Community discussions

MikroTik App

Search found 117 matches

by td32
Wed Jun 21, 2023 12:17 am
Forum: Wireless Networking
Topic: ax series lineup WiFi issues
Replies: 340
Views: 41191

Re: ax series lineup WiFi issues

We have introduced several improvements regarding the AX stability. It is still a work in progress, but in order to gather more feedback as soon as possible, here is a link to the latest alpha version that contains these fixes. The fixes are mainly targeted at the issue discussed in this thread - t...
by td32
Mon May 01, 2023 11:18 pm
Forum: Announcements
Topic: v7.9rc is released!
Replies: 253
Views: 75025

Re: v7.9rc is released!

i was given an alpha version(7.10alpha104) from support from a different issue ( device could connect only with wpa-psk, not wpa2-psk ) that was not fixed yet in this version, but at least it seams to have fixed the random disconnects every couple hours for a different wifi device with the hAP ax3 (...
by td32
Mon Apr 17, 2023 11:09 pm
Forum: Announcements
Topic: v7.9rc is released!
Replies: 253
Views: 75025

Re: v7.9rc is released!

device can't connect with wpa2-psk ccmp while it worked fine with ros 6.x on hap ac same config.
Does the issue persist if you set security.disable-pmkid to 'no'?
If so, please open a support ticket regarding this.
Yes same issue with or without disable-pmkid set.
Will open a ticket.
by td32
Sat Apr 15, 2023 9:26 pm
Forum: Announcements
Topic: v7.9rc is released!
Replies: 253
Views: 75025

Re: v7.9rc is released!

What if you disable ccmp ?

Just checked, I don't have it enabled on my setup (wpa-psk2 and psk3).
Same issue. Only by enabling wpa-psk it connects immediately ...
it must be some missing implementation on wifiwave2 since this device worked fine with wpa2-psk on ros 6.x
by td32
Sat Apr 15, 2023 8:37 pm
Forum: Announcements
Topic: v7.9rc is released!
Replies: 253
Views: 75025

Re: v7.9rc is released!

Does it happen in stable v7.8?
Now...there is a lot of functionality that's missing in wifiwave2...so very well may not work in v7.8.
same issue with the same exact log output *disconnected, key handshake timeout*
by td32
Sat Apr 15, 2023 8:27 pm
Forum: Announcements
Topic: v7.9rc is released!
Replies: 253
Views: 75025

Re: v7.9rc is released!

.band=5ghz-n Not saying it shouldn't work, per se. But any reason to change the band? e.g. the default, .band=5ghz-ax same issue with ax or any other band. Was set to n to replicate the known working config of the hap ac on ros 6.x Have tried every combination possible but the only working solution...
by td32
Sat Apr 15, 2023 7:27 pm
Forum: Announcements
Topic: v7.9rc is released!
Replies: 253
Views: 75025

Re: v7.9rc is released!

got my hands on hap ax3 first issue with wifiwave2, device can't connect with wpa2-psk ccmp while it worked fine with ros 6.x on hap ac same config. i keep getting in the logs a loop of the following lines : MAC_ADDR@wifi1 connected, signal strength -44 MAC_ADDR@@wifi1 reauthenticating MAC_ADDR@@wif...
by td32
Sat Feb 04, 2023 5:19 pm
Forum: Beginner Basics
Topic: hAP ax2 link speed problem [SOLVED]
Replies: 14
Views: 1802

Re: hAP ax2 link speed problem [SOLVED]

Update: After netinstall i get this when first powering the router on: Default.jpg There is no more normal default configuration for some reason no matter what i do... aaaaaand there is no wireless interfaces at all... on both routers... i really don't know what is wrong now... is the wireless pack...
by td32
Mon Jan 23, 2023 12:56 am
Forum: RouterBOARD hardware
Topic: MikroTik hAP ax³ [C53UiG+5HPaxD2HPaxD]
Replies: 80
Views: 25356

Re: MikroTik hAP ax³ [C53UiG+5HPaxD2HPaxD]

You have more "Totals Sectors Write" than i ever had on my hap ac in 5 year time.
by td32
Fri Oct 21, 2022 9:23 pm
Forum: RouterOS beta
Topic: RDP Connection Dying
Replies: 57
Views: 31276

Re: RDP Connection Dying

Can anyone please confirm how the default UDP timeout setting is set on 6.x firmware? 6,47.10 enabled: auto tcp-syn-sent-timeout: 5s tcp-syn-received-timeout: 5s tcp-established-timeout: 1d tcp-fin-wait-timeout: 10s tcp-close-wait-timeout: 10s tcp-last-ack-timeout: 10s tcp-time-wait-timeout: 10s tc...
by td32
Thu Oct 20, 2022 11:11 pm
Forum: General
Topic: Formal supply chain update?
Replies: 9
Views: 879

Re: Formal supply chain update?

CRS328-24P-4S+RM order date 07/12/2021
arrived 2 days ago 18/10/2022 ...
by td32
Wed Jan 05, 2022 7:30 pm
Forum: General
Topic: scratching my head? i have 256m of ram while product page say 128? [SOLVED]
Replies: 2
Views: 952

Re: scratching my head? i have 256m of ram while product page say 128? [SOLVED]

you are lucky,
some of the early batches had 256Mb of ram due to 128Mb module shortage.
by td32
Sat Dec 26, 2020 11:29 pm
Forum: General
Topic: Wireless in 2.4 and out via 5gha in hAP ac²
Replies: 4
Views: 1020

Re: Wireless in 2.4 and out via 5gha in hAP ac²

yes hap ac2 has to physical wifi interfaces, and what you want to achieve can be configured quite easily.
lan dhcp on wlan2 5Ghz interface, wan on wlan1 2Ghz
You can use priority routing using the Distance value so when you plug the cable you can use that one as wan instead of wlan1 2Ghz
by td32
Mon Jun 22, 2020 9:59 pm
Forum: Announcements
Topic: v6.47 [stable] is released!
Replies: 348
Views: 171218

Re: v6.47 [stable] is released!

For 5 GHz-only models (LHG5 etc) it works OK.
I think the problem is in arm chips.
LHG5 uses MIPS architecture.
Now (and possibly always) ROS does not have support for some wireless configurations.
hap ac is mips also
by td32
Mon Jun 22, 2020 6:36 pm
Forum: Announcements
Topic: v6.47 [stable] is released!
Replies: 348
Views: 171218

Re: v6.47 [stable] is released!


but indeed for 5 GHz it shows nothing.
i don't remember any ros version to ever show anything under 5 GHz
by td32
Mon Jun 15, 2020 1:55 am
Forum: General
Topic: ppp interface configuration parameters, APN Type, MVNO type, MVNO value
Replies: 3
Views: 1677

Re: ppp interface configuration parameters, APN Type, MVNO type, MVNO value

Have you tried Advanced Mode, and also therein in profile?
sure, but nothing is found there that barely resembles any of this parameters: APN Type, MVNO type and MVNO value
by td32
Sat Jun 13, 2020 9:11 pm
Forum: General
Topic: ppp interface configuration parameters, APN Type, MVNO type, MVNO value
Replies: 3
Views: 1677

ppp interface configuration parameters, APN Type, MVNO type, MVNO value

Is there any way to configure the following parameters in the ppp interface, i have a 3g usb modem attached that will not connect to the data network unless its configured like below(on android) APN: internet-32 MCC: 222 MNC: 10 APN Type: default,sup,dun APN protocol : IPv4/IPv6 APN roaming protocol...
by td32
Thu Jun 04, 2020 1:35 pm
Forum: RouterOS beta
Topic: Feature Request - Wireguard Protocol
Replies: 167
Views: 83751

Re: Feature Request - Wireguard Protocol

7.0beta7 (2020-Jun-3 16:31):
!) system kernel has been updated to version 5.6.3;
niceeeeeeeee, guess we are on the right path
by td32
Thu Jun 04, 2020 1:28 pm
Forum: Announcements
Topic: v6.47 [stable] is released!
Replies: 348
Views: 171218

Re: v6.47 [stable] is released!

cAP ac with 6.47 no brodcast 5G network, but in WinBox no errors. All seems fine.
most probably dfs channel, wait or set a non dfs one
by td32
Wed Mar 11, 2020 3:23 pm
Forum: Announcements
Topic: Winbox v3.22 released!
Replies: 117
Views: 84127

Re: Winbox v3.22 released!

I confirm session windows inside main winbox windows are saved but their size seams to be restored to a kind of default preset size at each start

first start windows set up
Image

on new session, also the same on winbox restart

Image
by td32
Sat Feb 22, 2020 9:37 pm
Forum: RouterBOARD hardware
Topic: RB3011: 2.5GbE, 5GbE ?
Replies: 9
Views: 4989

Re: RB3011, hAP ac2: 2.5GbE, 5GbE ?

only RB3011, hap ac2 has 2.0
by td32
Sat Feb 22, 2020 9:28 pm
Forum: RouterBOARD hardware
Topic: RB3011: 2.5GbE, 5GbE ?
Replies: 9
Views: 4989

Re: RB3011, hAP ac2: 2.5GbE, 5GbE ?

both have USB 2.0 if i'm not wrong, so its a no go.
by td32
Fri Feb 07, 2020 8:11 am
Forum: General
Topic: RouterOS as a basic webserver
Replies: 7
Views: 2721

Re: RouterOS as a basic webserver

all i can think is replacing the hotspot login page or kind of that
by td32
Fri Feb 07, 2020 8:08 am
Forum: General
Topic: All HTTP is blocked
Replies: 2
Views: 1028

Re: All HTTP is blocked

most probably you are blocking port 80 with some firewall rule, https uses port 443 so you don't have the same problem as with http
have a look at the forward chain for a block/drop port 80 rule
by td32
Fri Feb 07, 2020 8:02 am
Forum: Announcements
Topic: v6.46.3 [stable] is released!
Replies: 28
Views: 51870

Re: v6.46.3 [stable] is released!

hAP ac2, 256MB ram: With v6.46.* I get a random reboot. some suggest disabling the ntp package https://forum.mikrotik.com/viewtopic.php?f=21&t=156825&sid=81b15b931750fb83f287b7da6c618547#p773118 https://forum.mikrotik.com/viewtopic.php?f=21&t=156825&sid=81b15b931750fb83f287b7da6c618...
by td32
Mon Nov 11, 2019 12:57 pm
Forum: Wireless Networking
Topic: Wifi for a campsite opinion
Replies: 16
Views: 4306

Re: Wifi for a campsite opinion

yes it's weatherproof so you can mount it outside, the only thing i would suggest the white version, you should avoid black colors for outside devices, you want them to absorb less heat possible form the sun (unless you live somewhere near the pole)
by td32
Sun Nov 10, 2019 1:06 am
Forum: Wireless Networking
Topic: Wifi for a campsite opinion
Replies: 16
Views: 4306

Re: Wifi for a campsite opinion

i think you better go with wap ac's for access points, based on number of user that should connect you chose the quantity and the location.
RB4011 is fine as main router and you can set as capsman, hotspot users can be managed through usermanager
by td32
Tue Nov 05, 2019 1:23 pm
Forum: General
Topic: IPSec - pre-shared-key-xauth with GroupName
Replies: 15
Views: 7778

Re: IPSec - pre-shared-key-xauth with GroupName

on windows only by using the cisco client vpn utility
i dont think windows supports it natively
by td32
Tue Nov 05, 2019 12:50 pm
Forum: General
Topic: IPSec - pre-shared-key-xauth with GroupName
Replies: 15
Views: 7778

Re: IPSec - pre-shared-key-xauth with GroupName

set this
my-id=key-id
my-id=groupID
by td32
Thu Oct 17, 2019 10:47 pm
Forum: General
Topic: Is there an new exploit going around?
Replies: 57
Views: 22763

Re: Is there an new exploit going around?

ros should have custom code for implementing ssh.
I thing mikrotik has its own public honeypot devices with traffic monitoring, so i guess they already have whats needed to diagnose it.
by td32
Thu Oct 17, 2019 7:12 pm
Forum: General
Topic: Is there an new exploit going around?
Replies: 57
Views: 22763

Re: Is there an new exploit going around?

so from what has been posted above
it seams like some kind of ssh authentication bypass.
it seams also that at least the user name must be known.
by td32
Thu Oct 17, 2019 4:41 pm
Forum: General
Topic: Is there an new exploit going around?
Replies: 57
Views: 22763

Re: Is there an new exploit going around?

Public ip here on 6.42.12 NOT affected.
SSH enable on non default port
winbox enabled on default port
icmp allowed
access restricted to single ip, port knock and lan
admin user not present
by td32
Fri Aug 16, 2019 5:58 pm
Forum: General
Topic: LTS vs Stable
Replies: 6
Views: 4236

Re: LTS vs Stable

Remote location a continent away, stay on lts as long as you can, if you want to update wait weeks after a new release(lts) and read forum comments about that specific release, before even attempting to update.
Stable channel has been full of serious bugs lately.
by td32
Tue Jul 23, 2019 9:57 am
Forum: Announcements
Topic: v6.45.2 [stable] is released!
Replies: 205
Views: 86547

Re: v6.45.2 [stable] is released!

6.45.2 in my case appears to Cause in WAP AC ( RBwAPG-5ACT2HnD Models) some issues with older HP Laptops ( N max speed Intel Centrino Wireless Cards Circa 2015 Drivers ) (not AC) The PC cannot see the Access Points for 2.4 and 5 GHz appear not Visible at all ( Either using the Built in Wifi Search ...
by td32
Mon Jul 15, 2019 9:22 pm
Forum: Beginner Basics
Topic: Block Youtube but not with gmail
Replies: 12
Views: 9877

Re: Block Youtube but not with gmail

wouldn't a simple dns block work for this case, redirect all dns port 53 requests to your local dns resolver(in case they use any third party dns) and set a static dns to 0.0.0.0 for youtube.com
by td32
Mon Jul 01, 2019 2:34 pm
Forum: Wireless Networking
Topic: User manager wireless VLAN
Replies: 4
Views: 1957

Re: User manager wireless VLAN

if i'm not wrong user manager does not supports WPA2 enterprise
by td32
Sun Jun 09, 2019 4:48 am
Forum: Wireless Networking
Topic: Temporarily disabling 5GHz wi-fi band on hAP ac router
Replies: 2
Views: 3308

Re: Temporarily disabling 5GHz wi-fi band on hAP ac router

I've tried going into the "Interfaces" tab and disabling one of the WLAN interfaces at a time, but it appears that no matter which one I disable the other defaults back to 5GHz. There is no way for this to happen, default wlan1 interface is 2.4GHz and wlan2 is the 5Ghz only If your IoT is...
by td32
Tue Apr 30, 2019 4:15 pm
Forum: General
Topic: wAP ac serious problem! maybe a bug?
Replies: 12
Views: 3156

Re: wAP ac serious problem! maybe a bug?

it might be a failing power adapter.
by td32
Sun Apr 28, 2019 8:15 am
Forum: General
Topic: Force Users to Use Specific DNS Server
Replies: 31
Views: 20620

Re: Force Users to Use Specific DNS Server

were does your pihole get its dns?
you must allow requests from pihole ip to reach the dns resolver the pihole uses
by td32
Sun Apr 28, 2019 7:45 am
Forum: Beginner Basics
Topic: Blocking stuff [Help needed]
Replies: 5
Views: 1635

Re: Blocking stuff [Help needed]

well you can block access to port 80 to the modem ip from all ips in your subnet and add an allow rule over the drop one only for the ips you want to access it
by td32
Thu Apr 25, 2019 11:29 pm
Forum: General
Topic: RB1100AHx4 Dude Edition insecure by default
Replies: 11
Views: 3361

Re: RB1100AHx4 Dude Edition insecure by default

doubt this was on default config.
On default config wan port drops all input traffic
by td32
Tue Mar 05, 2019 7:54 pm
Forum: General
Topic: IPSec Xauth PSK client-to-site? [SOLVED]
Replies: 9
Views: 14146

Re: IPSec Xauth PSK client-to-site? [SOLVED]

Post full IPsec debug logs. If I recall correctly, you have to use my-id=key-id when connecting to cisco XAuth server.
thanks this was the missing info
my-id=key-id
my-id=groupID
by td32
Sat Mar 02, 2019 1:26 am
Forum: General
Topic: IPSec Xauth PSK client-to-site? [SOLVED]
Replies: 9
Views: 14146

Re: IPSec Xauth PSK client-to-site? [SOLVED]

# mar/02/2019 00:22:06 by RouterOS 6.42.12 /ip ipsec policy group set [ find default=yes ] name=groupID /ip ipsec proposal set [ find default=yes ] auth-algorithms=sha512,sha256,sha1,md5 \ enc-algorithms=aes-256-cbc,aes-256-ctr,aes-256-gcm,3des pfs-group=none add auth-algorithms=sha256 enc-algorith...
by td32
Fri Mar 01, 2019 1:55 am
Forum: General
Topic: IPSec Xauth PSK client-to-site? [SOLVED]
Replies: 9
Views: 14146

Re: IPSec Xauth PSK client-to-site? [SOLVED]

i'm bumping this once again
Anyone has any idea if this can be done?
does ROS support IPSec Xauth PSK client-to-site with a cisco router?
by td32
Tue Feb 26, 2019 8:25 pm
Forum: General
Topic: Security issue when Winbox exposed
Replies: 68
Views: 52579

Re: Security issue when Winbox exposed

So, if you don't have allowed addresses in Winbox IP service, but you have an input accept filter rule with address list for 8291, you're vulnerable?
only from the accept list ips
by td32
Thu Feb 21, 2019 8:11 am
Forum: General
Topic: Unauthorized access to MikroTiK
Replies: 20
Views: 8771

Re: Unauthorized access to MikroTiK

its not enough, change your password also
by td32
Tue Feb 05, 2019 8:24 am
Forum: Announcements
Topic: v6.43.8 [stable] is released!
Replies: 169
Views: 82360

Re: v6.43.8 [stable] is released!

I'm afraid of upgrading my 941 and 952 devices as they don't have the 60mb for the leak and most of them are remote (like 20 hour plane ride away)
"20 hour plane ride away", my god Please don't. Stay on bugfix or Long-term how it's called now.
by td32
Fri Jan 11, 2019 10:14 am
Forum: General
Topic: hAP ac2 - port knocking doesn't work (kind of)
Replies: 7
Views: 1812

Re: hAP ac2 - port knocking doesn't work (kind of)

try to sleep a second between knocks
by td32
Mon Nov 19, 2018 3:40 pm
Forum: Beginner Basics
Topic: plan-B
Replies: 5
Views: 1371

Re: plan-B

SAFE MODE- reinventing the wheel
by td32
Thu Nov 08, 2018 7:12 pm
Forum: General
Topic: Netinstall does'nt working(?)
Replies: 8
Views: 2251

Re: Netinstall does'nt working(?)

try to run netinstall as admin
try another ros version like 6.42.9
by td32
Tue Nov 06, 2018 10:41 am
Forum: Announcements
Topic: Winbox vulnerability: please upgrade
Replies: 329
Views: 176127

Re: Winbox vulnerability: please upgrade

you can change the password all day long but if someone has remote access on you pc most probably has installed a keyloger also 11/5/18 22:38:15 system,info,account user NewUserCreated logged in from ??:3B:??:22:??:AC via mac-telnet system,info,account user NewUserCreated logged in from ??:3B:??:22:...
by td32
Thu Nov 01, 2018 9:15 pm
Forum: Virtualization
Topic: Metarouter images
Replies: 378
Views: 384424

Re: Metarouter images

what about this
http://openwrt.wk.cz/trunk/mr-mips/packages/openssl-util_1.0.1-1_mr-mips.ipk
by td32
Thu Nov 01, 2018 1:51 am
Forum: Virtualization
Topic: Metarouter images
Replies: 378
Views: 384424

Re: Metarouter images

i think you can get the ssl packages directly from the openwrt website, available with each release
example
https://archive.openwrt.org/chaos_calmer/15.05/ar71xx/mikrotik/packages/
by td32
Sat Oct 20, 2018 9:54 pm
Forum: General
Topic: Bricked hAP ac (962UiGS-5HacT2HnT)
Replies: 5
Views: 1584

Re: Bricked hAP ac (962UiGS-5HacT2HnT)

there are some issues with the device communication with netistall, i have had luck different times setting the speed&duplex to 10Mbps Full Duplex, or 100Mbps Full Duplex,

last time i had luck with 100Mbps Full Duplex
by td32
Sat Oct 20, 2018 2:57 am
Forum: Beginner Basics
Topic: Change wifi password by batch file / script
Replies: 1
Views: 2730

Re: Change wifi password by batch file / script

here you can try this ugly solution 1- create a batch file containing the following ::@echo off SET NewWifiPass= SET /p NewWifiPass= NewWifiPass(min 8 char long): copy /Y changewifi.txt changewifi.temp.txt sed -i s/OldWIFIPASS/%NewWifiPass%/g changewifi.txt START /W putty.exe -ssh mikrotikUSER@mikro...
by td32
Fri Aug 24, 2018 9:51 pm
Forum: Announcements
Topic: v6.42.7 [current] is released!
Replies: 159
Views: 69553

Re: v6.42.7 [current] is released!

It looks like the default routerboot boot mode has changed from "nand if fail then ethernet" to "try-ethernet-once-then-nand". This wasn't mentioned in the release note. However, I think it is a good idea, I already set difficult-to-access devices that way. Advantage: you can ne...
by td32
Thu May 31, 2018 1:16 pm
Forum: Announcements
Topic: Winbox 3.14 released!
Replies: 77
Views: 58275

Re: Winbox 3.14 released!

whoever has a vertical screen resolution of 768 and below is faced with the No scroll issue. CLI is a work around, but it is still an issue in winbox
by td32
Thu May 24, 2018 1:25 am
Forum: Announcements
Topic: v6.42.2 [current]
Replies: 65
Views: 33159

Re: v6.42.2 [current]

i guess he got pwned on the previous version(stolen user pass), then upgraded but did not change access credentials.
But they still have the credentials to login.
by td32
Fri May 04, 2018 8:22 am
Forum: Beginner Basics
Topic: Is it possible to get a rb951ui-2hnd to pickup wifi? Then route it..
Replies: 7
Views: 1970

Re: Is it possible to get a rb951ui-2hnd to pickup wifi? Then route it..

sure you can, set the wireless interface in station mode, set it as dhcp client and as gateway
by td32
Thu Apr 26, 2018 5:53 pm
Forum: Announcements
Topic: v6.42.1 [current]
Replies: 272
Views: 98195

Re: v6.42.1 [current]


Does this indicate that my OVPN has been compromised??? I've disabled my ovpn in the meantime.
nope just service scanners
by td32
Sat Apr 07, 2018 10:36 pm
Forum: Beginner Basics
Topic: SXT as lte modem only
Replies: 4
Views: 1931

Re: SXT as lte modem only

by td32
Fri Apr 06, 2018 5:19 pm
Forum: General
Topic: Huge outgoing DNS requests (100gb in week)
Replies: 9
Views: 2767

Re: Huge outgoing DNS requests (100gb in week)

what ros version is the hap ac?
it might be infected.
by td32
Tue Mar 06, 2018 5:38 pm
Forum: General
Topic: Date in Logs!!!!!
Replies: 7
Views: 1679

Re: Date in Logs!!!!!

its just a simple fix, there is no need for a third part solution only for this.
by td32
Fri Mar 02, 2018 1:57 am
Forum: Wireless Networking
Topic: Xiaomi phone low Wifi TX rate [SOLVED]
Replies: 99
Views: 53957

Re: Xiaomi phone low Wifi TX rate [SOLVED]

I have noticed this issue is present with Huawei P10lite also, max you can get on 2.4Ghz is 54Mbps.
by td32
Fri Mar 02, 2018 1:12 am
Forum: Wireless Networking
Topic: "Management frame protection" - 802.11w compatibility
Replies: 13
Views: 10075

Re: "Management frame protection" - 802.11w compatibility

bump for this feature, i hope it gets on the todo list
by td32
Tue Feb 13, 2018 11:42 am
Forum: General
Topic: Whats is correct way firewalling access from WAN? [SOLVED]
Replies: 2
Views: 1268

Re: Whats is correct way firewalling access from WAN? [SOLVED]

add the following over that rule to allow lan access
/ip firewall filter
chain=input action=accept src-address=YourLanRange dst-port=8291 protocol=tcp
or you can just drop input only from your wan interface
/ip firewall filter
chain=input action=drop in-interface=YourWanInterface
by td32
Thu Feb 08, 2018 11:30 pm
Forum: RouterBOARD hardware
Topic: Mikrotik hAP AC 2.4ghz utterly unusable?
Replies: 5
Views: 2295

Re: Mikrotik hAP AC 2.4ghz utterly unusable?

get on bug fix, no issues at all on my side
by td32
Fri Jan 26, 2018 10:20 pm
Forum: General
Topic: Forum notifications!
Replies: 8
Views: 2511

Re: Forum notifications!

The notifications caused the 40 second delay on each post submission. You can vote which one you prefer :) There are a LOT of users on this forum, notifications seem to be broken in latest PHPBB releases, we will keep following on any changes in that regard. well for sure posting is the Main featur...
by td32
Fri Jan 26, 2018 8:43 am
Forum: RouterBOARD hardware
Topic: ARM based new goodies on the horizon
Replies: 76
Views: 24594

Re: ARM based new goodies on the horizon

The hAP ac2 is missing a few features that the hAP ac had:
- PoE out on ether5
- SFP port
dual chain wireless vs triple chain for hAP ac
by td32
Thu Jan 25, 2018 6:28 pm
Forum: RouterBOARD hardware
Topic: ARM based new goodies on the horizon
Replies: 76
Views: 24594

Re: ARM based new goodies on the horizon

hAP ac² - CPU is IPQ-4018 716 MHz
PDF: https://uloz.to/!KboRhNGccV6O/en-datash ... -tower-pdf
Storage size 16 MB!!!!
yet another 16MB flash device...
by td32
Thu Jan 25, 2018 6:23 pm
Forum: Announcements
Topic: v6.39.3 [bugfix] is released!
Replies: 46
Views: 31131

Re: v6.39.3 [bugfix] is released!

In this release address list entry timeout option is broken! Entry is removed from address list randomly, but much more faster than specified amount of time
many have raised this bug but no answer yet, perhaps it will be fixed in the next bugfix
by td32
Thu Jan 25, 2018 1:42 am
Forum: General
Topic: Forum notifications!
Replies: 8
Views: 2511

Forum notifications!

Is there a notification problem withe the forum in the last days, i don't get notifications anymore about the subscribed topic? (on the user account icon in the top right there use to be a red sign).
by td32
Thu Jan 25, 2018 12:36 am
Forum: Announcements
Topic: v6.42rc [release candidate] is released!
Replies: 537
Views: 188454

Re: v6.42rc [release candidate] is released!

*) userman - added support for ARM and MMIPS platforms;

a miracle after 3 years
what a news...
so next step: support EAP
by td32
Sat Dec 30, 2017 12:54 pm
Forum: General
Topic: L2TP VPN to pass only 5060 traffic
Replies: 1
Views: 773

Re: L2TP VPN to pass only 5060 traffic

create a mangle rule
preroute destination port 5060, action mark routing, l2tpvpn
then add a static route that points to l2tp interface with routing mark l2tpvpn
by td32
Sun Dec 24, 2017 12:24 am
Forum: Beginner Basics
Topic: Lost access to my Mikrotik , JAILED !
Replies: 8
Views: 4273

Re: Lost access to my Mikrotik , JAILED !

The Mikrotik had a public IP and it wasn't doing any DHCP. It was working purely as a router. Not sure how will that help ? Thanks, The wireless Network was not doing DHCP. I just connect to it, but I don't get an IP from it. There is no way I can get in via the IP perhaps. if the wireless interfac...
by td32
Sat Dec 23, 2017 10:15 pm
Forum: Beginner Basics
Topic: Lost access to my Mikrotik , JAILED !
Replies: 8
Views: 4273

Re: Lost access to my Mikrotik , JAILED !

What if you assign a static ip to your windows client?
by td32
Tue Dec 19, 2017 11:48 am
Forum: Wireless Networking
Topic: wAP AC poor performance
Replies: 4
Views: 2048

Re: wAP AC poor performance

never run btest on the same device you want to measure performance, you will get much lower results because btest consumes most of the cpu resources
by td32
Sun Dec 17, 2017 8:21 pm
Forum: General
Topic: Winbox can't connect to wAP MAC address
Replies: 5
Views: 4829

Re: Winbox can't connect to wAP MAC address

Wap by default won't let you connect through the ethernet port because it is configured as WAN. By default it has an open wifi AP, you can connect through wifi and it will let you connect with winbox, you can modify the firewall rules this way so that you can connect from the ethernet port in the fu...
by td32
Sun Dec 17, 2017 4:23 am
Forum: Wireless Networking
Topic: Usermanager WPA2 EAP encryption - 2
Replies: 4
Views: 3629

Re: Usermanager WPA2 EAP encryption - 2

User-Manager does not support any EAP method
you can use freeradius on an external machine
by td32
Tue Nov 28, 2017 12:41 pm
Forum: General
Topic: Bonding two Dynadish 5 WiFi links
Replies: 15
Views: 2814

Re: Bonding two Dynadish 5 WiFi links

you must test final client(pc) to client(pc), testing is cpu hungry and running it on the same mikrotik device will not show real link results since cpu is used for generating traffic and the remaining for routing it.
by td32
Fri Nov 17, 2017 5:55 pm
Forum: Announcements
Topic: v6.39.3 [bugfix] is released!
Replies: 46
Views: 31131

Re: v6.39.3 [bugfix] is released!

Hi, When adding a IP to an IP>firewall>address list with a timeout (say 4d 00:00:00) and adding a comment in 6.39.3, it drops off within 24hours (and not when the timeout is reached). Doing the same in v6.38.7 it doesnt drop off and continues to count down till its timeout is reached. I have tested...
by td32
Mon Jun 19, 2017 2:46 pm
Forum: Beginner Basics
Topic: RouterOS for custom device
Replies: 2
Views: 1174

Re: RouterOS for custom device

Well routeros is closed source.
You should look at lede/openwrt if you need to customize stuff (hardware compatibility and features)
by td32
Wed May 31, 2017 4:13 pm
Forum: RouterBOARD hardware
Topic: CRS125-24G-1S-RM vs RB3011UiAS-RM benchmark
Replies: 7
Views: 4616

Re: CRS125-24G-1S-RM vs RB3011UiAS-RM benchmark

it seams the CRS is enough for your needs
by td32
Sun May 28, 2017 6:42 pm
Forum: General
Topic: Router configuration resets to factory default after every reboot
Replies: 1
Views: 1583

Re: Router configuration resets to factory default after every reboot

known problem, it was fixed in the 6.40rc
by td32
Sun May 28, 2017 6:40 pm
Forum: Beginner Basics
Topic: PoE-in ePoE-out
Replies: 4
Views: 1378

Re: PoE-in ePoE-out

Poe-in that the device itself can be powered by poe, poe-out it can power other devices attached to that port.
From the picture it says port1 is poe-in but nothing is shown about this in the quick guide powering section, neither in the brochure.
by td32
Sun May 28, 2017 1:56 am
Forum: RouterBOARD hardware
Topic: CRS125-24G-1S-RM vs RB3011UiAS-RM benchmark
Replies: 7
Views: 4616

Re: CRS125-24G-1S-RM vs RB3011UiAS-RM benchmark

Well just for "office lan" is not enough to suggest anything. You have to describe what you are planing to achieve.
by td32
Sat May 27, 2017 10:43 pm
Forum: RouterBOARD hardware
Topic: CRS125-24G-1S-RM vs RB3011UiAS-RM benchmark
Replies: 7
Views: 4616

Re: CRS125-24G-1S-RM vs RB3011UiAS-RM benchmark

you have to look at the switch benchmark
bridge goes through cpu
by td32
Sat May 13, 2017 10:14 pm
Forum: General
Topic: games server
Replies: 2
Views: 856

Re: games server

you need a server machine x86/x64 to run the call of duty server software, a complete different device.
by td32
Fri May 12, 2017 9:39 pm
Forum: General
Topic: Feature Request: IPerf
Replies: 70
Views: 23975

Re: Feature Request: IPerf

i'm for this too
by td32
Tue May 02, 2017 1:03 pm
Forum: General
Topic: IPSec Xauth PSK client-to-site? [SOLVED]
Replies: 9
Views: 14146

Re: IPSec Xauth PSK client-to-site? [SOLVED]

Anyone had luck with this type of configuration.
I have read the other topics in here about IPSec Xauth PSK on cisco but they provide no final conclusion if it is supported or not.
viewtopic.php?t=92819
by td32
Mon May 01, 2017 4:08 pm
Forum: General
Topic: IPSec Xauth PSK client-to-site? [SOLVED]
Replies: 9
Views: 14146

IPSec Xauth PSK client-to-site? [SOLVED]

Hello I have the following details from the Cisco vpn IPSec Xauth PSK ip: x.x.x.x group: groupID secret: Pass2 user: user1 pass: pass1 I can set this up fine on my phone and it connects easily. I tried to connect my mikrorik router as a client to the cisco vpn and route all the mikrotik clients traf...
by td32
Wed Apr 05, 2017 2:56 am
Forum: General
Topic: Can Mikrotik OS Handle such idea!!
Replies: 7
Views: 1776

Re: Can Mikrotik OS Handle such idea!!

if my channels can be transferred continuously from site 1 to site 2 No this cant be done with ROS(neither with any other root os ). You need special software(if it exists)that runs on a server on site2 to replicate the iptv server. Mikrotik devices manage traffic, it can't "repeat" and h...
by td32
Mon Apr 03, 2017 6:10 pm
Forum: General
Topic: wap-ac PoE issue with Dlink switches , help needed please ! [solved...]
Replies: 21
Views: 7442

Re: wap-ac PoE issue with Dlink switches , help needed please !

sometimes wAP dont like shielded cables when powered from certain poe devices, but since you are using unshielded cables this doesn't seam the case. I guess the switch is crappy and it cant manage the load requested on all port groups. Once you connect the 4-th wAP something drops below the limit le...
by td32
Mon Apr 03, 2017 5:26 pm
Forum: General
Topic: wap-ac PoE issue with Dlink switches , help needed please ! [solved...]
Replies: 21
Views: 7442

Re: wap-ac PoE issue with Dlink switches , help needed please !

Have you tried switching cables? Are you using shielded ones?
by td32
Sat Apr 01, 2017 9:26 pm
Forum: General
Topic: wap-ac PoE issue with Dlink switches , help needed please ! [solved...]
Replies: 21
Views: 7442

Re: wap-ac PoE issue with Dlink switches , help needed please !

Power off then power on the switch , well...all WAP-AC dead and the other different ones immediately up and running .........still a switch issue ?? Any thougth or suggestion from MT guys please ?? P.S. Does routerOS version affect PoE behaviour ? all of them are 6.38.5 you can try and downgrade ht...
by td32
Fri Mar 31, 2017 10:58 pm
Forum: General
Topic: wap-ac PoE issue with Dlink switches , help needed please ! [solved...]
Replies: 21
Views: 7442

Re: wap-ac PoE issue with Dlink switches , help needed please !

PoE Capable Ports • DGS-1210-28P: • Ports 1 to 4: Up to 30W (802.3at) • Ports 5 to 24: Up to 15.4W (802.3af) PoE Power Budget • DGS-1210-28P: Max. 193W wAP ac Max Power consumption 12W 9x12w=108W i would suggest to fill the 1-4 ports and the other 5 port 5 10 15 20 24. it might be that any wAP ac un...
by td32
Thu Mar 23, 2017 7:21 pm
Forum: Wireless Networking
Topic: wAP-AC loses a radio after CAP upgrade
Replies: 4
Views: 1610

Re: wAP-AC loses a radio after CAP upgrade

You can enable them from the terminal, no need to press the reset button
/interface wireless cap
set bridge=bridgeLocal discovery-interfaces=ether1 enabled=yes interfaces=\
    wlan1,wlan2
by td32
Mon Mar 20, 2017 2:10 am
Forum: General
Topic: Feature request - DNSCrypt support...
Replies: 173
Views: 80707

Re: Feature request - DNSCrypt support...

its 2017 and this must be a priority feature.
by td32
Wed Mar 08, 2017 11:41 am
Forum: Announcements
Topic: v6.39rc [release candidate] is released
Replies: 390
Views: 137815

Re: v6.39rc [release candidate] is released

RB1100aHX2 BRICKED, man, this is a RC, not an alpha, can't even think how this happend. Trying to downgrade to earlier version, unfortunately at this time i'm 250 miles away from the RB, so only can connect through layer2 (MAC) and i'm lossing the connection every X seconds and I can't upload de 11...
by td32
Fri Feb 17, 2017 6:19 pm
Forum: Announcements
Topic: v6.39rc [release candidate] is released
Replies: 390
Views: 137815

Re: v6.39rc [release candidate] is released

So it seams you don't have to do the copy caps setting to a new one just to set a custom name and make the cap static. nice!
Edit:
mm perhaps i didn't understand it right
what i wrote up can already be done by adding a cap manually.
by td32
Mon Feb 06, 2017 12:51 pm
Forum: General
Topic: RB 3011 asymmetric cpu load
Replies: 10
Views: 2914

Re: RB 3011 asymmetric cpu load

Your problem can be solved easily.
Drink a bottle of rum and see if you still care.
What a helpful post.

maybe go post on the ubnt forums instead ?
@Jajeblonsky is spamming the board left and right with this type of silly post in the last days
by td32
Sat Feb 04, 2017 5:23 pm
Forum: General
Topic: Mikrotik Package not installing
Replies: 8
Views: 8775

Re: Mikrotik Package not installing

did you reboot after that?
A reboot is necessary.
by td32
Fri Feb 03, 2017 3:38 pm
Forum: Scripting
Topic: Random Number Generation
Replies: 5
Views: 6923

Re: Random Number Generation

Perhaps you can play with this command
:delay (($var1 + $var2 + $var3) / 5)
by td32
Thu Jan 19, 2017 11:55 am
Forum: The User Manager
Topic: Error When Create Delete Profiles on User Manager
Replies: 4
Views: 3648

Re: Error When Create Delete Profiles on User Manager

Under maintenance rebuild database that should fix it, or reboot.
I had the same issue.
by td32
Wed Jan 18, 2017 6:47 pm
Forum: General
Topic: Easy Dynamic Dual Wan Failover
Replies: 14
Views: 10068

Re: Easy Dynamic Dual Wan Failover

would you kindly post the script here
it would be very useful
by td32
Tue Jan 17, 2017 9:22 pm
Forum: General
Topic: User manager "Total time left" bug?
Replies: 3
Views: 2292

Re: User manager "Total time left" bug?

Hi, I have the same issue ( http://forum.mikrotik.com/viewtopic.php?f=10&t=116521&p=576251 ). As nobody answered, I opened a ticket for it. Regards, Wolfgang what ros version are you using? Searching though the changelogs i found this on 6.37.1 *) userman - always re-fetch table data when s...
by td32
Tue Jan 17, 2017 9:09 pm
Forum: Beginner Basics
Topic: Winbox Connects to some Access Point And Not Others
Replies: 20
Views: 5506

Re: Winbox Connects to some Access Point And Not Others

yes i mean on the ap, the out of the box configuration of example wap ac is #| * WAN port is protected by firewall and enabled DHCP client #| * Wireless interfaces are part of LAN bridge connect form the wireless side and you will be able to connect through winbox, and then set a firewall rule to al...
by td32
Tue Jan 17, 2017 8:51 pm
Forum: Beginner Basics
Topic: Winbox Connects to some Access Point And Not Others
Replies: 20
Views: 5506

Re: Winbox Connects to some Access Point And Not Others

most probably firewall blocking access from wan port (ethernet1)
by td32
Sat Jan 14, 2017 4:33 am
Forum: General
Topic: User manager "Total time left" bug?
Replies: 3
Views: 2292

User manager "Total time left" bug?

Hi I have user manager running with hotspot on a rb1100ahx2 on latest bugfix 6.36.4 In the Users window in user manger, timing values for each user are not displayed at all. For all user profiles 'Starts' is set to 'At first Logon' As you can see in the attached screenshot Users with Time left = Unk...
by td32
Sat Dec 31, 2016 8:04 am
Forum: The User Manager
Topic: how add more 100 users on Hotspot
Replies: 3
Views: 3719

Re: how add more 100 users on Hotspot

hi, write me at ferkop1@gmail.com and i can help you.
can't this be public?
by td32
Mon Dec 26, 2016 3:35 am
Forum: The User Manager
Topic: Don't have user manager on RB3011
Replies: 16
Views: 15511

Re: Don't have user manager on RB3011

any news about this?
made the mistake of purchasing this model to be used for user-manager.
It should have been stated somewhere in the product page that this does not support user-manger yet, at least i could have avoided wasting my money!
by td32
Fri Dec 23, 2016 12:50 am
Forum: General
Topic: SXT AC best settings
Replies: 83
Views: 59940

Re: SXT AC best settings

what would be the recommended tx-power for a 150m length connection?
by td32
Fri Dec 23, 2016 12:31 am
Forum: Beginner Basics
Topic: Remote management of the Mikrotik router.
Replies: 7
Views: 7912

Re: Remote management of the Mikrotik router.

Use non-standard port + Strong Password and username != admin. Throttle connection attempts. Mikrotik disconnects connection on invalid login, so only allow one connection per 15 seconds. http://wiki.mikrotik.com/wiki/Bruteforce_login_prevention I use this sneaky trick: - Server listens on non-stan...
by td32
Fri Nov 18, 2016 10:50 pm
Forum: General
Topic: SXT 5 ac usage as bridge for vlans
Replies: 4
Views: 1514

Re: SXT 5 ac usage as bridge for vlans

Thanks for the reply.
Would it be possible to catch the reveiving STX 5 and the AP following it, with CAPSMAN, or does it work only on wired connection?
by td32
Fri Nov 18, 2016 4:23 pm
Forum: General
Topic: SXT 5 ac usage as bridge for vlans
Replies: 4
Views: 1514

Re: SXT 5 ac usage as bridge for vlans

Please
anybody con confirm this will work?
by td32
Fri Nov 18, 2016 6:14 am
Forum: General
Topic: SXT 5 ac usage as bridge for vlans
Replies: 4
Views: 1514

SXT 5 ac usage as bridge for vlans

Hello I was wondering if someone could confirm that the following configuration can be implemented. I have to build this network were i have to send the signal 200 m away by radio, and i was thinking of using 2 SXT 5 ac. the access gateway is a RB3011UiAS-RM it will be used as hotspot controller for...