re: separate trunks CSS610 <-> RB3011 weirdness

the CSS610 has the two ports in trunk mode (default). At the CSS610, is VLAN 7 also permitted only on the trunk port connected to ether8 of the 3011, and VLANs 88 and 166 only on the trunk port connected to ether5 of the 3011? correct. I wanted to have two separate physical paths for the two vlan g...
by leopardus2
Tue Jan 12, 2021 10:49 pm
Forum: General
Topic: separate trunks CSS610 <-> RB3011 weirdness
Replies: 8
Views: 1037

separate trunks CSS610 <-> RB3011 weirdness

I have found that for some unknown reason, bonding between my CSS610 and my RB3011 will cut the upload band in half or worse. Since I am a bit tired of troubleshooting CSS610 bugs I decided to replace bonding with per-VLAN trunks, i.e. I decided to set up two separate 1G trunks, in one trunk I am se...
by leopardus2
Tue Jan 12, 2021 10:15 am
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

Just got a message from Mikrotik support that confirms this is a bug, not on the CSS326 but on the CSS610: "When the "Add Information Option" option under the System menu is enabled, it will remove the VLAN header for the DHCP packets. A workaround is to disable this option. " I ...
by leopardus2
Fri Jan 08, 2021 7:15 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

I just meant to say that the DHCP discover (from client connected to basebox) is sent UNTAGGED and not with vlan=1, and that the former test at beginning of this thread should be disregarded. Yeah, which means that there is nothing wrong with the Basebox, and the bugs are limited to the CSS and the...
by leopardus2
Fri Jan 08, 2021 6:07 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

I just meant to say that the DHCP discover (from client connected to basebox) is sent UNTAGGED and not with vlan=1, and that the former test at beginning of this thread
should be disregarded. So it is not worth spending your time retesting this....
by leopardus2
Fri Jan 08, 2021 12:56 am
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

I think I know what happened. When I originally sniffed on basebox AP, I had another DHCP server running on VLAN88 (a VLAN I use to install Mikrotik devices). The capture shows DHCP traffic coming from 192.168.88.1 which was an hAP I was installing. So the VLAN id 1 was very likely traffic originate...
by leopardus2
Thu Jan 07, 2021 10:52 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

Nothing is stripped. I do see 802.1q packets from other traffic when I sniff. That's why I'm sure the DHCP discover is sent without encapsulation. Good. Now it would be fine to temporarily connect the cable from the Basebox directly to the Macbook and see what the Basebox actually sends. I'm not su...
by leopardus2
Thu Jan 07, 2021 10:34 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

A capture is a capture, macbook does the same as a linux box. I watched the results on screen (no need to use wireshark , and yes I used option -vvv -e to show the layer 2 details ) I know that MacOS is a unix too, but I'm not sure about the network card driver. Some drivers on Linux reportedly (I ...
by leopardus2
Thu Jan 07, 2021 9:54 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

Unfortunately, /interface bridge port ... add bridge=bridge1 interface=bond1 pvid=166 trusted=yes /interface bridge vlan ... add bridge=bridge1 tagged=bridge1,bond1 vlan-ids=166 is an undocumented configuration. Theoretically, it should mean that tagless frames get tagged with VID 166 on ingress wh...
by leopardus2
Thu Jan 07, 2021 9:23 pm
Forum: SwOS
Topic: CSS610-8G-2S+ Management Access from SFP+ Port
Replies: 218
Views: 54235

Re: CSS610-8G-2S+ Management Access from SFP+ Port

I upgraded to rc5 and I still can't manage with the SFP+ port active. I have to unplug the fiber from the SFP and plug in the cat 6. Very frustrating. DHCP still doesn't work very well either.
same here. rc5 did not fix the problem for me.
by leopardus2
Thu Jan 07, 2021 9:18 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

To make it work, I assigned pvid 166 to the bond1 bridge port, so that tagless packets arriving there are tagged with the proper vlan. OK, so at least one mystery solved. Have you done this systematically, i.e. not only set the pvid of the bond interface to 166 but also moved the bond to the untagg...
by leopardus2
Thu Jan 07, 2021 8:44 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

Reviewing the thread, I see where I was sniffing bridge on basebox and it showed VLAN=1, however these packets are not received tagged at CS326 (sniffed today using a mirror port, the packets are not 802.1q encapsulated so I guess that VLAN=1 is added by the sniffer tool.
by leopardus2
Thu Jan 07, 2021 8:40 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

the frames carrying the DHCPDISCOVER got tagged (with VID 1) in the Basebox (this was what the sniff on the Basebox itself was showing) No, the basebox AP is not tagging anything, as it has no vlans configured. The packets enter the CSS326 through an access port having "force vlan id = 166&quo...
by leopardus2
Thu Jan 07, 2021 7:41 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

I have sniffed the ingress traffic coming into the CSS610 from CSS326 (on SFP+ interconnect) and DHCP discover was NOT tagged! To better explain, it was not 802.1Q encapsulated. So it looks like the CSS326 is NOT encapsulating DHCP traffic even when "force vlan id" is set. It looks like a ...
by leopardus2
Wed Jan 06, 2021 7:34 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

If CSS610 has mirror feature I could use that and sniff using my macbook from another port maybe,
that will tell if DHCP packets leave the bond tagged or not
by leopardus2
Wed Jan 06, 2021 7:20 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

It looks like LAG works, RB3011 is active side and reports link up, mode is layer2+layer3 and all works fine except DHCP discover arrives untagged on RB3011 ethernets - since I cannot sniff on CSS610 I cannot investigate this further I’m afraid.... I can run that capture tomorrow but will leave it t...
by leopardus2
Wed Jan 06, 2021 2:34 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

So, does this look like a bug in switchos to you?
Should the DHCP discover arrive tagged over the LAG? It looks like it does in your setup?

I have also raised a support ticket one week ago, heard nothing from Miktotik as of yet.
by leopardus2
Tue Jan 05, 2021 4:41 pm
Forum: RouterBOARD hardware
Topic: Audiencé question
Replies: 0
Views: 564

Audiencé question

Hi guys,

I understand that two audiencé units (one connected to LAN and the other in repeater mode) will communicate using wlan3 (the upper 5 GHz range).
Question: will 5GHz clients be able to use wlan3 in this scenario, or is it reserved for exclusive backhaul use?

Thanks in advance,

Rick
by leopardus2
Tue Jan 05, 2021 1:24 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

Like I said, DHCP packets arrive on basebox encapsulated with VLAN id 1. I have sniffed on a client connected through wireless. All other packets are tagless. DHCP does not work as a consequence. Sniffing on RB3011 now shows DHCP is tagged with VLAN166 at bridge level: /interface/bridge/filter> /too...
by leopardus2
Tue Jan 05, 2021 12:26 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

Regarding the known specific handling of DHCP on Mikrotik, it only has to do with L3 processing, as DHCP traffic is handled before the firewall gets the packets. This is not RouterOS specific, it behaves the same on bare Linux. On an interface with no L3 configuration attached (a dhcp client is als...
by leopardus2
Tue Jan 05, 2021 11:45 am
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

Side note, with this setup, the message warning bond1: bridge port received packet with own address as source address (48:8f:5a:8a:27:66), probably loop reappeared,
although sporadically
by leopardus2
Tue Jan 05, 2021 11:24 am
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

I have solved the issue by using an ACL on the CSS326 that replaces the VLAN tag 1 with tag 166 when packet comes from the DHCP VLAN interface! Now everything works as expected. Something really weird is going on with Mikrotik and DHCP packets handling, but it looks like I'm not the first one to say...
by leopardus2
Tue Jan 05, 2021 11:14 am
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

Funnily enough, the DHCP replies land on the basebox with a vlan encapsulation and vlan=1. Weird!
by leopardus2
Tue Jan 05, 2021 10:55 am
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

Added pvid=166 to bridge port, to tag untagged packets with VLAN166 and that seemed to do the trick (now DHCP packets are correctly tagged, and DHCP server answers): /interface bridge port add bridge=bridge1 interface=bond1 pvid=166 Still something is not proper, as the DHCP offer is not accepted it...
by leopardus2
Tue Jan 05, 2021 10:21 am
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

The DHCP packets land on bridge1 untagged, see below. That's why DHCP does not work on VLAN interface. Any way to add a tag when the packets enter the bridge? /interface bridge filter add action=mark-packet chain=input dst-port=67 ip-protocol=udp mac-protocol=ip new-packet-mark=dhcp add action=accep...
by leopardus2
Tue Jan 05, 2021 9:35 am
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

Good morning! I have spent more time tracing packets and I have come to the conclusion that the packets arrive correctly tagged to the RB3011, *except* the DHCP packets. So the issue must be on the RB3011. I do know that DHCP is treated in a special way by RouterOS, perhaps that's part of the scenar...
by leopardus2
Tue Jan 05, 2021 12:21 am
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

I have reverted to the correct config, with no bridge IP address and with DHCP server on VLAN166. While sniffing on the RB3011 I see some packets that come from VLAN166 that seem to be missing the tag. Looking closely, they seem to be duplicate packets due to the bonded trunk. See below. Is my suspi...
by leopardus2
Mon Jan 04, 2021 10:47 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

Yeah, I already found other bugs in this unit. I checked for an update on Mikrotik site but there isn't one, which is odd.
by leopardus2
Mon Jan 04, 2021 10:33 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

But VLANs remain separated for other purposes still if I am not mistaken. I can't see how the VID 1 tagging weirdness could selectively affect only DHCP and not the rest of the traffic. That's why I've asked you to sniff the other traffic too. inter-vlan isolation remains. Also I verified that redu...
by leopardus2
Mon Jan 04, 2021 10:17 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

I tried the following - 1. assigned an IP address to bridge1 2. moved dhcp server to bridge1 This way you gave up on the VLAN 166 and accommodated to the fact that the DHCP request arrives to the 3011 tagless. Doing so surely makes things work, but I don't know how far it is from your initial inten...
by leopardus2
Mon Jan 04, 2021 9:34 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

About that last oddity, here's the why [admin@RB3011_GW] /ip/neighbor/discovery-settings> /interface/print Flags: X - DISABLED, R - RUNNING; S - SLAVE Columns: NAME, TYPE, ACTUAL-MTU, L2MTU, MAX-L2MTU, MAC-ADDRESS # NAME TYPE ACTU L2MT MAX- MAC-ADDRESS ;;; do not enable, MAC stolen for bridge use 0 ...
by leopardus2
Mon Jan 04, 2021 9:16 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

I tried the following - 1. assigned an IP address to bridge1 2. moved dhcp server to bridge1 Now DHCP seem to be working properly. Any drawbacks in doing this? Considering that DHCP bypasses firewall and VLANs anyway.... Only oddity is I am getting this warning in log: bond1: bridge port received pa...
by leopardus2
Mon Jan 04, 2021 7:12 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

that doesn't seem to change anything...

I don't understand wht the CSS326 is not forcing VLAN 166 to all packets like it should according to https://wiki.mikrotik.com/wiki/SwOS/CSS ... _and_VLANs
by leopardus2
Mon Jan 04, 2021 6:36 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

Here you go ... # jan/04/2021 17:32:34 by RouterOS 6.45.9 # software id = 0JQM-RNVG # # model = 912UAG-2HPnD # serial number = 6EC5042C14C5 /interface bridge add admin-mac=4C:5E:0C:1C:C6:C1 auto-mac=no fast-forward=no name=bridge-local /interface wireless set [ find default-name=wlan1 ] band=2ghz-b/...
by leopardus2
Mon Jan 04, 2021 5:35 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

Sniffed on the basebox (Schifo AP) and this seems to indicate you were indeed right: admin@schifo_AP] > /tool sniffer quick interface=bridge-local port 67 INTERFACE TIME NUM DIR SRC-MAC DST-MAC VLAN SRC-ADDRESS DST-ADDRESS PROTOCOL SIZE CPU FP bridge-local 1.013 3 <- 48:8F:5A:F9:02:96 FF:FF:FF:FF:FF...
by leopardus2
Mon Jan 04, 2021 5:20 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

Hm, so the last thing to come to my mind is the configuration of the Basebox. Both CSS have VLAN mode set to optional on all ports, which means that if something comes tagged with VID 1 from the Basebox, it will make it through the two CSS all the way to the 3011 will get untagged on the Interconne...
by leopardus2
Mon Jan 04, 2021 4:42 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

Forgot to tell . I have no ACLs in place, that's why I did not post these screenshots!
by leopardus2
Mon Jan 04, 2021 4:32 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

Here are the screenshot from relevant tabs and a hand written diagram :-)
css326_vlan.jpg
css326_vlans.jpg
css326_link.jpg
CSS610_vlans.jpg
CSS610_vlan.jpg
CSS610_link.jpg
CSS610_lag.jpg
diagram.jpg
by leopardus2
Mon Jan 04, 2021 4:03 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

Actually, the DHCP server is meant to serve DHCP requests coming from the wifi clients. Currently, I have a Mikrotik BaseBox2 which is used for IoT clients. It runs DHCP server for VLAN166. I am trying to replace this DHCP server and use the RB3011 instead, hence this post. The BaseBox2 is not direc...
by leopardus2
Mon Jan 04, 2021 3:26 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

The bonding is implemented completely in software on the 3011, so try sniffing on all three Ethernet ports as well as the VLAN one: tool/sniffer/quick interface=ether5,ether9,ether10,VLAN166 port=67,68 Logging: /system/logging/add topics=dhcp /log/print follow-only I enabled the tracing and power c...
by leopardus2
Fri Jan 01, 2021 3:10 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

A CSS610-8G-2S+IN 8p.Gig + 2p.SFP+
by leopardus2
Fri Jan 01, 2021 12:53 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

It was enabled, just not when I captured the config, so it’s not that unfortunately.... anything else that may come to mind? I also checked the firewall and there are no packets dropped by any rule.
by leopardus2
Thu Dec 31, 2020 1:39 pm
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

I have reviewed the config, this should be correct (I have checked documentation) but still DHCP does not work. Can this be a 7.1beta3 bug? Rick # dec/31/2020 12:36:47 by RouterOS 7.1beta3 # software id = G5ES-UNVF # # model = RB3011UiAS # serial number = B8950C9801E6 /interface bridge add admin-mac...
by leopardus2
Thu Dec 31, 2020 9:42 am
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

Perhaps my error is this:

add interface=bridge1 name=VLAN166 vlan-id=166

I should instead use:

add interface=bond1 name=VLAN166 vlan-id=166
by leopardus2
Thu Dec 31, 2020 9:18 am
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

Re: DHCP server on VLAN and 7.1beta3 [SOLVED]

Not sure if this is legal to do with bridges???? add bridge=bridge1 interface=bond1 /interface bridge vlan add bridge=bridge1 tagged=bond1 This router has a trunk over bond1 to the switch that distributes VLANs around. Anyway it is working as supposed, but not for dhcp.... VLAN 166 is coming to the...
by leopardus2
Thu Dec 31, 2020 12:33 am
Forum: General
Topic: DHCP server on VLAN and 7.1beta3 [SOLVED]
Replies: 68
Views: 6712

DHCP server on VLAN and 7.1beta3 [SOLVED]

Hello, I am trying to make DHCP server assign addresses to members of VLAN 166, but I am unable to make it work. This is with OS 7.1beta3. My guess is I'm missing something obvious, so I would appreciate if someone could have a look at my config below and tell me what I've done wrong... Thanks in ad...
by leopardus2
Wed Dec 30, 2020 1:58 pm
Forum: RouterOS beta
Topic: AT Commands to modem in MBIM mode?
Replies: 19
Views: 9313

Re: AT Commands to modem in MBIM mode?

I am still looking forward for a solution to this issue, which prevents me from using a non quectel modem on my RB3011. Support replied to change the lte mode to serial and check the serial ports that should show up under /port, to find which one will work with AT command, however the usb port that ...
by leopardus2
Wed Dec 30, 2020 1:35 pm
Forum: RouterOS beta
Topic: Sierra MC7455 with RouterOS 7.1b3 on RB922UAGS
Replies: 11
Views: 8095

Re: Sierra MC7455 with RouterOS 7.1b3 on RB922UAGS

Your modem should be supported in MBIM mode. But you will not be able to talk to it using at-chat.

Rick
by leopardus2
Tue Dec 15, 2020 1:00 pm
Forum: RouterOS beta
Topic: Unable to route on my local breakout 7.1beta2
Replies: 11
Views: 8454

Re: Unable to route on my local breakout 7.1beta2

Anyone knows if beta3 solves this? The changelogs are useless...
by leopardus2
Fri Dec 04, 2020 3:30 pm
Forum: RouterOS beta
Topic: Chateau BOOT LOOP Simple Queue [SOLVED]
Replies: 7
Views: 2288

Re: Chateau BOOT LOOP Simple Queue [SOLVED]

chateau only runs OS 7
by leopardus2
Fri Dec 04, 2020 1:50 pm
Forum: RouterOS beta
Topic: Unable to route on my local breakout 7.1beta2
Replies: 11
Views: 8454

Re: Unable to route on my local breakout 7.1beta2

having the same problem on my RB3011
by leopardus2
Tue Nov 17, 2020 4:04 pm
Forum: RouterOS beta
Topic: AT Commands to modem in MBIM mode?
Replies: 19
Views: 9313

Re: AT Commands to modem in MBIM mode?

Done already
by leopardus2
Tue Nov 17, 2020 3:15 pm
Forum: RouterOS beta
Topic: AT Commands to modem in MBIM mode?
Replies: 19
Views: 9313

Re: AT Commands to modem in MBIM mode?

In my opinion OS7 has great potential as far as USB modems go. I have tried both a Quectel RM500Q and a Sierra Wireless EM9190 (both are 5G modems) and both have been immediately recognized and work well. This lack of at-chat capability is serious because when using such modems there is a lot of tun...
by leopardus2
Tue Nov 17, 2020 3:10 pm
Forum: RouterOS beta
Topic: RouterOS 7b - LTE modem support?
Replies: 5
Views: 5337

Re: RouterOS 7b - LTE modem support?

Just testing 7.1beta2 with a 5G modem (Sierra Wireless EM9190). The modem is recognized and works well (MBIM mode) but the inability of sending AT commands is a show stopper here. Any chance the at-chat command can be fixed to work with modems in MBIM mode? Shouldn't be too much of an effort, and wo...
by leopardus2
Tue Nov 17, 2020 2:23 pm
Forum: RouterOS beta
Topic: AT Commands to modem in MBIM mode?
Replies: 19
Views: 9313

Re: AT Commands to modem in MBIM mode?

why is such a trivial thing unsupported?
by leopardus2
Mon Nov 16, 2020 4:39 pm
Forum: SwOS
Topic: CSS610-8G-2S+ Management Access from SFP+ Port
Replies: 218
Views: 54235

Re: CSS610-8G-2S+ Management Access from SFP+ Port

Thanks. Appreciate it.
by leopardus2
Mon Nov 16, 2020 3:29 pm
Forum: SwOS
Topic: CSS610-8G-2S+ Management Access from SFP+ Port
Replies: 218
Views: 54235

Re: CSS610-8G-2S+ Management Access from SFP+ Port

thanks. I canceled my order for 2 of them but already got one, so I can use that.
by leopardus2
Mon Nov 16, 2020 1:18 pm
Forum: SwOS
Topic: CSS610-8G-2S+ Management Access from SFP+ Port
Replies: 218
Views: 54235

Re: CSS610-8G-2S+ Management Access from SFP+ Port

Can you please share the RC somewhere?
by leopardus2
Fri Nov 13, 2020 6:33 pm
Forum: SwOS
Topic: CSS610-8G-2S+ Management Access from SFP+ Port
Replies: 218
Views: 54235

Re: CSS610-8G-2S+ Management Access from SFP+ Port

Well I canceled mine, I believe many people will do the same.
by leopardus2
Wed Nov 11, 2020 5:51 pm
Forum: SwOS
Topic: CSS610-8G-2S+ Management Access from SFP+ Port
Replies: 218
Views: 54235

Re: CSS610-8G-2S+ Management Access from SFP+ Port

Guys, seriously? This is NEW product. Not really tested by earth and fire. If you're planning a commercial install based on an untested product - it's not MKT problem, it's your risk management. you missed the point completely bugs do exist, in any product, new or not new. what we are criticizing i...
by leopardus2
Wed Nov 11, 2020 2:22 pm
Forum: SwOS
Topic: CSS610-8G-2S+ Management Access from SFP+ Port
Replies: 218
Views: 54235

Re: CSS610-8G-2S+ Management Access from SFP+ Port

Same problem... I have 33 new units of this model. My dead line is in 7 days. If i don't have any solution i go to return the units.
return them so Mikrotik support will learn what you get when someone submits a very annoying (and easy to fix) bug and their answer is "NO ETA"
by leopardus2
Wed Nov 11, 2020 9:51 am
Forum: General
Topic: RB3011 as default gateway for a VLAN [SOLVED]
Replies: 2
Views: 598

Re: RB3011 as default gateway for a VLAN [SOLVED]

Thank you so much!

Rick
by leopardus2
Wed Nov 11, 2020 1:23 am
Forum: General
Topic: RB3011 as default gateway for a VLAN [SOLVED]
Replies: 2
Views: 598

RB3011 as default gateway for a VLAN [SOLVED]

Hello, I have what is probably a naive question. I have an RB3011 which has an LTE modem connected to it, and which I intend to use as the default gateway for my home lan. I have another switch that has a trunk connection with the RB3011. At this time only one VLAN is present in the trunk. So I conn...
by leopardus2
Tue Nov 10, 2020 4:07 pm
Forum: SwOS
Topic: CSS610-8G-2S+ Management Access from SFP+ Port
Replies: 218
Views: 54235

Re: CSS610-8G-2S+ Management Access from SFP+ Port

Same here. Really annoying.
by leopardus2
Fri Nov 06, 2020 5:05 pm
Forum: RouterBOARD hardware
Topic: USB3 modem and LTE interface [SOLVED]
Replies: 17
Views: 5424

Re: USB3 modem and LTE interface [SOLVED]

it's the same interface, web is easier especially because I don't have or like Windows :-)

Thanks again
Rick
by leopardus2
Fri Nov 06, 2020 4:44 pm
Forum: RouterBOARD hardware
Topic: USB3 modem and LTE interface [SOLVED]
Replies: 17
Views: 5424

Re: USB3 modem and LTE interface [SOLVED]

many persons must disable that "Use Network APN" to activate that in APN field.
... and that was it!!!

Thank you for your help!

Rick
by leopardus2
Fri Nov 06, 2020 4:38 pm
Forum: RouterBOARD hardware
Topic: USB3 modem and LTE interface [SOLVED]
Replies: 17
Views: 5424

Re: USB3 modem and LTE interface [SOLVED]

Will try disabling that. Another issue I'm facing is that when I disable the LTE interface from webfig, sometimes (not always) it will refuse to re-enable it, saying that "radio is off" and the only way I have found to revive it is rebooting the router...
by leopardus2
Fri Nov 06, 2020 3:53 pm
Forum: RouterBOARD hardware
Topic: USB3 modem and LTE interface [SOLVED]
Replies: 17
Views: 5424

Re: USB3 modem and LTE interface [SOLVED]

First your MikroTik must have internet connectivity, next are your computers. Not using any computer, testing from router, like I said For me that lte module connect but not give you internet bcs limits of ISP... maybe paymants ? SIM card is valid and works fine in my ZBT router... Perhaps APN prob...
by leopardus2
Fri Nov 06, 2020 3:20 pm
Forum: RouterBOARD hardware
Topic: USB3 modem and LTE interface [SOLVED]
Replies: 17
Views: 5424

Re: USB3 modem and LTE interface [SOLVED]

First is first.. ip dns print put [resolve mikrotik.com ] ping mikrotik.com count=10 tool traceroute mikrotik.com use-dns=no Sorry, but not having Internet connectivity, all these tests do not make sense, since DNS names can't be resolved. I tried ping and traceroute to 8.8.8.8 and both fail, trace...
by leopardus2
Fri Nov 06, 2020 12:29 pm
Forum: RouterBOARD hardware
Topic: USB3 modem and LTE interface [SOLVED]
Replies: 17
Views: 5424

Re: USB3 modem and LTE interface [SOLVED]

I use many Quactel modules and they all works in MBIM mode with ros7.1beta2 - mostly all works perfect but read this two post: It connects just fine, but it cannot reach the Internet. Routing is correct: [admin@rb3011] /interface/lte> /ip route print Flags: D - DYNAMIC; A - ACTIVE; C - CONNECT, m -...
by leopardus2
Fri Nov 06, 2020 1:07 am
Forum: RouterBOARD hardware
Topic: USB3 modem and LTE interface [SOLVED]
Replies: 17
Views: 5424

Re: USB3 modem and LTE interface [SOLVED]

It does work with 7.1 beta2, if modem is in MBIM mode. LTE interface appears and automatically connects. [admin@rb3011] /interface/lte> monitor 0 status: connected model: RM500QGL_VH revision: RM500QGLABR11A01M4G_BETA_20200 current-operator: WINDTRE current-cellid: 29186835 enb-id: 114011 sector-id:...
by leopardus2
Thu Nov 05, 2020 9:46 pm
Forum: RouterBOARD hardware
Topic: USB3 modem and LTE interface [SOLVED]
Replies: 17
Views: 5424

USB3 modem and LTE interface [SOLVED]

Hi there, I have this RM500Q M.2 modem installed on an USB3 to M.2 adapter which is not recognized by RouterOS. 7.1beta2 recognizes it correctly under /resources/usb but no lte interface appears; any 6.x version including latest beta shows it as "xHCI Host Controller" which is obviously wr...
by leopardus2
Fri Aug 14, 2020 3:27 pm
Forum: General
Topic: RouterOS v7 and Chateau LTE12
Replies: 15
Views: 10143

Re: RouterOS v7 and Chateau LTE12

Did you set the use the external antennas? The signal could also change if i changes to another cell tower or band/frequency. Yes of course. I think it is not using the internal ones and I was indeed wrong. It just had momentarily connected to another tower because the cell lock was reset due to a ...
by leopardus2
Tue Aug 04, 2020 9:51 pm
Forum: General
Topic: RouterOS v7 and Chateau LTE12
Replies: 15
Views: 10143

Re: RouterOS v7 and Chateau LTE12

Is there a way to have the modem use external antenna only? I have an external 2x2 panel but when I move the router in another place of the room the signal changes a lot so it is evidently using internal ones as well .... can that be excluded?

Thanks
Rick
by leopardus2
Tue Aug 04, 2020 12:20 am
Forum: RouterOS beta
Topic: Chateau LTE12 starts with 3CA but becomes 2CA after a while
Replies: 10
Views: 3831

Re: Chateau LTE12 starts with 3CA but becomes 2CA after a while

That command only locks primary band (one or more cells can be specified but these are all primaries)
by leopardus2
Mon Aug 03, 2020 5:41 pm
Forum: RouterOS beta
Topic: Chateau LTE12 starts with 3CA but becomes 2CA after a while
Replies: 10
Views: 3831

Re: Chateau LTE12 starts with 3CA but becomes 2CA after a while

I have sent a command for locking primary & CA. It seems to work. You have to try, it is all down to ISP. I have an issue with two cell towers 2km apart and my modem often use the wrong/weak one. what command would that be? the only command I know only locks primary band (yes you can specify mo...
by leopardus2
Mon Aug 03, 2020 11:59 am
Forum: RouterOS beta
Topic: Chateau LTE12 starts with 3CA but becomes 2CA after a while
Replies: 10
Views: 3831

Re: Chateau LTE12 starts with 3CA but becomes 2CA after a while

Try cell lock but guys say CA is automatically determined by cell tower.

viewtopic.php?f=13&t=159889#p798970
That's true, but I would like to be able to tell the modem to prefer B3 to B1 for CA, for example...
by leopardus2
Mon Aug 03, 2020 12:42 am
Forum: RouterOS beta
Topic: Chateau LTE12 starts with 3CA but becomes 2CA after a while
Replies: 10
Views: 3831

Re: Chateau LTE12 starts with 3CA but becomes 2CA after a while

I always have three bands in CA (very good signal).

In your case, it simply disconnect poor connection but you can lock in bands you want as you already did.
Unfortunately it seems I can only lock primary band. I wish I could also lock the CA ones.
by leopardus2
Fri Jul 31, 2020 8:23 pm
Forum: RouterOS beta
Topic: Chateau LTE12 starts with 3CA but becomes 2CA after a while
Replies: 10
Views: 3831

Re: Chateau LTE12 starts with 3CA but becomes 2CA after a while

I fixed this by locking B7 (the weakest band) as primary, this way it works as I would like it to :-)
by leopardus2
Thu Jul 16, 2020 3:44 pm
Forum: RouterOS beta
Topic: Chateau it doesn't work in lte
Replies: 5
Views: 2571

Re: Chateau it doesn't work in lte

Resolved By default MBIM modems in LTE network use the networks provided APN ignoring the manually set one. With some SIM cards the modem can receive an unexpected APN from the network. To resolve this add use-network-apn=no to the APN profile. CLI commands to accomplish this (replace "interne...
by leopardus2
Wed Jul 15, 2020 10:50 pm
Forum: RouterOS beta
Topic: Chateau LTE12 LTE --- connect failed
Replies: 6
Views: 5969

Re: Chateau LTE12 LTE --- connect failed

I have not had time to confirm this, but your issue may be result of EG12-EA not passing correct APN to provider, even though it is correctly setup in ROS7 beta8

Try setting APN directly on modem via AT command AT+CGDCONT.
I confirm the bug. Solved the issue thanks to this thread!
Thank you
by leopardus2
Wed Jul 15, 2020 9:55 pm
Forum: RouterOS beta
Topic: Chateau it doesn't work in lte
Replies: 5
Views: 2571

Re: Chateau it doesn't work in lte

there is a bug and APN does not get sent to the modem... you can send it directly with AT commands, then it works

viewtopic.php?f=1&t=163231&p=806080#p805012
by leopardus2
Wed Jul 15, 2020 8:58 pm
Forum: RouterOS beta
Topic: Chateau LTE12 starts with 3CA but becomes 2CA after a while
Replies: 10
Views: 3831

Re: Chateau LTE12 starts with 3CA but becomes 2CA after a while

After a disable/enable:
       primary-band: B1@10Mhz earfcn: 150 phy-cellid: 81
            ca-band: B7@20Mhz earfcn: 3350 phy-cellid: 280,B3@20Mhz earfcn: 1650 phy-cellid: 81
by leopardus2
Wed Jul 15, 2020 8:54 pm
Forum: RouterOS beta
Topic: Chateau LTE12 starts with 3CA but becomes 2CA after a while
Replies: 10
Views: 3831

Chateau LTE12 starts with 3CA but becomes 2CA after a while

I noticed this recurring issue - running 7.0beta8 and modem firmware EG12EAPAR01A06M4G. When LTE connection is set up, I initially see that the router aggregates 3 bands across the available ones : B1,B3,B7 After some time it goes into 2CA mode and it never reverts back to 3CA unless I close and reo...
by leopardus2
Tue Dec 17, 2019 9:42 am
Forum: General
Topic: port mapping outside to inside, but "preserve" destination address [SOLVED]
Replies: 13
Views: 2894

Re: port mapping outside to inside, but "preserve" destination address [SOLVED]

Further tests... sometimes the http connection completes, sometimes it gets reset.
Puzzled....
by leopardus2
Tue Dec 17, 2019 1:36 am
Forum: General
Topic: port mapping outside to inside, but "preserve" destination address [SOLVED]
Replies: 13
Views: 2894

Re: port mapping outside to inside, but "preserve" destination address [SOLVED]

After better looking at the capture on client (192.168.166.12) the TCP handshake is completed, then remote sends an RST. See screenshot...
IMG_2159.jpg
by leopardus2
Tue Dec 17, 2019 1:17 am
Forum: General
Topic: port mapping outside to inside, but "preserve" destination address [SOLVED]
Replies: 13
Views: 2894

Re: port mapping outside to inside, but "preserve" destination address [SOLVED]

An addendum: while TCP seem to fail, this is working fine for UDP, i.e. DNS resolution works using the mangle rule....
by leopardus2
Tue Dec 17, 2019 1:08 am
Forum: General
Topic: port mapping outside to inside, but "preserve" destination address [SOLVED]
Replies: 13
Views: 2894

Re: port mapping outside to inside, but "preserve" destination address [SOLVED]

You should probably share a little bit more about what you're doing, I can't say that I know what exactly is going on. You wrote that you want packets delivered to internal server, and "internal server will then reroute packet outside to proper destination". Is "outside" back th...
by leopardus2
Mon Dec 16, 2019 11:04 pm
Forum: General
Topic: port mapping outside to inside, but "preserve" destination address [SOLVED]
Replies: 13
Views: 2894

Re: port mapping outside to inside, but "preserve" destination address [SOLVED]


It worked!! Thank you so much!
I think I also need source nat though... or the replies can't go back to the client in WAN.... am I correct?
Should I set up a srcnat to go with this?

Rick
by leopardus2
Mon Dec 16, 2019 10:54 pm
Forum: General
Topic: port mapping outside to inside, but "preserve" destination address [SOLVED]
Replies: 13
Views: 2894

Re: port mapping outside to inside, but "preserve" destination address [SOLVED]


I guess the packets are dropped by the default firewall config?
Yeah, dropped by "defconf: drop all from WAN not DSTNATed" :-)
It worked!! Thank you so much!

Rick
by leopardus2
Mon Dec 16, 2019 10:51 pm
Forum: General
Topic: port mapping outside to inside, but "preserve" destination address [SOLVED]
Replies: 13
Views: 2894

Re: port mapping outside to inside, but "preserve" destination address [SOLVED]

It should be: /ip firewall mangle add chain=prerouting dst-address=<original address> protocol=tcp dst-port=80,443 action=route route-dst=<internal server> Thanks. The mangle rule is matched, however nothing reaches the internal server. I guess the packets are dropped by the default firewall config...
by leopardus2
Mon Dec 16, 2019 10:20 pm
Forum: General
Topic: port mapping outside to inside, but "preserve" destination address [SOLVED]
Replies: 13
Views: 2894

Re: port mapping outside to inside, but "preserve" destination address [SOLVED]

Instead of dstnat, it should be possible to route it where you want it. You can't use regular way with different routing tables, but there's more direct action=route in prerouting.
could you please provide an example? I am not so prolific with routeros... :-)

Thanks
Rick
by leopardus2
Mon Dec 16, 2019 10:16 pm
Forum: General
Topic: port mapping outside to inside, but "preserve" destination address [SOLVED]
Replies: 13
Views: 2894

Re: port mapping outside to inside, but "preserve" destination address [SOLVED]

Is this a custom protocol or could you use something in the Service Ports nat helper section?
it's http and https.
by leopardus2
Mon Dec 16, 2019 8:35 pm
Forum: General
Topic: port mapping outside to inside, but "preserve" destination address [SOLVED]
Replies: 13
Views: 2894

port mapping outside to inside, but "preserve" destination address [SOLVED]

Hi, is there a way to have a packet that comes from WAN reach a server behind the router, but preserving the original destination address of packet? If I use classic dstnat, destination address is changed. I need dstnat (as packet is coming from WAN) and need that packet goes to a defined internal s...
by leopardus2
Sat Oct 22, 2016 5:08 pm
Forum: General
Topic: Using NAT in a bridged setup?
Replies: 0
Views: 508

Using NAT in a bridged setup?

Hi there, I am trying to rewrite destination address for a packet which is originated in a LAN behind a CPE so that it is forwarded to the AP with the rewritten destination address. The CPE is configured as station bridge; the entire network is bridged. i.e. the AP is also configured as AP bridge an...
by leopardus2
Fri Oct 14, 2016 11:28 am
Forum: General
Topic: some broadcast packets lost in bridged setup
Replies: 0
Views: 485

some broadcast packets lost in bridged setup

Hi there, I am experiencing a broadcast packet loss between a client connected to a SXt2 and the AP (Basebox 2). The SxT2 is configured in station bridge mode and connects to the AP just fine. Both are on RouterOS v6.36. AP is configured in AP bridge mode. Signal is very good and bandwidth test is i...