MikroTik

janus20

Hi,

Could you post your config? Please post content of output command;

/export hide-sensitive

kind regards,

janus20

hi, Sorry, i forgot to mention that you should move my suggested rules near top after first drop rule.. Please, move rules #13 and #14 after rule #2 ( add action=drop chain=input connection-state=invalid ) and try again. P.S. Also your 2nd rule add chain=input connection-state=established,related wa...

janus20

Hi, Maybe copy&paste mistake... try again, please: /ip firewall filter add action=accept chain=input comment="Accept external port to be forwarded #tcp" dst-address=192.168.1.2 dst-port=33000 in-interface=eth5-WAN log=yes log-prefix=fwd-acc-tcp protocol=tcp add action=accept chain=inpu...

janus20

Hi, Try first to accept incoming connections on 33000 port since you have a rule that drops in input on your WAN interface. /ip firewall filter add action=accept chain=input comment="Accept external port to be forwarded #tcp " \ dst-address=192.168.1.2 dst-port=33000 in-interface=eth5-WAN ...

janus20

Hi,

Please send a private message to me -- it is for something else. I do not need any technical help. Thanks!

Just tried but it does not works. On your profile contact link is disabled maybe from your profile is disabled to allow to be contacted, perhaps.

kind regards,

janus20

Hi,

Please, show us your config in order to get a better idea. Copy&paste here content of command:

/export hide-sensitive

kind regards,

janus20

Hi, I guess that means that the bridge isn't set up properly? Setting the VPN pool in the same subnet as the DHCP pool surely means that there's a problem connecting them up? I am not so sure about that. Maybe we have missed some forwarding rules into firewall or alike. I have noticed some weird rul...

janus20

Hi, I read some people noting that in 6.38 they were having some DHCP Server issues, but I was also having the problem with 6.35 (what i had before on this router). So I dont think my problem is related. I manage few RB models, rb750gr3, RB2011UiAS, RB3011Uias, rb951 on 6.38.5 and had no issue with ...

janus20

Hi, Quick response: add bridge=Lan disabled=yes interface=ether2 a. Seems that you have disabled ether2 port in bridge. Go to Bridge -> Ports -> select ether2 and click enable. b. if you do not want ether2 to be part of bridge then go to interfaces list, double-click on ether2 and from master port d...

janus20

Hi, From your schema which device is your gateway for your PC ( pc address 172.30.84.13) ? router 10.0.0.254 ? Switches 10.1.0.100 and 10.1.0.102 are configured with Vlans ? or are just "transparent bridge" like ordinary "dumb" switches ? Stupid question: Have you tried on PC put...

janus20

Hi, Glad it works. I do not know that because i have never done it before. I am at the beginning into Mikrotik world myself. Let me few days to document myself and to try to test your case and i will be back with an answer. If you are in a hurry i hope someone else more experienced than me could hel...

janus20

Hi, Quick answer: by using nslookup, ping or resolve. a. From a windows machine on command terminal type: nslookup -type=A webpage_address Into non-authorative section under addresses you should see the ip(s). or just ping webpage_address it should return ip address after "reply from..." b...

janus20

Hi,

For transparent webproxy you can find a tutorial here:
https://wiki.mikrotik.com/wiki/Proxy_on ... rnal_drive

Hope it helps.

kind regards,

janus20

Hi,

Would help if you just could provide:

1. a network schema where your rb is part of
2. your rb config as well; please post output of:

/export hide-sensitive

kind regards,

janus20

Hi, Do you have fasttrack enabled ? If so, you should see "dummy" rules both into filter and mangle tables and also fasttrack rules into filter table: /ip firewall filter add chain=forward action=fasttrack-connection connection-state=established,related comment="defconf: fasttrack&quo...

janus20

Hi, OK, I get it now. So need to put it in console: /ip firewall nat add chain=dstnat protocol=tcp port=1723 in-interface=ether1 action=dst-nat to-addresses=x.x.0.20 to-ports=1723 ... and depending on his firewall filter rule might add this as well: /ip firewall filter add action=accept chain=input ...

janus20

Hi,

Please copy&paste output of command:

/export hide-sensitive

kind regards,

janus20

hi, Can you confirm that you have done the following ... a. ip address of ether2 interface /ip address add address=192.168.0.70/24 interface=ether2 network=192.168.0.0 b. dhcp server and pool settings for ether2 /ip pool add name=dhcp_pool8 ranges=192.168.0.80-192.168.0.90 /ip dhcp-server add addres...

janus20

Hi, What do you mean by ? If I put all the traffic through the router the static address addition of \\server.local works but \\server doesn't (I realise this probably shouldn't work) but that Windows address resolves on the network. The 10.160.100.x range can be reached. Well, i am not sure why is ...

janus20

Hi, I am not an experienced hotspot admin, in fact never configured it before, but i think that If you are kind enough to post your configuration here maybe it would be more useful for others to understand and help you out with your situation. Please, copy&paste here content of the command: /exp...

janus20

Hi, You may find useful informations regarding your request here: https://wiki.mikrotik.com/wiki/Manual:Configuration_Management Also, if you are looking for a script to do it automatically you can find examples here, under "System Maintenance": https://wiki.mikrotik.com/wiki/Scripts Hope ...

janus20

Hi, @Sebus, calm down man, andriys , macsrwe and jarda have explained very well purpose of Quick Set. As an adition would like to point out hardware schema for your RB: https://i.mt.lv/routerboard/files/Block-RB2011UAS-2HnD.pdf I do not want to continue that discution about Quick Set but i suggest t...

janus20

Hi, NAT rule should be applied to pppoe-out and not to ether1 . When you connect via PPPOE to your ISP, pppoe-out is now your WAN interface not ether1 anymore. So that, any firewall rule you may write from now regarding wan interface should use pppoe-out and not ether1. Into IP -> Firewall -> NAT ta...

janus20

hi, what do you mean by ? If I put all the traffic through the router a. do not see any "local-arp" on defined bridge1 /interface bridge add arp=proxy-arp name=bridge1 still no ping ? b. try to put ip 192.168.89.1 not on ether2-master but on bridge1 from your config : /ip address add addre...

janus20

Hi, Is your network schema like : ISP -> RB 2011 -> RB Groove A-52 ( connected via UTP cable into one of the rb2011 lan ports, ex. port 2-10 ) ? I understood so far : - on your main router, rb2011, you have internet connection and if you connect wireless on rb2011 ESSID you have internet connection ...

janus20

Hi,

Would be very useful if you could post your config here ( copy&paste /export hide-sensitive and mask your public ips or user/passwd's ).

kind regards,

janus20

Hi,

There is no need for double thread.
Check: viewtopic.php?f=13&t=119412

kind regards,

janus20

Hi, Do you need a static route from lan to wan or do you need masquerade entire lan network to wan interface ? a. static route from lan to wan ( presume you want to route 192.168.0.0/24 to wan interface, ether1 ) 1. new terminal /ip route add dst-address=192.168.0.0/24 gateway=ether1 2. IP left menu...

janus20

Hi,

Could you post a network diagram and also your mikrotik config ( /export hide-sensitive ) ?

kind regards,

janus20

Hi,

And the solution was/is ? Might help other users in the same situation too

kind regards,

janus20

Hi, You could find a guide here : https://wiki.mikrotik.com/wiki/L2TP_%2B_IPSEC_between_Mikrotik_router_and_a_PC and main page with other examples here: https://wiki.mikrotik.com/wiki/Tunnels If you still have no success please post here your config, by typing into New terminal following command: /e...

janus20

Hi, Without knowing how building levels are split ( office spaces, living space ) and it's area/footprint i would suggest following scenario: - on each level you could try with ONE basebox 2 with 2 tp-link 2.4Ghz 8dbi omni anntenas Basebox 2: https://routerboard.com/RB912UAG-2HPnD-OUT Tp-link 8dbi a...

janus20

Hi, Perhaps you tried to disable rule #1 (dummy) which indeed isn't possible. That's what he did :) Do NOT disable rule #5 (above) since this will block response packets. Just disable the one forward rule with action=fasttrack-connection. He said fasttrack is interfering with his queues. So i presum...

janus20

Hi, Fasttrack enabled by default defined by those two rules: /ip firewall filter add chain=forward action=fasttrack-connection connection-state=established,related add chain=forward action=accept connection-state=established,related You could see entire default configuration by running into terminal...

janus20

Hi, Don't confirm! Would you like to reset the configuration to default ? Never tried or do not know if it is possible from LCD screen to backup your config but would be better if you do it from webFig or Winbox. You said you connected USB flash drive in it but as i remember, i might be wrong on thi...

janus20

Hi Darren, I have made a simple test with VPN PPTP into one of my clients network and from my side it was working ( ping, RDP, access sharing on a workstation running Windows Xp ). It won't resolve your dns names because you have to "suffix" them, at least that's how worked for me. Here is...

janus20

Hi, I have also an idea. You could separate Roku mediaplayer from your local network and route it directly via your ISP gateway; something like : 1. let suppose you have ether5 port free; remove it from current bridge, if you have one defined, or ether2 (master ) by setting master-port: none 2. assi...

janus20

Hi, Use some dynamic dns service to register your own domain. ok! so after i register my domain in dynamic dns service, what should i do next? After that you should write a script in order to verify/update your dynamic ip then use a scheduler to run script automatically on a period of X minutes/ Y h...

janus20

Hi,

Might help you this thread: viewtopic.php?f=13&t=118697
I think Sob has explained very well.

kind regards,

janus20

Hi,

Try with:

/queue simple print stats

or

/queue simple print detail

Hope it helps.

kind regards,

janus20

Hi, Any one with the correct way to block torrent downloads on my mikrotik? Here is a config that is working for me, tested on rb750gr3, rb3011UiAS, rb951g-2hnd. I can not remember from where i have implemented it, most likely from this forum or an outside link from a post. It stops .torrent file do...

janus20

Hi,

No problem. Anytime

kind regards,

janus20

Hi,

Port number is 8291..

Sharp eyes... i did not notice it

/ip firewall filter
add action=accept chain=input comment="Winbox from Internet" dst-port=8291 protocol=tcp in-interface=ether1

kind regards,

janus20

Hi, Just a guess: a. put your input before any drop rule /ip firewall filter add action=accept chain=input comment="Winbox from Internet" dst-port=8921 protocol=tcp in-interface=ether1 b. disable rule add action=drop chain=forward comment="defconf: drop all from WAN not DSTNATed"...

janus20

Hi, a. have you done any update on DVR firmware or microtik ROS ? b. have you tried to connect externaly using other pc/laptop ? c. have you checked if your 6000 port is open from outside ? P.S. I am just curious about error you have received after filled in username/password ( on changed dst-nat po...

janus20

Hi, As i can see your configuration is as follow: ether1 - WAN ether2-5 - LAN with ether2 as master port Your LAN address range is 10.160.100.0/24 - DHCP server pool: 10.160.100.2-120 - ether2 ip address is 10.160.100.1 - you have pptp-server/l2tp-server both enabled I skip over filter rules ( which...

janus20

Hi,

Are all pc/laptop from 1st-4rd floor into the same WORKGROUP/DOMAIN ?

kind regards,

janus20

Hi,

Sorry for delay i was away with job. One more question: is there any port ( ether2-ether5 ) unused ( meaning you do not have any device plugged in it) ?

kind regards,

janus20

Hi, After you connected via Webfig, from left menu click on "New terminal" option. It will open a new window ( terminal window ). In that windows please type the following command: /export hide-sensitive ( meaning "showing" current config ) Copy & paste here in order to have ...

janus20

Hi, After you connected via WebFig, on the left menu click on the " bridge " option. Then in the right you should see your current bridge name. Click on bridge name, then also into the right side of the screen, you should see bridge settings. Check for ARP , is right almost the top of the ...

janus20

Hi, Just a few questions and an idea. a. did you try with those ICMP rules from firewall disabled ( since you said that there are some replys from management lan device) ? b . in /ppp profile you defined local-address as "192.168.150.1" but which interface/bridge does have this address def...

janus20

Hi,

Regarding DDNS on router with no-ip you can find tutorial below. I have used for myself and confirm that it is working:
http://wiki.mikrotik.com/wiki/Dynamic_D ... _No-IP_DNS

kind regards,

janus20

Hi, I have a PTP link using QRT 5ac for same distance, 6km over a plain field. Both QRT are mounted on 20m height on water tower and 25m on a granary ( grain elevator) since december 2015. It has been pass throught 2 winters and enought heavy rains and are still online. In fact, link never went down...

janus20

Hi, Sorry i was not pay attention too. Both commands have a typo meaning is mising "add" in front of them. Corrent syntax: /ip firewall nat add chain=dstnat action=dst-nat in-interface=ether1 dst-port=10501-10502 to-addresses=192.168.1.100 to-ports=10501-10502 protocol=tcp and /ip firewall...

janus20

Hi, Let's suppose your WAN interface is ether1 and your PC lan ip address is 192.168.1.100. I think that what Revelation wants to say is that you should issue following command into "New Terminal" for 10501-10502 tcp /ip firewall nat chain=dstnat action=dst-nat in-interface=ether1 dst-port...

janus20

Hi, Just an idea: 1. try with Winbox 3.10; 2. if winbox 3.10 still does not work i have a suggestion: connect via winbox on WHITE HOUSE 1 ( 192.168.88.2 ); from it go to ip -> neighbors. If you have interfaces enabled on "discovery interfaces" tab ( on 192.168.88.2 device ) into the NEIGHB...

janus20

Hi, Without any knowledge about your config you could give a try to this: /ip firewall nat add action=src-nat chain=srcnat dst-address={your_wk_lan_ip} dst-port=32303 protocol=udp comment="UDP 32303 theHunter" *dst-address={your_wk_lan_ip} - here put your workstation internal lan ip ( Ex.:...

janus20

Hi, So if i understood corectlly you want to connect to your gr750 from outside via PPTP and have internet connection from PPTP tunnel but in the same time not to interference with local lan network. Here is an idea: a. you should use one ether especially for this. Remove ether5 from master-bridge e...

janus20

hi, I have just solved the problem with help from mikrotik support ( i have just writen them an e-mail). Magic phrase from Mr. Janis M. was : If you still insist on using tunnels, use different IP range and exclude them from policy routing. Best regards, Janis M. So i have decided to leave as is pol...

janus20

Hi,

would you be kind enough to elaborate what do you want to achieve ?

kind regards,

janus20

Hi, I think there is a typo with your ip address for ether1-LAN; it can not be: 192.168.2.0 ( from /ip route print ) ! Check ip -> addresses see that ether1-LAN have ip address 192.168.2.1/24 , network 192.168.2.0 ( meaning netmask 255.255.255.0 ), interface ether1-LAN . Also noticed: /ip dhcp-serve...

janus20

Hi @bajodel,

I see. I will try what you have suggested and come back with results.

Thank you very much.

kind regards,

janus20

Hi, Maybe this will help you, presuming your modem is in bridge and your mikrotik will do the rest: http://wiki.mikrotik.com/wiki/MikroTik_RouterOS_and_Windows_XP_IPSec/L2TP Adjust firewall settings Do not forget to allow UDP 500 (Dst.Port), UDP 1701, UDP 4500 (Nat-Traversal) and Protocol 50 (ESP) i...

janus20

Hi, I have never done a failover scenario but i guess adding parameter "distance" should be enough: /ip route add dst-address=0.0.0.0/0 gateway=ISP_1 distance=1 check-gateway=ping /ip route add dst-address=0.0.0.0/0 gateway=ISP_2 distance=2 Might help you this links too: http://wiki.mikrot...

janus20

Hi,

as i remember there is an attribute, "check-gateway" to "/ip route" which takes as paramaters "ping" or "arp". An example:

/ip route
add dst-address=0.0.0.0/0 gateway=XXX check-gateway=ping

kind regards,

janus20

Hi @bajodel, First of all thank you very much for your inputs. Second, i have read all your instructions and have implemented. Still does not work after i have sucessfuly connected via PPTP. Here is some logs: I. after add static route ( on route list window it says "unreachable", but in t...

janus20

Hi, Yes it is possible. - for ether3-5 set master-port to none. - create 2 bridges: bridge1 and bridge2 ( from left menu, hit bridge then in BRIDGE tab click on "+" sign ) - after creating bridges, on bridge windows go to tab PORTS; click on "+" and in general tab into "Inte...

janus20

Hi,

would you be kind to post output of

/ip dhcp-server export

kind regards,

janus20

Hi,

I think Sob is reffering to openVPN client settings not into Mikrotik RB side. On school on your laptop/pc you have installed a OpenVPN client in order to make VPN connection to your MK at home, right ?

kind regards,

janus20

Hi @bajodel,

Have you got a little spare time to look over my config ? Is there any info you'd need ?

Thank you very much for your time, once again.

kind regards,

janus20

Hi,

Do you want to reconfigure pool address or clear all dynamic leases already allocated ?

For last might help this: http://forum.mikrotik.com/viewtopic.php?t=70106

Hope it helps.

kind regards,

janus20

Hi,

Please use /export file=XXX in order to have a clear view of your configs.

kind regards,

janus20

Hi,

ok, no problem

regards,

janus20

HI, Just curious: 1. from network 1 PC (WLAN) 192.168.1.x -> 192.168.100.1 ( zyxel MuM ) - ??? PC (LAN) 192.168.1.x -> 192.168.100.1 ( zyxel MuM ) - ??? 2. add on RB750 on filter rules before rule 3 ( ;;; defconf: drop all from WAN ): /ip firewall filter add action=accept chain=forward comment=\ &qu...

janus20

Hi, Well beside default firewall config which comes on rb750, at first sight from ip address print : 1 192.168.1.2/32 192.168.1.0 ether3 - RoTa 2 192.168.100.2/32 192.168.100.0 ether4 - MuM should be: 1 192.168.1.2/24 192.168.1.0 ether3 - RoTa 2 192.168.100.2/24 192.168.100.0 ether4 - MuM I mean ip ...

janus20

Hi,

Please post ( from New Terminal window type commands below ) output of:
/interface export
and
/ip address export

And also, could you tell us in which ports from RB750 did you connect Fritzbox and Zyxel ?

kind regards,

janus20

Hi @bajodel, Very sorry for delay i was away last 3 days. I was testing inside network like i said in last post but i could not see anything in logs. Maybe because both laptop and workstation were connected into same switch and they have made a direct connection and not through mikrotik or maybe i d...

janus20

Hi,

I am not sure but try changing default "keepalive-timeout" value, from 60 to 120 into pppoe-client ( interfaces -> pppoe-client .... ).

kind regards,

janus20

Hi, 1. - done ( tested with proxy-arp and also with local-proxy-arp ); 2. - done ( i see bytes and packets moving ), i put it as a 3th rule before even "drop invalid rule"; /ip firewall filter add action=accept chain=forward comment="Explicit forward" dst-address=172.16.21.240/28...

janus20

Hi,

Just a guess. On first rule, chain "forward", would not be corect if you specify the interface ?

kind regards,

janus20

Hi @bajodel. Nope; Code you listed is working fine ( as i have already mentioned above ) but i want to connect via RDP from inside lan after i have been connected over PPTP ( which is always giving me address 172.16.21.252/32 after connected ) and not on direct from outside using port forwarding on ...

janus20

Thanks @bajodel for your answer. I just did but nothing change: [freya@gw-BFY] > /interface ethernet export # jan/03/2017 01:26:10 by RouterOS 6.37.3 # software id = QEKX-Y5VI # /interface ethernet set [ find default-name=ether1 ] comment="WAN RDS - PPPOE1 + PPPOE2" set [ find default-name...

janus20

Hi, I guess that as long as it hangs on "Authenticating user..." most likely is on microtik something. You could temporary allow connection from outside on winbox port service, connecting first via winbox then watching log while you are attempting to connect via pptp. I have two rb750gr3 c...

janus20

Hi, Have you tried to open "pptp" port ( 1723 ) into your firewall ? When you initiate pptp connection from outside ( presuming from Windows after you have set up a VPN connection ) do you have any error ? ( i mean in connecting window it remains on "opening port...." or shows an...

janus20

Hi everybody, Great news. I have made it using a hex RB750gr3, firmware 6.37.3 and a few modifications beside original configuration above. Here is a speed test on a workstation connected directly to mikrotik router ( i have choosen Amsterdam server for testing external bandwidth), CPU was about 50-...

janus20

Hi OceanWW,

Yes, it is normal what you see in "New Terminal"; what JB172 wanted to say is that in "New Terminal" window type export, hit enter and copy&paste results here.

kind regards,

janus20

Hi, Based on your two rules and the fact that you need Hairpin Nat, try this: /ip firewall nat add action=masquerade chain=srcnat comment="Access WAN from local LAN" dst-address=192.168.1.1 dst-port=80 out-interface=\ bridge-LAN protocol=tcp src-address=192.168.1.0/24 to-addresses=192.168....

janus20

Hi, I think your problem accessing port forwarding services from inside using "public ip" as your point of origin is related to Hairpin NAT. http://wiki.mikrotik.com/wiki/Hairpin_NAT For your rules: 0 chain=dstnat action=dst-nat to-addresses=10.1.0.4 to-ports=5001 protocol=tcp dst-address=...

janus20

Hi,

One VM with nginx behind rb i think it would be an elegant solution; easy with port forwarding on rb too.

P.S. Goodluck ( "multa bafta" )

janus20

Hi, Nope, i think ap bridge is fine. Maybe frequency but i have noticed that your signal si some kind of low ( -73db if that is your laptop). Could you give a comparation list with other wifi router which you say you have better speed? ( chanel width, frequvency, signal level, download speed, ping -...

janus20

Hi, Well, for a quick view, you could change channel width from "20Mhz" to "20/40Mhz Ce", in the first place. You could do that directly into Quick Set window or accessing, from the left menu, wireless -> interfaces tab -> double click wlan1 interface then into wireless tab selec...

janus20

Hi, In ip -> routes as you see in quick set you do not have default route to 192.168.1.1 ( AS 0.0.0.0 bridge1 reachable ) that why it is not working. Short way from ip -> routes: a. delete second rule DS 0.0.0.0 192.168.1.1 reachable b. modify first rule AS 0.0.0.0 bridge1 reachable, double click on...

janus20

Hi, Sure, it is ok but you will need to add default route to proper lan gateway ( modify in step 3. with proper gateway or skip step 3 and may do it from ip -> routes, click '+', in general tab of new route leave Dst. address 0.0.0.0/0 untouched and click in field Gateway: and enter proper gateway i...

janus20

Hi, If you want that your wAP would act simply as a AP bridge between your current router who is managing dhcp pool and internet connections ( 192.168.1.1 ), login into your wAp on it's MAC address, not 192.168.88.1, and do the following in New Terminal window: 1. putting in bridge mode, alocating e...

janus20

Hi, To block download of .mp3 files from any browser you could do: /ip firewall filter add action=drop chain=forward comment="block .mp3 download" content=.mp3 log=yes log-prefix=block-dwd-mp3 Regarding blocking HTTPS sites like youtube, facebook... 1. first create a rule on layer7 protoco...

janus20

Hi, Supposing your pppoe connection is on ether1 interface, Are you sure ether1 mac address is the same with tp-link wan mac address ? /int ethernet print As i remember from a few tp-link routers when configuring a pppoe connection beside username/passwd, eventually service name and MTU there is not...

janus20

Hi, Maybe you forgot to set dns and default route ( rb750 ip ) ? Please define " I can't access RB750..": can not access it on webFig, Winbox or does not respond to ping ? Could you post here results of ( from 'New Terminal' of mAP ) : /ip route print and /ip dns print P.S. May i ask why d...

janus20

Hi, What do you want to achive ? If a cable from your isp router is connected into ether1 interface and ether1 has been assigned ip address 192.168.0.15 (/24 i suppose), in ether 2 what is connected? is there a cable who is then connected into a switch in which are connected both your servers or you...

janus20

Hi, I think you need 2 rules: first, a dst-nat in nat chain and second a forwarding rule in filter chain. Let's say that for new machine you wish to alocate port 4000, on mikrotik router, and fordwaring the remote desktop to your new machine 192.168.0.10 on which remote desktop is listening on 3389:...

janus20

Hi,

Thanks a lot ( multumesc frumos) @docmarius. I will buy the equipment and made some tests with "dial on demand" disabled. Most probable on monday next week i will be back with an input.

Thank you very much once again.

kind reagrds,

janus20

Hi,

If your winbox port is still 8291, try this:

/ip firewall filter
add action=accept chain=forward dst-port=8291 comment="Accept connections from Winbox" in-interface=pppoe-out1 log=yes protocol=tcp

kind regards,

janus20

Hi,

Please, forgive my insistence as well as i do not want to be rude, at least anyone could give me an advice?
Thanks in advance.

kind regards,

janus20

Hi, I understood that he wants that anyone who is trying to connect on either 80 or 443 ports on his public ip, which is not fixed, to be forwarded into inside local lan BSD box 9 192.168.0.254) that is running a nginx instance ( probable his website ); that was my rules about. Regarding accesing We...

janus20

Hi @lebarondemerde, First of all you should change default WebFig ports ( 80, 443 ) and Winbox port as well; this could be done from menu IP -> Services, either from Winbox or WebFig. Then, supposing that ether1 is your WAN and ports 2-4 are in bridge, or are making part of your internal lan in whic...

janus20

Hi rudios,

I see, it makes a lot of sense now. Thank you very much for your explications.

kind regards

janus20

Hi, In his latest post he said: How do I open the port 8150 in the router? Sorry for the many questions. Unfortunately, it still doesn't work. I can see packets. I am a beginner into mikrotik routers myself so that please forgive me but I still think that proper chain commands here would be ( it is ...

janus20

Hi pcarlo71, In my humble opinion you should put in FILTER rules, before rule nr. 6, a rule to accept connections for port 8150: IP -> FIREWALL -> FILTER 1. In GENERAL Tab, click "+", for add new rule 2. select CHAIN = input 3. select PROTOCOL = (6) tcp 4. select destination port = Dst. Po...

janus20

Hi, I am new here and this is my first post so please be patient with me. I have a situation in whitch my client ISP has alocated him 2 pppoe conections ( 2 different username and passwords) on the single FTP cable. Now it is working as ISP cable is into a 5 port switch from where leave 2 ftp cables...

Search found 108 matches