Community discussions

Search found 247 matches

by karlisi
Wed Oct 28, 2015 4:08 pm
Forum: Wireless Networking
Topic: CApsMAN problem
Replies: 13
Views: 2120

Re: CApsMAN problem

Here it is my configuration, but I don't know how to determine my capsman version. I suppose it should be the embedded version of the router firmware mipsbe v6.25 . Look in /system/packages wireless-cm2 -> CAPsMAN v.2 wireless-fp -> CAPsMAN v.1 (not recommended) Be sure router and all AP have the s...
by karlisi
Wed Oct 28, 2015 3:58 pm
Forum: General
Topic: firewall/connections - what does the first column mean
Replies: 5
Views: 5485

Re: firewall/connections - what does the first column mean

[admin@] /ip firewall connection> print
Flags: E - expected, S - seen-reply, A - assured, C - confirmed, D - dying, F - fasttrack, 
s - srcnat, d - dstnat 
by karlisi
Wed Oct 28, 2015 3:51 pm
Forum: Beginner Basics
Topic: Dual wan with load balancing
Replies: 4
Views: 1111

Re: Dual wan with load balancing

From my experience, with dynamic WAN You are out of luck. In some examples there are interface names in routes instead of gateway IP, I tried this without success.
by karlisi
Fri Oct 09, 2015 10:41 am
Forum: Beginner Basics
Topic: Question regarding firewall rules and NAT
Replies: 2
Views: 494

Re: Question regarding firewall rules and NAT

3 chain=dstnat action=dst-nat to-addresses=10.0.0.104 to-ports=25 protocol=tcp in-interface=ether5 dst-port=25 log=no log-prefix="" What if You modify NAT rule? chain=dstnat action=dst-nat to-addresses=10.0.0.104 to-ports=25 protocol=tcp in-interface=ether5 dst-port=25 log=no log-prefix="" src-addr...
by karlisi
Wed Sep 30, 2015 10:32 am
Forum: General
Topic: Different Option in CAPsMAN Provisioning
Replies: 2
Views: 524

Re: Different Option in CAPsMAN Provisioning

The first is from CAPsMAN version 1 (wireless-fp package), second fron version 2 (wireless-cm2 package).
by karlisi
Thu Sep 10, 2015 1:14 pm
Forum: Wireless Networking
Topic: CAPsMAN and 4 CAP devices
Replies: 13
Views: 2248

Re: CAPsMAN and 4 CAP devices

I don't get it. Only thing I can imagine that could be problem is that those 2 devices were configured to work before I bought another 3 (RB750 and 2 RB951). They had 6.1 version and it was CAPsMAN v2 on them installed. Then I configured new ones and just tried to reconfigure that devices and conne...
by karlisi
Thu Sep 10, 2015 1:05 pm
Forum: Wireless Networking
Topic: CAPsMAN and 4 CAP devices
Replies: 13
Views: 2248

Re: CAPsMAN and 4 CAP devices

Have You tried to create at least one provisioning rule?
http://wiki.mikrotik.com/wiki/Manual:CA ... ovisioning
by karlisi
Wed Aug 12, 2015 1:49 pm
Forum: General
Topic: how to configure seagate NAS in microtik router?
Replies: 2
Views: 485

Re: how to configure seagate NAS in microtik router?

In winbox go to DHCP Server -> Leases, find already assigned lease for your device, righ-click on it and in menu click Make Static. If IP address should be different from automatically assigned, open this lease with doubleclick and edit IP address. It must be in DHCP address range. Then restart NAS ...
by karlisi
Wed Aug 05, 2015 8:12 am
Forum: General
Topic: CAPsMAN v2 ready for testing
Replies: 201
Views: 101437

Re: CAPsMAN v2 ready for testing

We are running CAPsMAN v2 controllers on CCR1009 with no problems. Also have one on RB1100 (1 CPU), works OK. One difference, our controllers are traffic forwarders too.
by karlisi
Fri Jul 24, 2015 1:09 pm
Forum: Beginner Basics
Topic: RDP
Replies: 25
Views: 3959

Re: RDP

First place to learn about RouterOS is Mikrotik Wiki, there are many examples. About firewall here
by karlisi
Fri Jul 24, 2015 9:14 am
Forum: Beginner Basics
Topic: RDP
Replies: 25
Views: 3959

Re: RDP

Do you have the same rule in forward chain?
by karlisi
Thu Jul 23, 2015 3:34 pm
Forum: Wireless Networking
Topic: CAPSMAN prevent clients from automatically connecting
Replies: 2
Views: 398

Re: CAPSMAN prevent clients from automatically connecting

Under 'Access List' create rules for each allowed client with action=accept and one last rule with action=reject for all clients.
by karlisi
Thu Jul 23, 2015 1:44 pm
Forum: Beginner Basics
Topic: RDP
Replies: 25
Views: 3959

Re: RDP

NAT is OK. Post
/ip firewall filter print chain=input
by karlisi
Wed Jul 22, 2015 2:04 pm
Forum: General
Topic: DNS is changing to 195.3.144.115
Replies: 6
Views: 649

Re: DNS is changing to 195.3.144.115

It can be some malware, this IP address belongs to RN Data SIA (195.3.144.0/22) and it is connected with ZeroAccess Botnet.
by karlisi
Tue Jul 21, 2015 9:58 am
Forum: Beginner Basics
Topic: MikroTik_RB2011UiAS-2HnD-IN Internet Configuration + Firewall
Replies: 17
Views: 1588

Re: MikroTik_RB2011UiAS-2HnD-IN Internet Configuration + Firewall

So, back to OP. I discovered if i connect my Laptop (is connected only wired) directly with the cisco my Internet (50Mbit) runs like speedy Gonzales, but when i have also connected my Router with my Laptop loading Internet sites take for instance a few seconds more. In the house i have also 2 Intern...
by karlisi
Tue Jul 21, 2015 7:58 am
Forum: General
Topic: Creating a Single Blacklist of Multiple IP
Replies: 19
Views: 4512

Re: Creating a Single Blacklist of Multiple IP

AFAIK this is not possible, address lists are made from separate entries for each address. This form is more manageable as one entry with multiple values.
by karlisi
Mon Jul 20, 2015 10:08 am
Forum: General
Topic: Creating a Single Blacklist of Multiple IP
Replies: 19
Views: 4512

Re: Creating a Single Blacklist of Multiple IP

Your firewall rule uses address-list, there is no need for more rules. In Blacklist address list you will put all addresses to be blocked by this rule. Like this /ip firewall filter add action=drop chain=input comment="drop blacklisted addresses" \ src-address-list=Blacklist disabled=no /ip firewall...
by karlisi
Fri Jul 17, 2015 9:27 am
Forum: Beginner Basics
Topic: MikroTik_RB2011UiAS-2HnD-IN Internet Configuration + Firewall
Replies: 17
Views: 1588

Re: MikroTik_RB2011UiAS-2HnD-IN Internet Configuration + Firewall

OK, nothing wrong with bridge configuration.
I mentioned in Your first post there are no DNS servers configured. Please post /ip dns print output here.
by karlisi
Thu Jul 16, 2015 11:30 am
Forum: General
Topic: CAPsMAN v2 ready for testing
Replies: 201
Views: 101437

Re: CAPsMAN v2 ready for testing

After successfull update there will be cm2 package file in /files, AFAIK it is for compatibility purposes, you can delete it, otherwise you will receive error "package already installed" on every reboot.
by karlisi
Thu Jul 16, 2015 11:26 am
Forum: Beginner Basics
Topic: MikroTik_RB2011UiAS-2HnD-IN Internet Configuration + Firewall
Replies: 17
Views: 1588

Re: MikroTik_RB2011UiAS-2HnD-IN Internet Configuration + Firewall

Nope, they're all in the bridge, therefore they are not standalone and are in the same L2 network. It says it *right here* in the code they posted: /interface bridge port add bridge=bridge-local interface=ether2 add bridge=bridge-local interface=ether3 add bridge=bridge-local interface=ether4 add b...
by karlisi
Thu Jul 16, 2015 8:20 am
Forum: General
Topic: CAPsMAN v2 ready for testing
Replies: 201
Views: 101437

Re: CAPsMAN v2 ready for testing

where do I find cm2 package for 6.30 6.30.1?
didn't find it on the download page.
Starting from 6.30 it's included in main package.
by karlisi
Thu Jul 16, 2015 8:17 am
Forum: Beginner Basics
Topic: MikroTik_RB2011UiAS-2HnD-IN Internet Configuration + Firewall
Replies: 17
Views: 1588

Re: MikroTik_RB2011UiAS-2HnD-IN Internet Configuration + Firewall

Your bridge configuration is wrong and is causing your DHCP server to be exposed to the Internet interface where your cable modem lives. You have configured the 100Mb/s switch properly by the look of it, with ether6 as a master and ether7-10 as slaves. What I don't see is you configuring ports 2-5 ...
by karlisi
Tue Jul 14, 2015 8:42 am
Forum: Beginner Basics
Topic: Capsman controller problems
Replies: 4
Views: 668

Re: Capsman controller problems

There any way that if the controller fails, the wireless network continue working, as is the case with the driver Ubiquiti?
In my tests, if CAP loses connection to CAPsMAN, it shuts down the radio. So, You are right, CAPsMAN device availability is critical in such network.
by karlisi
Mon Jul 13, 2015 10:45 am
Forum: Beginner Basics
Topic: Capsman controller problems
Replies: 4
Views: 668

Re: Capsman controller problems

Yes, it's normal. Shutting down CAPsMAN disables wireless on CAP enabled devices which are managed by it.
by karlisi
Fri Jul 10, 2015 2:33 pm
Forum: General
Topic: Best way to move configuration to another router
Replies: 3
Views: 1122

Re: Best way to move configuration to another router

I would try to export -> edit configuration file -> import
Not easy because of different hardware and default configuration, sometimes building from scratch can be easier.
by karlisi
Fri Jul 10, 2015 8:48 am
Forum: General
Topic: [HOW] One DHCP for RB1100's two switch group
Replies: 2
Views: 361

Re: [HOW] One DHCP for RB1100's two switch group

Set DHCP for local bridge, not for port1
by karlisi
Thu Jul 09, 2015 8:25 am
Forum: Wireless Networking
Topic: Bad wireless reception with RB2011UAS-2HnD-IN
Replies: 50
Views: 20467

Re: Bad wireless reception with RB2011UAS-2HnD-IN

For me RB2011 (RouterOS version 6.27) wireless works OK, we have 6 sites with it. Have you tried 6.30rc, perhaps there are problems with 6.29? Dear thank you for your reply. I was looking in the forum for any issue with the 6.29.1 and didn't find anything. But will try 6.30rc. Could you share your ...
by karlisi
Wed Jul 08, 2015 11:24 am
Forum: Wireless Networking
Topic: Bad wireless reception with RB2011UAS-2HnD-IN
Replies: 50
Views: 20467

Re: Bad wireless reception with RB2011UAS-2HnD-IN

For me RB2011 (RouterOS version 6.27) wireless works OK, we have 6 sites with it. Have you tried 6.30rc, perhaps there are problems with 6.29?
by karlisi
Wed Jul 01, 2015 4:23 pm
Forum: Wireless Networking
Topic: Бесшовность сети при настройке CAPsMAN
Replies: 2
Views: 2384

Re: Бесшовность сети при настройке CAPsMAN

In access list add one more rule with action=reject and signal range -76..-120, put this rule as first.
by karlisi
Mon Jun 29, 2015 9:30 am
Forum: Wireless Networking
Topic: importing and exporting config files
Replies: 20
Views: 115736

Re: importing and exporting config files

All installed packages are the same? Because import goes as scripted, row by row, i would check all settings, beginning from first line. Where configuration is not changed, carefully inspect your script. For me typically there was some settings for non defined item, i.e., make new DHCP server where ...
by karlisi
Thu Jun 25, 2015 11:07 am
Forum: Wireless Networking
Topic: importing and exporting config files
Replies: 20
Views: 115736

Re: importing and exporting config files

If you want to import exported configuration, you should do it on empty device - no default configuration when doing full reset.
/system reset-configuration no-defaults=yes
You shoudn't use backup/restore to transfer configuration to another device.
by karlisi
Wed Jun 17, 2015 11:10 am
Forum: General
Topic: [Ask] NAT doesn't work
Replies: 3
Views: 864

Re: [Ask] NAT doesn't work

In mikrotik: /ip firewall nat add action=src-nat chain=srcnat src-address=192.168.1.0/24 to-addresses=\ x.x.x.2 add action=src-nat chain=srcnat src-address=192.168.2.3 to-addresses=\ x.x.x.3 add action=dst-nat chain=dstnat disabled=yes dst-address=x.x.x.3 \ dst-port=443 protocol=tcp to-addresses=19...
by karlisi
Tue Jun 16, 2015 9:07 am
Forum: RouterBOARD hardware
Topic: RB2011UiAS-2HnD-IN and USB connected APC Back UPS CS 500
Replies: 2
Views: 1062

Re: RB2011UiAS-2HnD-IN and USB connected APC Back UPS CS 500

You need SmartUPS for this.

From RouterOS manual:
"The UPS monitor feature works with APC UPS units that support “smart” signalling over serial RS232 or USB connection"

From APC BackUPS CS 500 technical specification:
"Simple Signalling RS232 cable, USB"
by karlisi
Thu May 21, 2015 1:08 pm
Forum: Wireless Networking
Topic: Capsman, no ping
Replies: 2
Views: 727

Re: Capsman, no ping

Hello, please, help. I configure capsman with 2 SSID for staff and guest. Mode Local forfarding. All it's work. Wireless clients staff dont see clients guest, but wireless clients can't see each other inside staff network.
Enable client-to-client forwarding for staff network.
by karlisi
Tue May 19, 2015 10:20 am
Forum: General
Topic: CAPsMAN v2 ready for testing
Replies: 201
Views: 101437

Re: CAPsMAN v2 ready for testing

Hi!

Where can I get package of CAPsMan v2 for 6.29 (RC20)? in all_files is not there..

Thank you.
http://www.mikrotik.com/download/share/ ... mipsbe.npk

Change "mispbe" with you router architecture.
by karlisi
Mon May 18, 2015 10:09 am
Forum: General
Topic: Winbox 3 RC
Replies: 639
Views: 122296

Re: Winbox 3 RC

1. "taskbar" for windows inside winbox. Now bigger windows cover smaller all the time. All admins I talk to are pissed of because of this.
Or at least 'Windows' menu where we can see all open sub-windows and switch between them.
by karlisi
Wed May 13, 2015 3:22 pm
Forum: Announcements
Topic: RouterOS v6.28 released
Replies: 229
Views: 61620

Re: RouterOS v6.28 released

2. now i use wireless-fp to use capsman, and i got 2 routers in configuration, and i got 2 bridges in master router i got datapath1 configurated to add all master-wifi's in first bridge_work and cap on master router did it, but no packets pass through router to, even when cap is in bridge_work, ine...
by karlisi
Wed Apr 08, 2015 9:22 am
Forum: Beginner Basics
Topic: CapsManager on CCR1009
Replies: 2
Views: 516

Re: CapsManager on CCR1009

Yes. Actually I am using this exact router as CAPsMAN in some places. You don't need wireless on-board for this.
by karlisi
Thu Apr 02, 2015 11:33 am
Forum: Beginner Basics
Topic: Load Balancing Questions and Help
Replies: 14
Views: 1693

Re: Load Balancing Questions and Help

In Winbox open Interface list, open ether3, in Master Port choose 'none'. Then open ether4 and ether5, and change master port to ether3. If I remember correctly, You will need configure them twice, choosing 'none' at first, because MikroTik allows only one master port per switch.
by karlisi
Fri Feb 17, 2006 7:40 am
Forum: General
Topic: What version of MikroTik do you use?
Replies: 17
Views: 2730

Ooops, double post :)
by karlisi
Fri Feb 17, 2006 7:40 am
Forum: General
Topic: What version of MikroTik do you use?
Replies: 17
Views: 2730

I am using 2.7 and I am happy :) Why fix if nothing is broken... why? first - you cant get support or help from forums :) Why worry about support if all works :D Of course, there are many new features in latest versions, but they are not critical for my network, so... MT should be proud if older ve...
by karlisi
Thu Feb 16, 2006 7:34 am
Forum: General
Topic: What version of MikroTik do you use?
Replies: 17
Views: 2730

I am using 2.7 and I am happy :)
Why fix if nothing is broken...
by karlisi
Thu Nov 10, 2005 7:56 am
Forum: General
Topic: Syslog by Mikrotik !!!
Replies: 5
Views: 1410

Kiwi works great on Windows. Free version have many restrictions so you might want to buy it.
by karlisi
Wed Aug 17, 2005 7:18 am
Forum: Scripting
Topic: How to schedule by winbox ?
Replies: 12
Views: 4146

Perhaps two schedules - 0am to 10am and 10pm to 12pm
by karlisi
Fri Mar 04, 2005 8:03 am
Forum: General
Topic: web proxy and password protected websites
Replies: 2
Views: 1105

Its by design. From RouterOS manual:
"Only HTTP traffic is supported in web proxy transparent mode. HTTPS and FTP are not going to work this way."
http://www.mikrotik.com/docs/ros/2.8/ip ... xy.content
by karlisi
Sun Nov 14, 2004 10:37 am
Forum: General
Topic: NTP server issue
Replies: 1
Views: 960

Yes, you can. You dont need additional firewall rules or services. You need NTP package loaded on Mikrotik and NTP server. In NTP client configuration define NTP servers to synchronize with and enable unicast mode. You can find a list of public time servers here http://ntp.isc.org/bin/view/Servers/W...