Community discussions

Search found 1740 matches

by chechito
Wed May 25, 2016 4:38 am
Forum: RouterBOARD hardware
Topic: 100Mbps VPN
Replies: 6
Views: 1309

Re: 100Mbps VPN

i have tested on mikrotik mipsbe devices the maximum ipsec throughput is less than 40mbps using aes-128 with cpu usage 100%

second batch of rb850gx2 have ipsec acceleration but i have dont tested

http://wiki.mikrotik.com/wiki/Manual:IP ... encryption
by chechito
Mon May 02, 2016 10:51 pm
Forum: RouterBOARD hardware
Topic: hAP AC and 1Gbit
Replies: 2
Views: 812

Re: hAP AC and 1Gbit

if you plan on using ANY real config on the router, your looking at ccr for 1gbit or x86, HAPAC won't come close if you use alot of rules.

ohh yeah 8)
by chechito
Mon May 02, 2016 2:16 pm
Forum: General
Topic: 3 wan PCC issue
Replies: 2
Views: 564

Re: 3 wan PCC issue

pcc is per tcp/ip connection basis load balancing and is not perfect, pcc distributes tcp/ip connections across the wan connections. the load balancing is done at the start of the tcp/ip connection, at that moment there is no way to know how many traffic that connection will transfer your problem is...
by chechito
Mon May 02, 2016 6:21 am
Forum: General
Topic: Very low TCP transfer speed on IPIP+IPsec on CCR1009 and CCR1036
Replies: 11
Views: 4091

Re: Very low TCP transfer speed on IPIP+IPsec on CCR1009 and CCR1036

this test confirm the issue http://forum.mikrotik.com/viewtopic.php?t=101395#p503869 1.7 Gig IPSEC encrypted (1500 MTU) - Minimum of 25 to get max throughput. something like 68mbps per tcp connection maybe using smb3.0 can improve the situation using multiple connections per transfer https://blogs.t...
by chechito
Sun May 01, 2016 4:57 am
Forum: Wireless Networking
Topic: Wireless product max distance
Replies: 60
Views: 43370

Re: Wireless product max distance

Does it make sense to add non-PtP devices to this comparison? - HAP AC lite - HAP AC - WAP AC - ... i dont think so 1. in wlan (wifi) implementation long distance coverage is the least important factor for proper implementation, most important factors are capacity and performance, this 2 achieved r...
by chechito
Wed Apr 27, 2016 10:58 pm
Forum: General
Topic: CAPsMAN disable B and G modes (N-only)
Replies: 6
Views: 1850

Re: CAPsMAN disable B and G modes (N-only)

rates.jpg
by chechito
Wed Apr 27, 2016 3:06 pm
Forum: RouterBOARD hardware
Topic: Massive packet loses on CRS125-24G during peak time
Replies: 13
Views: 1447

Re: Massive packet loses on CRS125-24G during peak time

without knowing the configuration and topology is difficult to guess
by chechito
Wed Apr 27, 2016 1:40 am
Forum: General
Topic: Router OS x86 unable to install on Dell R710
Replies: 4
Views: 1234

Re: Router OS x86 unable to install on Dell R710

i think a good option is to install routerOS virtualized
by chechito
Wed Apr 27, 2016 12:44 am
Forum: General
Topic: stop vpn connection
Replies: 18
Views: 11478

Re: stop vpn connection

using opendns

block the Proxy/Anonymizer category and that can help
by chechito
Tue Apr 26, 2016 10:29 pm
Forum: General
Topic: RBSXTLTE
Replies: 4
Views: 2522

Re: RBSXTLTE

maybe try aiming the sxt lte toward isp tower because the sxt lte have a directional antenna
by chechito
Tue Apr 26, 2016 7:04 pm
Forum: RouterBOARD hardware
Topic: Netmetal 5 Missing Mini-pcie slot? (RB921UAGS-5SHPACD
Replies: 1
Views: 492

Re: Netmetal 5 Missing Mini-pcie slot? (RB921UAGS-5SHPACD

according to brochure

RB921UAGS-5SHPacT-NM
RB921UAGS-5SHPacD-NM
not pci exp slot

RB922UAGS-5HPacT-NM
RB922UAGS-5HPacD-NM
yes pci exp slot

http://i.mt.lv/routerboard/files/NetMet ... 150227.pdf
by chechito
Tue Apr 26, 2016 6:13 pm
Forum: General
Topic: Poor (ridiculously) performance on two CCR1072
Replies: 54
Views: 6923

Re: Poor (ridiculously) performance on two CCR1072

nadeu,
* I would recommend using traffic-generator instead of bandwidth test.
the issue was validated using iperf between servers
by chechito
Tue Apr 26, 2016 8:29 am
Forum: General
Topic: cannot manage switch
Replies: 4
Views: 620

Re: cannot manage switch

i think you have to reset and try again.

ohh yes and use winbox in the process
by chechito
Tue Apr 26, 2016 7:03 am
Forum: General
Topic: CAPsMAN disable B and G modes (N-only)
Replies: 6
Views: 1850

Re: CAPsMAN disable B and G modes (N-only)

routeros v6.35 includes the option to select data-rates for managed caps

then you can disable b and g datarates

i recommend to leave some g datarates for example 24mbps and 48mbps for broader compatibility with some clients

and use bgn mode for compatibility too
by chechito
Mon Apr 25, 2016 8:58 pm
Forum: RouterBOARD hardware
Topic: RouterOS v6.36 RC5 killed router - stop distribution of version
Replies: 7
Views: 1551

Re: RouterOS v6.36 RC5 killed router - stop distribution of version

Same issue with one CRS226-24G-2S+RM last saturday 23th. CRS Bricked!
Any Mikrotik engineer reading this forum?

do netinstall
http://wiki.mikrotik.com/wiki/Manual:Netinstall
by chechito
Mon Apr 25, 2016 8:53 pm
Forum: Announcements
Topic: SwOS version 1.15 released
Replies: 28
Views: 8428

Re: SwOS version 1.15 released

omg

unbelievable sw os is alive !!!!!
by chechito
Sun Apr 24, 2016 7:07 pm
Forum: General
Topic: Feature request: switch-like vlan functionality for rb w/o switch-chip
Replies: 26
Views: 3537

Re: Feature request: switch-like vlan functionality for rb w/o switch-chip

ccr1009 have a switch on ports eth1 eth2 eth3 and eht4

http://i.mt.lv/routerboard/files/CCR100 ... 142421.png

if you need the power of ccr1016 ccr1036 or ccr1072 just add a switch or a hEX (60 US) and use it as a switch
by chechito
Sun Apr 24, 2016 6:19 pm
Forum: General
Topic: Wireless connection droppping on RB951-2n
Replies: 24
Views: 6952

Re: Wireless connection droppping on RB951-2n

i have used the rb9512n and works ok keep in mind it has the most anemic radio of the entire product line of mikrotik in comparison with rb951G or rb951Ui 9512n.jpg it means, the coverage will be very low because of the low tx power (14-15dbm lower than rb951g/u) the performance (throughput) will be...
by chechito
Fri Apr 22, 2016 7:02 pm
Forum: Wireless Networking
Topic: RB SXT 2hnd - 70 tablets?
Replies: 5
Views: 915

Re: RB SXT 2hnd - 70 tablets?

some users have reported issues with more than 10 clients like tablets and smartphones using sxt 2, but conditions of that tests wasn't clear i think specific conditions of the implementation are key for success or failure i have test very dense wifi deployment using an rb951Ui with a max of 35-40 c...
by chechito
Fri Apr 22, 2016 4:49 pm
Forum: RouterBOARD hardware
Topic: RB 750Gr2 HEX and POE+ - Linksys LGS116P doesn't work
Replies: 1
Views: 545

Re: RB 750Gr2 HEX and POE+ - Linksys LGS116P doesn't work

mikrotik devices are passive POE, most cases not compatible with 802.3 poe (different voltage)
by chechito
Fri Apr 22, 2016 11:41 am
Forum: General
Topic: Fastpath bridging question
Replies: 1
Views: 704

Re: Fastpath bridging question

i have tested some minutes ago on a ccr1009

i have a bridge using eth5, eth6, eth7, eth8, is in fast path mode, i added horizon=1 setting on that 4 ports of the bridge, and still showing fast-path enabled on bridge settings and on ip settings
by chechito
Fri Apr 22, 2016 11:34 am
Forum: Beginner Basics
Topic: [FOUND] CapsMAN snmp MAC Table
Replies: 4
Views: 1082

Re: CapsMAN snmp MAC Table

Found it! In case someone required to get MAC table of connected wifi clients on remote CAPS, please use oid .1.3.6.1.4.1.14988.1.1.1.5.1.1 :D I need it because I intergrate Mikrotik with home automation platform (Domoticz), so to detect mobile devices are present and trigger events (for example pe...
by chechito
Fri Apr 22, 2016 11:29 am
Forum: The Dude
Topic: How to Install The Dude Server to RouterBoard Mikrotik RB951Ui-2HnD
Replies: 5
Views: 9503

Re: How to Install The Dude Server to RouterBoard Mikrotik RB951Ui-2HnD

All the good days . Poor writing in English for this use Google Translate. The problem is as follows: Install the latest firmware ( 6.35 ) on the router. Download the installation package The Dude (dude-6.35.npk) from the official site . I read the manual installation . Uploaded ustanovochnik on th...
by chechito
Fri Apr 22, 2016 11:24 am
Forum: Wireless Networking
Topic: Band Steering
Replies: 17
Views: 6210

Re:

Band steering is not implemented. It is not possible to tell the client that it should reconnect to 5ghz. You can only kick the client off the 2ghz Ap or disallow it's connection but it's all you can do. yes i think that's the way to do it something like this http://www.smallnetbuilder.com/wireless...
by chechito
Fri Apr 22, 2016 11:21 am
Forum: General
Topic: Preformance issues on RB750
Replies: 5
Views: 844

Re: Preformance issues on RB750

I was indeed peaking the capabilities of the router. The CPU was peaking. The reason why i did not suspect this at first, was that the CPU peaked and blocked the GUI update before the counter got to 100% - leaving me with a stable far lower number. I figured this out by doing a speed test with a ra...
by chechito
Thu Apr 21, 2016 11:59 pm
Forum: General
Topic: Poor (ridiculously) performance on two CCR1072
Replies: 54
Views: 6923

Re: Poor (ridiculously) performance on two CCR1072

you have to look for some bottleneck somewhere on your testing environment for your reference there are a test i conducted on a ccr1009, in this result i think my environment test are limiting the results but i dont have more hardware to test iperf.jpg the topology of the test topology.jpg the confi...
by chechito
Thu Apr 21, 2016 10:03 pm
Forum: General
Topic: Regular x86 mikrotik vs CHR with a non-virtualized machine
Replies: 6
Views: 2171

Re: Regular x86 mikrotik vs CHR with a non-virtualized machine

i think the problem installing routeros directly on x86 without virtualization is hardware compatibility thats the main reason to virtualize routeros technically speaking virtualization adds certain amount of latency but is in order of nanoseconds, nothing serious as far as i have read at the forums...
by chechito
Thu Apr 21, 2016 8:47 pm
Forum: General
Topic: Poor (ridiculously) performance on two CCR1072
Replies: 54
Views: 6923

Re: Poor (ridiculously) performance on two CCR1072

We have a poor performance between 2 CCR 1072... we are an FTTH ISP, we have 5000 PPPoE tunnels on each CCR and 5000 correspondent queues. But we think that no effects because CPU is near 5% - 10%. WAT?! Bandwith test with direct 10G connected, from one CCR to another, DIRECT CABLE, no switches no ...
by chechito
Thu Apr 21, 2016 6:31 pm
Forum: General
Topic: Poor (ridiculously) performance on two CCR1072
Replies: 54
Views: 6923

Re: Poor (ridiculously) performance on two CCR1072

We have a poor performance between 2 CCR 1072... we are an FTTH ISP, we have 5000 PPPoE tunnels on each CCR and 5000 correspondent queues. But we think that no effects because CPU is near 5% - 10%. WAT?! Bandwith test with direct 10G connected, from one CCR to another, DIRECT CABLE, no switches no ...
by chechito
Wed Apr 20, 2016 5:37 pm
Forum: Beginner Basics
Topic: Extending wifi using two RB951
Replies: 3
Views: 662

Re: Extending wifi using two RB951

See http://forum.mikrotik.com/viewtopic.php?f=13&t=104929 yes forum is lenty of topics about this kind of setup i dont recommend repeater unless your implementation dont leave another way repeater reduces performance, does not improve the coverage too much and penalize performance a lot http://www....
by chechito
Wed Apr 20, 2016 5:33 pm
Forum: Announcements
Topic: v6.36rc [release candidate] is released, wireless-fp package is discontinued!
Replies: 295
Views: 65221

Re: v6.36rc [release candidate] is released, wireless-fp package is discontinued!

please add CCQ for clients on registration table of caps manager
by chechito
Wed Apr 20, 2016 7:07 am
Forum: Wireless Networking
Topic: Problem with CAP on RB 941-2nD (hAP lite)
Replies: 5
Views: 1945

Re: Problem with CAP on RB 941-2nD (hAP lite)

try using wireless-rep package on all devices, set the ip address of caps manager manually on cap
by chechito
Tue Apr 19, 2016 4:12 pm
Forum: General
Topic: RB951ui-2hnd as multiple load balancer?
Replies: 14
Views: 1949

Re: RB951ui-2hnd as multiple load balancer?

imo using RB951ui-2hnd with having total bandwidth more than 5Mbps will slow down ur router check your config, i have tested +40mbit/sec total wan bandwidth using a heavy configuration with address list, firewall, mangle and queues on a rb951Ui even ipip over ipsec gives you about 25mbit/sec on a r...
by chechito
Tue Apr 19, 2016 2:10 pm
Forum: Wireless Networking
Topic: Band Steering
Replies: 17
Views: 6210

Re: Band Steering

i think is possible, maybe using access list, actually i don't have mikrotiks dual-band to test
by chechito
Tue Apr 19, 2016 4:15 am
Forum: General
Topic: v6.35 [current] is released!
Replies: 103
Views: 24752

Re: v6.35 [current] is released!

What's new in 6.35 (2016-Apr-14 12:55):


*) wireless-rep,capsman - added rate config support.
thx a lot going to test right now
by chechito
Mon Apr 18, 2016 10:22 pm
Forum: RouterBOARD hardware
Topic: Funky smell from 951Ui-2HnD at first start up
Replies: 8
Views: 1453

Re: Funky smell from 951Ui-2HnD at first start up

is normal in many equipment, in mikrotik devices is very little


i had another devices with very strong smell at the first power up, specially power supply's
by chechito
Mon Apr 18, 2016 8:43 pm
Forum: Wireless Networking
Topic: BIG BUG- Unicast key exchange timeout
Replies: 120
Views: 93160

Re: BIG BUG- Unicast key exchange timeout

i want to report 6 months without the issue on rb951g and rb951ui actually i am on ros 6.34 and wireless-fp and cm2 packages
by chechito
Fri Apr 15, 2016 6:25 am
Forum: The Dude
Topic: Can anyone tell me that, How many devices we can add in Dude...
Replies: 3
Views: 1013

Re: Can anyone tell me that, How many devices we can add in Dude...

keep an eye on dude database size, i always try to keep it at maximum 500mbytes to maintain a good performance, i prefer to split the work between multiple virtual machines to establish multiple instances of the dude, one instance on every virtual machine, that way i distribute the work, taking in c...
by chechito
Thu Apr 14, 2016 7:36 am
Forum: The Dude
Topic: Show Signal Strenght
Replies: 5
Views: 1621

Re: Show Signal Strenght

as i understand you are referencing to data-rate value

very interesting and useful
by chechito
Tue Apr 12, 2016 6:16 am
Forum: General
Topic: How to block Youtube and facebook Android App in router Mikrotik
Replies: 30
Views: 71596

Re: How to block Youtube and facebook Android App in router Mikrotik

maybe using mikrotik dns server, create static dns entry for all facebook dns names

i have tested 13k static entry's on dns and 7000 on adress-list on a rb951g and works ok

the problem is to obtain facebook hosts dns names
by chechito
Tue Apr 12, 2016 1:26 am
Forum: RouterBOARD hardware
Topic: HAP AC
Replies: 540
Views: 134458

Re: HAP AC

So I have a RB951G and fairly happy with the coverage however the wifi is dropping out until a reboot of the device brings it back. It's up to date at 6.34.4. I know that it shows a 1000mW power output for the wifi where the HAP AC doesn't mention the power. Can anyone offer any info on this? How d...
by chechito
Tue Apr 12, 2016 1:15 am
Forum: Beginner Basics
Topic: Traffic Shaping MikroTik Cloud Core Router CCR1009-8G-1S-1S+ for 200Mbit
Replies: 6
Views: 1180

Re: Traffic Shaping MikroTik Cloud Core Router CCR1009-8G-1S-1S+ for 200Mbit

wow that was a fast reply, thanks! Just one more question, I´ve applied the simple queue- then, should´t i see something appearing in the "statistics" field? Just wan´t to make sure the rule is applied properly. yes to confirm traffic is being queued you can see on statistics of queue maybe you are...
by chechito
Mon Apr 11, 2016 7:30 pm
Forum: Beginner Basics
Topic: Traffic Shaping MikroTik Cloud Core Router CCR1009-8G-1S-1S+ for 200Mbit
Replies: 6
Views: 1180

Re: Traffic Shaping MikroTik Cloud Core Router CCR1009-8G-1S-1S+ for 200Mbit

/queue type set 5 pcq-classifier=src-address,src-port pcq-limit=50 pcq-total-limit=20000 set 6 pcq-classifier=dst-address,dst-port pcq-limit=50 pcq-total-limit=20000 /queue simple add dst=ether1 max-limit=180M/180M name="queue total" queue=pcq-upload-default/pcq-download-default target=ether2 repla...
by chechito
Mon Apr 11, 2016 7:18 pm
Forum: RouterBOARD hardware
Topic: Why people pair UBNT APs with MikroTik routers?
Replies: 55
Views: 29935

Re: Why people pair UBNT APs with MikroTik routers?

keep in mind most smartphones operate at 10-16dbm tx power then using and ap at very high tx power can help to improve downloading data-rates but the upload data-rate is determined by client device tx power and AP rx sensitivity. This is a very wrong assumption. For the best performance (both up- a...
by chechito
Mon Apr 11, 2016 9:34 am
Forum: RouterBOARD hardware
Topic: Why people pair UBNT APs with MikroTik routers?
Replies: 55
Views: 29935

Re: Why people pair UBNT APs with MikroTik routers?

I bought hAP lite recently as second AP but unfortunately it doesn't seem to have really powerfull radio :lol:. Or at least it's completely smashed by RB. I mean currently RB2011 has stronger signal at any distance above like 2-3m from hAP so hAP provides rather negligible coverage. Considering cro...
by chechito
Mon Apr 11, 2016 6:40 am
Forum: General
Topic: RESTRICT FACEBOOK AND YOUTUBE STREAMING BASED ON OFFICE HOUR FROM 8:00 - 4:00 (08:00 - 16:00)
Replies: 21
Views: 15671

Re: RESTRICT FACEBOOK AND YOUTUBE STREAMING BASED ON OFFICE HOUR FROM 8:00 - 4:00 (08:00 - 16:00)

i suggest you to use opendns I want a similar set up but want to restrict several sites only on work days. Will opendns also work this? yes you can set on mikrotik the hours where you want to send queries to opendns, at the the hours without restriction you can change the rules on mikrotik to send ...
by chechito
Mon Apr 11, 2016 5:01 am
Forum: RouterBOARD hardware
Topic: CCR1072-1G-8S+ SAN
Replies: 5
Views: 1624

Re: CCR1072-1G-8S+ SAN

SAN are one of the most demanding scenarios for networking, for SAN deployments you have to follow your vendor suggestions to get the proper support in case of problems most SAN deployment guides talk about switches not routers some vendor have a 16 port 10gigabit ethernet (8 x 10GBase-T + 8 x 10 Gi...
by chechito
Mon Apr 11, 2016 4:32 am
Forum: RouterBOARD hardware
Topic: Why people pair UBNT APs with MikroTik routers?
Replies: 55
Views: 29935

Re: Why people pair UBNT APs with MikroTik routers?

are you talking about wifi wLAN or wisp wireless??
by chechito
Fri Apr 08, 2016 4:37 am
Forum: General
Topic: High ARP Incoming
Replies: 12
Views: 1236

Re: High ARP Incoming

that interface is connected to a city wide lan of my isp and have a /24

i have seen /22 subnets without this behavior something has to be wrong
by chechito
Thu Apr 07, 2016 3:21 am
Forum: General
Topic: Feature request: Band G/N (not B/G/N) (( This will avoid 802 B Protect mode )))
Replies: 7
Views: 1336

Re: Feature request: Band G/N (not B/G/N) (( This will avoid 802 B Protect mode )))

just disable 802.11b data-rates maybe that can work I thought of and tried it. I still see some B rate connection stuff very rare, i have success to disable even 802.11G data-rates to use only 802.11N data-rates, verified on connection table using wireless fp and cm2 packages tested on rb951-2n, rb...
by chechito
Wed Apr 06, 2016 6:41 pm
Forum: General
Topic: CCR 1036-8G-2S+ CPU or software bottleneck @ 6.7Gbps
Replies: 3
Views: 634

Re: CCR 1036-8G-2S+ CPU or software bottleneck @ 6.7Gbps

i see you tested with 30 parallel streams would be interesting to see the test with 36 parallel streams, also interesting to see: max total cpu usage using tools-profile see the minimum idle cpu using system resources cpu see the load distribution across cores, and max load on most busy core also in...
by chechito
Wed Apr 06, 2016 3:56 pm
Forum: Beginner Basics
Topic: How to Monitor Mikrotik RB951Ui-2nD Remotely
Replies: 2
Views: 549

Re: How to Monitor Mikrotik RB951Ui-2nD Remotely

for remote locations you dont control some times a vpn is a good way
by chechito
Wed Apr 06, 2016 3:47 pm
Forum: RouterBOARD hardware
Topic: Modular CCR?
Replies: 38
Views: 3683

Re: Modular CCR?

Only real life situation where you possibly have 1gbps+ single TCP connection is in your local network, where you can increase MTU to 9000 and it can get all the way up to 10Gpbs. This myth was generated by some noobs, that tried to use TCP Bandwidth test on CCR, and as we all know Bandwidth tool i...
by chechito
Wed Apr 06, 2016 2:24 am
Forum: General
Topic: FCS Error every 30 seconds. see pic
Replies: 3
Views: 929

Re: FCS Error every 30 seconds. see pic

i have read similar cases case before with af24, take a look on the forum, you will find other similar topics
by chechito
Wed Apr 06, 2016 1:56 am
Forum: RouterBOARD hardware
Topic: Modular CCR?
Replies: 38
Views: 3683

Re: Modular CCR?

Yes. i think a good performance with NAT can be achieved with Fast track the real problem is queues, is the most taxing and throttling thing. what throughput you achieve with fasttrack when doing NAT?? which equipment?cpu sage?? cpu usage on most occupied core?? on single tcp/ip connection off course
by chechito
Wed Apr 06, 2016 12:56 am
Forum: General
Topic: New SXT Lite2 revision (SXT2nDr2 vs SXT2nDr3) ?
Replies: 11
Views: 2821

Re: New SXT Lite2 revision (SXT2nDr2 vs SXT2nDr3) ?

how many ram the new version have??

which cpu??

radio??
by chechito
Tue Apr 05, 2016 2:28 pm
Forum: RouterBOARD hardware
Topic: Modular CCR?
Replies: 38
Views: 3683

Re: Modular CCR?

I still want a fanless desktop unit with 1 provided internal PSU, so modularity is a problem. If CCR1009-4G-2S+ cannot handle routing a single connection at 5Gbps through NAT firewall, I'm not interested. If it is a single WAN than yes. i think he refers to one tcp/ip connection not 1 isp connectio...
by chechito
Tue Apr 05, 2016 4:53 am
Forum: General
Topic: What's wrong with the rb750r2??
Replies: 28
Views: 9046

Re: What's wrong with the rb750r2??

did we have any official response for the problems? I need to buy many not expensive routers with 64ram and I thought it was great idea to buy this one but I am afraid I will not. i only see a couple of user reporting issues i think is a specific issue not with the equipment i have some rb750gr2 wo...
by chechito
Mon Apr 04, 2016 10:49 pm
Forum: Wireless Networking
Topic: POE supply for 3 x 951Ui-2HnD
Replies: 3
Views: 634

Re: POE supply for 3 x 951Ui-2HnD

if i understand 3 rb951Ui: chain1.jpg rb951Ui is rated at 7watt you have to use a 24volt power supply with at least real 1amp without voltage drop included power supply of rb951Ui is 0.45amp is important be sure of power supply dont lower the voltage under load because if voltage lowers too much num...
by chechito
Mon Apr 04, 2016 10:29 pm
Forum: Beginner Basics
Topic: How to secure PPPOE network???
Replies: 5
Views: 762

Re: How to secure PPPOE network???

you need good manageable layer 2 switches to implement layer 2 security
by chechito
Mon Apr 04, 2016 8:19 pm
Forum: Beginner Basics
Topic: DHCP offering lease [ip] for [mac] without success
Replies: 22
Views: 7124

Re: DHCP offering lease [ip] for [mac] without success

as i understand you are trying to enforce security but you have to keep in mind some security measures needs to be done on access layer of the network, and another measures need to be done on core looks like you are trying to compensate deficiency on access layer security, over enforcing it on the c...
by chechito
Mon Apr 04, 2016 8:10 pm
Forum: General
Topic: RESTRICT FACEBOOK AND YOUTUBE STREAMING BASED ON OFFICE HOUR FROM 8:00 - 4:00 (08:00 - 16:00)
Replies: 21
Views: 15671

Re: RESTRICT FACEBOOK AND YOUTUBE STREAMING BASED ON OFFICE HOUR FROM 8:00 - 4:00 (08:00 - 16:00)

Using OpenDns will jot work for me because we are not using a public or live ip, rather thru a USB/3G network connection.

Does opendns work with ip not live ip?
you have to try, some times it works
by chechito
Mon Apr 04, 2016 5:23 pm
Forum: General
Topic: SXT-LTE bridged mode?
Replies: 19
Views: 7140

Re: SXT-LTE bridged mode?

is a matter of logic,

the device making the LTE connection gets the ip adress from ISP, form that point you have to deal with it as is.

Of course You need to make all the NAT on the sxt LTE, all the topology behind sxt LTE need to be according to that
by chechito
Sun Apr 03, 2016 4:47 pm
Forum: RouterBOARD hardware
Topic: Modular CCR?
Replies: 38
Views: 3683

Re: Modular CCR?

on the other hand i can do "modular" CCR. get the 1072, and start adding on crs226s as "port expanders" to the 10GE ports :-) if you keep two 10GEs for redundant uplinks, you can fan out the rest 6 into 72 almost wirespeed routed gige ports, where the crs just does plain wirespeed forwarding betwee...
by chechito
Sat Apr 02, 2016 1:22 am
Forum: RouterBOARD hardware
Topic: HAP AC
Replies: 540
Views: 134458

Re: HAP AC

I follow the logic - however I recently asked my distributor about about doing an outdoor event and they recommended Ruckus saying: Ruckus would be a better option as each AP can cover up to 500 users and is designed for Density amongst users in these types of environments I know they have BeamFlex...
by chechito
Fri Apr 01, 2016 3:00 am
Forum: Wireless Networking
Topic: SXT LTE CELLID PROBLEM
Replies: 7
Views: 1472

Re: SXT LTE CELLID PROBLEM

maybe the orientation/location of the device to improve cellid1 signal and/or worsen cell id3 signal
by chechito
Fri Apr 01, 2016 2:40 am
Forum: Beginner Basics
Topic: DHCP offering lease [ip] for [mac] without success
Replies: 22
Views: 7124

Re: DHCP offering lease [ip] for [mac] without success

in wireless access network checking ccq, signal levels, interference and packet loss in wired access network checking interface stats looking form some counter of errors or crc or something strange, check for negotiation problem on Ethernet connections, configuration of manageable switches, possible...
by chechito
Thu Mar 31, 2016 10:56 pm
Forum: Beginner Basics
Topic: DHCP offering lease [ip] for [mac] without success
Replies: 22
Views: 7124

Re: DHCP offering lease [ip] for [mac] without success

when i have that problem always is a layer 2 connectivity issue between clients and dhcp server
by chechito
Thu Mar 31, 2016 4:28 pm
Forum: Wireless Networking
Topic: Wireless product max distance
Replies: 60
Views: 43370

Re: Wireless product max distance

thx for the explanation
normis
i have just another doubt

that values apply for any channel width?? 5mhz 10mhz 20mhz 30mhz 40mhz 50mhz 80mhz etc??

if not how will be the correct way to adjust calculations for different channel width??
by chechito
Thu Mar 31, 2016 4:17 pm
Forum: Wireless Networking
Topic: Wireless product max distance
Replies: 60
Views: 43370

Re: Wireless product max distance

Chechito, what are you trying to find?
i am trying to replicate this result
lhg3.jpg
by chechito
Thu Mar 31, 2016 3:44 pm
Forum: Wireless Networking
Topic: Wireless product max distance
Replies: 60
Views: 43370

Re: Wireless product max distance


@chechito: if you're calculating for the LHG sensitivity at MCS7 is -75 not -80... and probably calculations are done around the optimal gain freqency, 5500?
thx for your response

i have updated de sensitivity value, still -63 of signal
lhg2.jpg
by chechito
Thu Mar 31, 2016 3:39 pm
Forum: General
Topic: Routing Youtube Traffic Doesnt Work
Replies: 10
Views: 2146

Re: Routing Youtube Traffic Doesnt Work

Hi, as Youtube belongs to Google you can reroute traffic with Google IPs as destination address. One idea how to get all Google IPs can be found here: http://forum.mikrotik.com/viewtopic.php?t=70962 Routing based on IP addresses works fine for me (incl. Youtube). Kind regards, iBlueDragon the only ...
by chechito
Thu Mar 31, 2016 3:35 pm
Forum: Wireless Networking
Topic: Wireless product max distance
Replies: 60
Views: 43370

Re: Wireless product max distance

i think is a very good idea publishing this, a honesty proof of mikrotik

i am trying to recreate the lhg results on calculator but i dont obtain -70dbm what i am doing wrong??

lhg.jpg
by chechito
Thu Mar 31, 2016 3:26 pm
Forum: Wireless Networking
Topic: Wireless product max distance
Replies: 60
Views: 43370

Re: Wireless product max distance

why some products dont have the white line of the best data-rate distance??

for example the lhg
by chechito
Thu Mar 31, 2016 3:23 pm
Forum: Wireless Networking
Topic: Wireless product max distance
Replies: 60
Views: 43370

Re: Wireless product max distance

that tables are equivalent to the results of wireless link calculator tool?

http://www.mikrotik.com/test_link.php
by chechito
Thu Mar 31, 2016 1:53 am
Forum: RouterBOARD hardware
Topic: CCR one beep of doom after power cut
Replies: 5
Views: 861

Re: CCR one beep of doom after power cut

I have never seen a MikroTik router that has had problems because of improper shutdown. I personally never have used this command. BUT there is one reason to use it. The config is being saved when you run this command. If you recently made changes to config, and quickly unplug power, you might loos...
by chechito
Thu Mar 31, 2016 1:25 am
Forum: RouterBOARD hardware
Topic: Modular CCR?
Replies: 38
Views: 3683

Re: Modular CCR?

i am totally ignorant about building networking devices, but looking the schematics of Tile Gx chips CCR line is based on looks like that platform are designed for modularity, will be a good idea looking schematics tile gx 36 and tile gx 72 can exchange 4 gigabit ethernet by each 10g ethernet interf...
by chechito
Wed Mar 30, 2016 10:05 pm
Forum: RouterBOARD hardware
Topic: rb44ge is ok to use it in pci-E 1x,
Replies: 12
Views: 1751

Re: rb44ge is ok to use it in pci-E 1x,

In comparison with integrated realteks I have worse latency, can be that because of this pcie? how much difference in latency?? the high latency is with interfaces maxed out at full duplex or without traffic?? avago promotes pex switches as low latency of 190ns http://www.avagotech.com/products/pci...
by chechito
Wed Mar 30, 2016 8:50 pm
Forum: General
Topic: Hotspot performance / ROS does not use all CPU-power available
Replies: 13
Views: 1441

Re: Hotspot performance / ROS does not use all CPU-power available

what kind of queues are you using??

some users have reported that situation on queues
by chechito
Wed Mar 30, 2016 4:52 pm
Forum: General
Topic: PoE over STP or UTP? Cat 5, 5e, 6 or 6a?
Replies: 18
Views: 8230

Re: PoE over STP or UTP? Cat 5, 5e, 6 or 6a?

25GbE equipment s expected to cost the same as 10GbE. Maybe TERA E12, which is rated at 1200MHz, might be enough in the end. So it's not necessarily throwing money, when in addition the connector gives you more application flexibility. A bit of bad timing, before Cat.8 is finalized. i suggest not t...
by chechito
Wed Mar 30, 2016 2:21 pm
Forum: General
Topic: CCR-1036 only get 500mbps through put
Replies: 10
Views: 1910

Re: CCR-1036 only get 500mbps through put

We need more info... How is the CCR configured? What ports are your devices connected to, how are those ports configured? Are you running any special services? i.e. firewall, encryption, VPN, etc... What size packets are you sending via iperf? When you connect each host directly together, what spee...
by chechito
Wed Mar 30, 2016 12:11 pm
Forum: RouterBOARD hardware
Topic: HAP AC
Replies: 540
Views: 134458

Re: HAP AC

Is there any guidance on how many active users/devices can successfully link up to a hAP ac? The 2nd gen UniFi AC units state they'll handle 200 concurrent users... Also, what antennae are compatible with the hAP ac? Thanks. based on my experience i think no matter the brand and no matter what mark...
by chechito
Tue Mar 29, 2016 4:19 pm
Forum: General
Topic: PoE over STP or UTP? Cat 5, 5e, 6 or 6a?
Replies: 18
Views: 8230

Re: PoE over STP or UTP? Cat 5, 5e, 6 or 6a?

-Cat 6A F/UTP (or any combination of pair/cable shielding?) -Cat 6A UTP -Cat 6 F/UTP (or any combination of pair/cable shielding?) - probably I will need that 10Gbit link not so soon, and it will be closer than cable limit lenght -Cat 6 UTP ...... -Cat 5e UTP Right? I recommend you Cat 6 A F /UTP, ...
by chechito
Mon Mar 28, 2016 4:52 pm
Forum: General
Topic: PoE over STP or UTP? Cat 5, 5e, 6 or 6a?
Replies: 18
Views: 8230

Re: PoE over STP or UTP? Cat 5, 5e, 6 or 6a?

for cabling the most future proof you can go is with CAT 6A FTP with that you can go up to with 10gigabit ethernet. maybe cable with 22awg conductors caliber you ensure the best possible PoE performance to the future, also if possible design to reduce the length of every cable taking in count the ca...
by chechito
Mon Mar 28, 2016 7:24 am
Forum: RouterBOARD hardware
Topic: rb44ge is ok to use it in pci-E 1x,
Replies: 12
Views: 1751

Re: rb44ge is ok to use it in pci-E 1x,

The only issue I have with this is the physical connection. PCIe connections are very small and need to be securely in the slot. Cutting an x1 slot to fit a larger card isn't a great idea. Misalignment can end in disaster. You will also need to make sure that the interfaces can indeed share the sam...
by chechito
Sun Mar 27, 2016 5:54 am
Forum: RouterBOARD hardware
Topic: rb44ge is ok to use it in pci-E 1x,
Replies: 12
Views: 1751

Re: rb44ge is ok to use it in pci-E 1x,

rb44ge is pci exp 2.0, in theory with one lane of pci express 2.0 you have 4gbit of bandwidth, thats just enough for 2 gigabit ports in full duplex operation looking the photo of that card it has a pex 8606 bridge that bridge is only 6 internal lanes of pci express, that means the card uses 4 lane o...
by chechito
Fri Mar 25, 2016 5:15 pm
Forum: General
Topic: Block Torrents & p2p Traffic 100% working on all versions
Replies: 57
Views: 153372

Re: Block Torrents & p2p Traffic 100% working on all versions

So, was I right? I mean, do you simply throttle "everything else" but a bunch of "well known useful protocols"? yes i priorize traffic in this order: tcp ack packets, dns, icmp, udp traffic whit characteristics matching most voip and gaming apps, vpns, rdp, http small traffic connections, http big ...
by chechito
Fri Mar 25, 2016 3:58 am
Forum: RouterBOARD hardware
Topic: Modular CCR?
Replies: 38
Views: 3683

Re: Modular CCR?

that will be nice but keep in mind modular equipment is expensive
by chechito
Fri Mar 25, 2016 2:46 am
Forum: General
Topic: Block Torrents & p2p Traffic 100% working on all versions
Replies: 57
Views: 153372

Re: Block Torrents & p2p Traffic 100% working on all versions

in my case i have identified torrent traffic by discard Do you mean "everything else" (everything but HTTP, HTTPS, SSH, SMTPS, IMAP4S POP3S..) is considered torrent? If so, which protocols are you considering? If not, please elaborate. As I cannot really block P2P in general, I am trying to throttl...
by chechito
Thu Mar 24, 2016 5:43 pm
Forum: General
Topic: Block Torrents & p2p Traffic 100% working on all versions
Replies: 57
Views: 153372

Re: Block Torrents & p2p Traffic 100% working on all versions

I agree with chechito. The only "small problem"™ is to correctly identifying the torrent traffic. Blocking the download of the torrent file itself is useless as torrents can be added manually from other sources. I think that only Deep Packet Inspection can help. Any ideas? in my case i have identif...
by chechito
Tue Mar 22, 2016 1:30 pm
Forum: General
Topic: Block Torrents & p2p Traffic 100% working on all versions
Replies: 57
Views: 153372

Re: Block Torrents & p2p Traffic 100% working on all versions

today there is so many ways of using torrent, because that blocking it is a never ending work the main reason to block torrent is because use too much bandwidth i think there is no need to block torrent i think is better to properly identify torrent and p2p traffic to give it a lower priority and co...
by chechito
Sat Mar 19, 2016 11:10 pm
Forum: RouterBOARD hardware
Topic: CCR1016-12G RAM problem.
Replies: 9
Views: 1494

Re: CCR1016-12G RAM problem.

looks like one memory module have poor contact maybe a cleaning of the memory slots with some product can help and clean the memory modules contacts with a pencil eraser to clean it in the case of ccr1016 losing one memory module not only reduces de amount of memory, a disconnected memory module in ...
by chechito
Sat Mar 19, 2016 10:29 am
Forum: General
Topic: Reset a CCR
Replies: 1
Views: 8754

Re: Reset a CCR

yes it has a reset button

quick guide explain about it

http://i.mt.lv/routerboard/files/ccr-36-series-qg.pdf
by chechito
Sat Mar 19, 2016 2:26 am
Forum: RouterBOARD hardware
Topic: Some sincere thoughts about Mikrotik hardware...
Replies: 34
Views: 4092

Re: Some sincere thoughts about Mikrotik hardware...

When I look at the hAP AC, everything about it tells me that its primary intended function is as a simple, but robust access point. if i could ask something for the so-ho segment, it would be the CPU of hAP ac in a CRS. or a dual core arm in a CRS. then throw in som wAP acs, and call it a day. defi...
by chechito
Fri Mar 18, 2016 10:07 pm
Forum: Wireless Networking
Topic: Wifi spectrum analyzer
Replies: 1
Views: 1023

Re: Wifi spectrum analyzer

i currently use the inSSIDer Office + Wi-Spy Mini by metageek they are the same of wi-spy dbx but this is the cheaper alternative as far as i know, beware wispy mini is only 2.4ghz the inssider for office software can work with wi-spy-dbx to support 5ghz band but the software has less functionalitie...
by chechito
Wed Mar 16, 2016 8:49 am
Forum: Scripting
Topic: Suggestion: Certificate for those who post useful scripts
Replies: 5
Views: 1060

Re: Suggestion: Certificate for those who post useful scripts

there is reputation system at the forum, will be nice if used more intensively to thank or to stand out who provides useful help and the topics related i will be ready to help to write wiki for some topics i think i have something to contribute i have an idea: open a topic to suggest improvements ch...
by chechito
Wed Mar 16, 2016 2:34 am
Forum: Wireless Networking
Topic: hAP lite hardware switch
Replies: 6
Views: 1601

Re: hAP lite hardware switch

Thanks jarda, unique problem is that it appears as not having that classic menu (we see hAP through last winbox 3.2) with master/slave option on interface/ethernet :( i have problem with winbox not showing switch menu and another specific menus on hap lite form one specific pc, another pc shows me ...
by chechito
Tue Mar 15, 2016 5:36 am
Forum: Wireless Networking
Topic: Spectral scan all channels
Replies: 5
Views: 1040

Re: Spectral scan all channels

i think mikrotik spectral analysis can help on some situations

but is far from a real spectrum analyzer so take results with care
by chechito
Tue Mar 15, 2016 2:57 am
Forum: RouterBOARD hardware
Topic: CCR 1009 switch chip menu
Replies: 22
Views: 8670

Re: CCR 1009 switch chip menu

That was my main problem, because I read that switch port used more cpu than "cpu port". I have read that a few times as well, but could never reliably reproduce it in lab tests on both RB1100AHx2 and CCR1009-PC. If there is a difference, it is so minor it barely makes an impact. you are right is b...
by chechito
Mon Mar 14, 2016 8:03 pm
Forum: RouterBOARD hardware
Topic: SOHO-Router for 150-400 Mbit NAT?
Replies: 12
Views: 1842

Re: SOHO-Router for 150-400 Mbit NAT?

Well, yes. This Router would leave nothing to be desired but is too much for my purposes, I guess. as i understood we are talking about a half of a gigabit wan connection, keep in mind easily in 1 or 2 years maybe 1 full gigabit of course with all respect, if the budget is the problem maybe you hav...
by chechito
Mon Mar 14, 2016 7:39 pm
Forum: Beginner Basics
Topic: Routerboard vs RouterOS on x86 ? If we use RouterOS with freeradius and freeside.
Replies: 9
Views: 2217

Re: Routerboard vs RouterOS on x86 ? If we use RouterOS with freeradius and freeside.

talking about CCR i think if your budget only allow for CCR1009 go for 1009 :lol: but if your budget allows it go for the http://routerboard.com/CCR1036-12G-4S this model has the best performance per dollar Ratio of the entire line in comparison of CCR1036 with CCR1009, 1036 costs 2x the 1009 but pe...
by chechito
Mon Mar 14, 2016 6:35 pm
Forum: RouterBOARD hardware
Topic: SOHO-Router for 150-400 Mbit NAT?
Replies: 12
Views: 1842

Re: SOHO-Router for 150-400 Mbit NAT?

http://routerboard.com/CCR1009-8G-1S-PC

any device inferior to a CCR1009 can fall short if you deploy a complex configuration
by chechito
Mon Mar 14, 2016 6:32 pm
Forum: Beginner Basics
Topic: Routerboard vs RouterOS on x86 ? If we use RouterOS with freeradius and freeside.
Replies: 9
Views: 2217

Re: Routerboard vs RouterOS on x86 ? If we use RouterOS with freeradius and freeside.

if you want to go with X86 do it correctly dont do X86 to search cut cost, if you go cheap on X86 you will fail a good implementation of X86 requires TWO well designed and powerfull machines capable of manage the work and work reliably then deploy your services virtualized on both machines and confi...
by chechito
Mon Mar 14, 2016 6:26 am
Forum: Scripting
Topic: Client Count Reaching a certain value email
Replies: 4
Views: 740

Re: Client Count Reaching a certain value email

Hi, One of my clients has a few sites with several mikrotik and Ubiquiti devices for conference rooms. The Ubiquiti devices are not functioning correctly after 8 or clients connect to them. Also some sights are experiencing 20-25 clients per AP also. What I would like to do is maybe schedule a scri...
by chechito
Mon Mar 14, 2016 6:13 am
Forum: RouterBOARD hardware
Topic: Mikrotik VDSL / DSL Modem?
Replies: 314
Views: 87887

Re: Mikrotik VDSL / DSL Modem?

judging from g.fast generations performance and alikes - i think copper still serve LOOONG time, atleast for last 150m-400m-1km "last mile" :=) same bout DOCSIS 3.1 and other legacy things :=) ana R&D and improvements and standardization - keep flowing, albeit slower anybody thinking this way about...
by chechito
Mon Mar 14, 2016 2:01 am
Forum: Beginner Basics
Topic: Block Whatsapp
Replies: 60
Views: 54349

Re: Block Whatsapp

I have had great sucess with blocking all sorts of things useing dns, for whatsapp i have a script that adds all ip found in the dns cashe to a address list abvously my script is dynamic and can do this for anything

agree

opendns can help a lot too as a compliment
by chechito
Sun Mar 13, 2016 11:18 am
Forum: General
Topic: how about bigger Jumbo frames, btw ?
Replies: 8
Views: 2159

Re: how about bigger Jumbo frames, btw ?

i think maybe but only when jumbo 9k frames are standarized across all common scenarios will be the moment to think on bigger today deploying jumbo frames require validate all devices involved on communication supporting it i have a doubt, in a wireless 802.11ac access-point is viable to use jumbo 9...
by chechito
Sat Mar 12, 2016 1:19 am
Forum: General
Topic: DNS flood from world to wan port.
Replies: 3
Views: 764

Re: DNS flood from world to wan port.

takes a little time for the bad people to know your ip is no longer exploitable

some times i have seen attacks on other ports, be sure of check that
by chechito
Fri Mar 11, 2016 3:20 pm
Forum: RouterBOARD hardware
Topic: cap2n / wAP in hotel corridors
Replies: 5
Views: 1186

Re: cap2n / wAP in hotel corridors

watch the logs

enable debugging logs on wireless topic

track some user having the problem
by chechito
Fri Mar 11, 2016 8:27 am
Forum: RouterBOARD hardware
Topic: model suggestion
Replies: 23
Views: 2190

Re: model suggestion

i think http://routerboard.com/CCR1009-8G-1S-PC is a good candidate because for home use the silent passive cooling will be greatly appreciated maybe the http://routerboard.com/RB3011UiAS-RM can be a better option because is cheaper and has a good performance but is a very new device, with some issu...
by chechito
Thu Mar 10, 2016 6:54 pm
Forum: Beginner Basics
Topic: Script: port knocking mikrotik-mikrotik ?
Replies: 6
Views: 2293

Re: Script: port knocking mikrotik-mikrotik ?

there are many guides on forum and internet about port knocking

http://forum.mikrotik.com/search.php?keywords=
by chechito
Thu Mar 10, 2016 6:44 pm
Forum: RouterBOARD hardware
Topic: Any plans for an AC mini-pci card?
Replies: 10
Views: 1549

Re: Any plans for an AC mini-pci card?

i dont think 802.11ac will be a good pairing with old PCI

that remembers me the old pci gigabit NICs with limited performance because the bus limitation
by chechito
Thu Mar 10, 2016 6:39 pm
Forum: General
Topic: QOS on unstable link
Replies: 8
Views: 874

Re: QOS on unstable link

you can only guarantee QoS if you are who are queuing the traffic the moment ISP are queuing traffic your QoS is lost i suggest you measure the typical changes on available bandwidth on different hours to adjust queues using scheduler or scripts i think if your ISP fluctuates between 10mbps to 500k ...
by chechito
Thu Mar 10, 2016 12:51 pm
Forum: General
Topic: Bye bye MIKROTIK...
Replies: 29
Views: 8820

Re: Bye bye MIKROTIK...

Inox, not clear what you did. Your link is not publicly accesible...

you need to register on the page and enable access to beta forums
by chechito
Thu Mar 10, 2016 12:50 pm
Forum: General
Topic: ADD DYNAMIC VLAN ASSIGNMENT.
Replies: 37
Views: 16312

Re: ADD DYNAMIC VLAN ASSIGNMENT.

I also would like more information on how to configure mikrotik to work with dvlan. Today i have managed to configure my 2 ubiquity uap-pro's to work with dvlan with beta firmware. Its realy nice how it works i can put users in a group and the radius replies the group settings to the ap like vlan i...
by chechito
Wed Mar 09, 2016 11:51 am
Forum: General
Topic: Torrent
Replies: 43
Views: 9999

Re: Torrent

There is little benefit but a lot of maintenance. S3 + Cloudfront gives better speed and does not rely on the upload speed of volunteer seeders. im agree the only way torrent works reliably is on private trackers where users are obligated to seed the torrent until the downloaded is equal to uploaded
by chechito
Tue Mar 08, 2016 10:41 am
Forum: General
Topic: how to remote controlled router mikrotik behind another router
Replies: 26
Views: 4012

Re: how to remote controlled router mikrotik behind another router

make a VPN to another site under your control and with IP public address
could you be more specific pls. I'm still new to this :)
Which router should i make a VPN ?
this image shows the concept
vpn.jpg
by chechito
Tue Mar 08, 2016 10:20 am
Forum: General
Topic: how to remote controlled router mikrotik behind another router
Replies: 26
Views: 4012

Re: how to remote controlled router mikrotik behind another router

make a VPN to another site under your control and with IP public address
by chechito
Tue Mar 08, 2016 6:16 am
Forum: Wireless Networking
Topic: BR951G-2HnD poor wifi performance
Replies: 8
Views: 1918

Re: BR951G-2HnD poor wifi performance

The problem exists with Lumia phones, they for some reason work only in the HT20 mode with microtics (with other routers everything normally HT40).

be sure phone has support for ht40, most phones only support ht20 and 1 spatial stream
by chechito
Tue Mar 08, 2016 1:23 am
Forum: General
Topic: Latency
Replies: 3
Views: 475

Re: Latency

taken from http://www.vsat-systems.com/satellite-internet-explained/latency.html The GEO satellites used for two-way Internet service are located approximately 23,000 miles above the equator. This means that a round-trip transmission travels 23,000 miles to the satellite, 23,000 miles from the satel...
by chechito
Mon Mar 07, 2016 10:30 pm
Forum: RouterBOARD hardware
Topic: Looking for cause of Ethernet issues CCR1009-8G-1S-1S+PC
Replies: 4
Views: 1087

Re: Looking for cause of Ethernet issues CCR1009-8G-1S-1S+PC

i have the same device, with similar temperatures, no problem at all some users of the forum have reported ethernet negotiation problems with airfiber 24 maybe try with eth7, eth8 have poe input capabilities maybe that's the issue to improve temperatures try underclocking to 400mhz the device to low...
by chechito
Mon Mar 07, 2016 7:35 am
Forum: RouterBOARD hardware
Topic: Underclock or disable processors on CCR1036-8G-2S+
Replies: 17
Views: 2029

Re: Underclock or disable processors on CCR1036-8G-2S+

i think if 80watt of heat get you into trouble you problem is a proper location for equipment of better cooling for that location Wow did you ignore my other posts or what! The closet has other things in it related to communications. 80 watts by itself probably would not be an issue. If it were alo...
by chechito
Mon Mar 07, 2016 5:54 am
Forum: RouterBOARD hardware
Topic: Hardware recommendation
Replies: 6
Views: 1303

Re: Hardware recommendation

beware mikrotik has not UTM functions if you use UTM on fortigate you cannot replace it with mikrotik i think maybe ccr1009 is a good replacement, mikrotik devices below 1009 hava a performance significantly lower in contrast to your requirements http://routerboard.com/CCR1009-8G-1S-1Splus is well e...
by chechito
Mon Mar 07, 2016 5:50 am
Forum: General
Topic: maximum number of users for a AP..
Replies: 14
Views: 2121

Re: maximum number of users for a AP..

Hi, For a lot of time nobody has responded to this thread, it' s perhaps a mystery ? Does someone know which it is the maximum number of users that an Ap can connect? Perhaps *airtime* ? http://www.aerohive.com/solutions/technology-behind-solution/maximizing-client-throughput Thanks not a mystery i...
by chechito
Mon Mar 07, 2016 5:47 am
Forum: RouterBOARD hardware
Topic: Underclock or disable processors on CCR1036-8G-2S+
Replies: 17
Views: 2029

Re: Underclock or disable processors on CCR1036-8G-2S+

because that mikrotik has a Passive cooling and compact version of CCR1009 (9 cores) for this situations where you want a powerfull but small router http://routerboard.com/CCR1009-8G-1S-1SplusPC I have a closet in my utility room where my old routers, switches, and house patch panel are. That close...
by chechito
Mon Mar 07, 2016 5:42 am
Forum: Wireless Networking
Topic: CAPsMAN 5GHz wireless channel problems
Replies: 11
Views: 10912

Re: CAPsMAN 5GHz wireless channel problems

be sure of provisioning the 2 radios of hap ac independently to assign respective frequency and channel
by chechito
Sun Mar 06, 2016 2:21 am
Forum: General
Topic: I cant get more than 50 Mbps through a PtP Netmetal 5 link
Replies: 31
Views: 2791

Re: I cant get more than 50 Mbps through a PtP Netmetal 5 link

try adjusting tx power all rates fixed and using 5dbm tx power Hi, I tried with all rates fixed but bad results, and the results of the picture (about 1500 Mbps) is with card-rates config and lowest dbm (-30)... the signal still in -49db Regards!! ok i think then mikrotik equipment is not adjusting...
by chechito
Sun Mar 06, 2016 12:50 am
Forum: General
Topic: I cant get more than 50 Mbps through a PtP Netmetal 5 link
Replies: 31
Views: 2791

Re: I cant get more than 50 Mbps through a PtP Netmetal 5 link

try adjusting tx power all rates fixed and using 5dbm tx power
by chechito
Sun Mar 06, 2016 12:39 am
Forum: General
Topic: Ubiquiti In-Wall Access Points...
Replies: 3
Views: 584

Re: Ubiquiti In-Wall Access Points...

i think mikrotik map lite can be a good replacement

http://routerboard.com/RBmAPL-2nD
by chechito
Sat Mar 05, 2016 4:05 pm
Forum: General
Topic: 100% CPU load when do export
Replies: 8
Views: 932

Re: 100% CPU load when do export

What is your problem with having 100% CPU for 2 seconds?
disruption or degradation of service

i think is ot a problem itself but is a feasible improvement
by chechito
Sat Mar 05, 2016 4:03 pm
Forum: RouterBOARD hardware
Topic: Underclock or disable processors on CCR1036-8G-2S+
Replies: 17
Views: 2029

Re: Underclock or disable processors on CCR1036-8G-2S+

I think disable processor by software don't save electric power. (Frequency, die voltage are fixed) They need to make it like intel's cpu :lol: I was hoping that since this has firmware, that I could disable it in the software, and it would really do the disabling in the firmware. So that it isn't ...
by chechito
Sat Mar 05, 2016 4:01 pm
Forum: Beginner Basics
Topic: CCR1009-8G-1S-1S+ Hardware Issue.
Replies: 4
Views: 1023

Re: CCR1009-8G-1S-1S+ Hardware Issue.

you dont

ram is soldered on equipment PCB

some other models of CCR have slot for ram but 1009 no

why you need more than 2gb of ram on a CCR1009?
For upgrade the router performance........

most performance is limited by cpu clock or number of cores
by chechito
Sat Mar 05, 2016 11:25 am
Forum: Beginner Basics
Topic: Setting up MikroTik as simple access point?
Replies: 7
Views: 3479

Re: Setting up MikroTik as simple access point?

Hi Chechito, I don't understand exactly what you mean. When I look at the bridge interface page there isn't a place to specify an IP address. Unless I'm looking at the wrong place maybe? Thank you for the help! first you create a bridge interface then you add 2 ports, 1 ethernet interface, 2 wirele...
by chechito
Sat Mar 05, 2016 11:23 am
Forum: Beginner Basics
Topic: Setting up MikroTik as simple access point?
Replies: 7
Views: 3479

Re: Setting up MikroTik as simple access point?

Just a bit of an update. I factory reset the unit to clear out whatever it was that I did. I've now got the Internet IP set to 192.168.0.190 and the Local IP set to 192.168.0.191. I can connect wirelessly to the AP with the iPad, with a static of IP of 192.168.0.195. But I can't ping anything from ...
by chechito
Sat Mar 05, 2016 9:40 am
Forum: General
Topic: RB 750 + Cable Modem + ADSL (not bridge)
Replies: 2
Views: 452

Re: RB 750 + Cable Modem + ADSL (not bridge)

the machine PC have pppoe configured or dhcp is directly on NIC configured?
by chechito
Sat Mar 05, 2016 9:38 am
Forum: General
Topic: 100% CPU load when do export
Replies: 8
Views: 932

Re: 100% CPU load when do export

+1 for control of CPU usage of export and other commands
by chechito
Sat Mar 05, 2016 9:36 am
Forum: General
Topic: Layer7 rule to block Psiphon and Opera Turbo
Replies: 6
Views: 2954

Re: Layer7 rule to block Psiphon and Opera Turbo

whats your objective blocking this sites??
by chechito
Sat Mar 05, 2016 9:35 am
Forum: General
Topic: Speed help
Replies: 2
Views: 333

Re: Speed help

i think sometimes winbox user interface makes easier to understand things
by chechito
Sat Mar 05, 2016 9:32 am
Forum: General
Topic: I cant get more than 50 Mbps through a PtP Netmetal 5 link
Replies: 31
Views: 2791

Re: I cant get more than 50 Mbps through a PtP Netmetal 5 link

check for interference and be sure of freznel zone is clear
by chechito
Sat Mar 05, 2016 9:28 am
Forum: Beginner Basics
Topic: Setting up MikroTik as simple access point?
Replies: 7
Views: 3479

Re: Setting up MikroTik as simple access point?

an access-point is basically a bridge between the wired Ethernet interface and the wireless radio interface

if you want a simple access-point make a bridge

assign the ip address to manage the access-point to the bridge interface itself
by chechito
Sat Mar 05, 2016 4:24 am
Forum: RouterBOARD hardware
Topic: Underclock or disable processors on CCR1036-8G-2S+
Replies: 17
Views: 2029

Re: Underclock or disable processors on CCR1036-8G-2S+

I think disable processor by software don't save electric power. (Frequency, die voltage are fixed) They need to make it like intel's cpu :lol: totally agree, tilera CPUS dont change the power consumption too much between full load and idle i have a CCR1009 with a power consumption of 17watt at 100...
by chechito
Sat Mar 05, 2016 2:26 am
Forum: Beginner Basics
Topic: How to slow down torrent?
Replies: 11
Views: 4641

Re: How to slow down torrent?

i have updated the first line of VOIP traffic rules changing connection rate from 25k to 250k
by chechito
Sat Mar 05, 2016 2:02 am
Forum: General
Topic: How to create a Trunk/Tagged port?
Replies: 2
Views: 581

Re: How to create a Trunk/Tagged port?

do you have configured vlans on rb750 switch chip??
by chechito
Sat Mar 05, 2016 1:38 am
Forum: Wireless Networking
Topic: wireless and multiple VLANs (not trunking)
Replies: 11
Views: 1791

Re: wireless and multiple VLANs (not trunking)

if you want to selectively tag with corresponding VID the traffic of wlan clients when you put that traffic on wired network you need to use radius
by chechito
Fri Mar 04, 2016 9:24 pm
Forum: RouterBOARD hardware
Topic: Enclosure/Chassis for CCR1016-12G-BU
Replies: 1
Views: 532

Re: Enclosure/Chassis for CCR1016-12G-BU

which type of enclosure you are searching for??

outdoor indoor??
by chechito
Fri Mar 04, 2016 8:51 pm
Forum: Beginner Basics
Topic: CCR1009-8G-1S-1S+ Hardware Issue.
Replies: 4
Views: 1023

Re: CCR1009-8G-1S-1S+ Hardware Issue.

you dont

ram is soldered on equipment PCB

some other models of CCR have slot for ram but 1009 no

why you need more than 2gb of ram on a CCR1009?
by chechito
Fri Mar 04, 2016 12:36 pm
Forum: Wireless Networking
Topic: Wi-fi problem, unstable ping
Replies: 18
Views: 3933

Re: Wi-fi problem, unstable ping

Have you tested with other clients ? other computer, telephone, tablet, anything, same ping problem?
Of course i've tested everything. Problem is inside MikroTik

go to RMA
by chechito
Fri Mar 04, 2016 12:35 pm
Forum: Beginner Basics
Topic: Routing performances comparison
Replies: 7
Views: 2026

Re: Routing performances comparison

Thank you for answers I've compared side by side those machines on routerboard.com Cpu, cpu speed, ram size, storage size are the same I have a little experience with 2011 and three to five dsl lines pcc/routing mark managed and a little firewall config They all work flawlessly So I suppose CRS mac...
by chechito
Fri Mar 04, 2016 8:25 am
Forum: Beginner Basics
Topic: Help with switch chip VLANs - How to get IPs to untagged VLANs?
Replies: 6
Views: 956

Re: Help with switch chip VLANs - How to get IPs to untagged VLANs?

Yes, but when I do that, all my VLANs are visible. So I can ping 10.10.20.1 from my VLAN 10 (10.10.10.0/24). Or am I incorrect? i think your vlans are working correctly if you can ping the gateway of another vlan sucessfully that only proves you are in contact with router is normal you can ping ano...
by chechito
Fri Mar 04, 2016 1:56 am
Forum: Beginner Basics
Topic: Help with switch chip VLANs - How to get IPs to untagged VLANs?
Replies: 6
Views: 956

Re: Help with switch chip VLANs - How to get IPs to untagged VLANs?

Yes, but when I do that, all my VLANs are visible. So I can ping 10.10.20.1 from my VLAN 10 (10.10.10.0/24). Or am I incorrect?

to troubleshoot

enable independent learning on each vlan to use the host tab on switch menu to see if mac are on the correct vlan
by chechito
Fri Mar 04, 2016 12:34 am
Forum: Beginner Basics
Topic: Help with switch chip VLANs - How to get IPs to untagged VLANs?
Replies: 6
Views: 956

Re: Help with switch chip VLANs - How to get IPs to untagged VLANs?

Okay, I am trying to configure my CCR1009 using the switch core. I followed the instructions in the http://wiki.mikrotik.com/wiki/Manual:Switch_Chip_Features mikrotik wiki, but couldn't figure out how to get it working without compromising the whole idea of VLANs (somehow I can only make VLANs that...
by chechito
Fri Mar 04, 2016 12:24 am
Forum: Wireless Networking
Topic: Mikrotik band steering
Replies: 5
Views: 3232

Re: Mikrotik band steering

Has anyone tried doing this with scripting? Say for example, every time a device connects to the 5Ghz interface, add an access list rule that denies it from authenticating with the 2Ghz interface. Unfortunately, amongst other side effects, I suspect that this would result in every connection droppi...
by chechito
Thu Mar 03, 2016 11:25 pm
Forum: Beginner Basics
Topic: Routing performances comparison
Replies: 7
Views: 2026

Re: Routing performances comparison

i think you are on the right point of a frequently asked question at the forum and their respective consequences of someone buying a device which in the field do not meet their expectations i think mikrotik has to document and establish device performance beyond the actually published performance: B...
by chechito
Thu Mar 03, 2016 11:12 pm
Forum: RouterBOARD hardware
Topic: NAT performance on CCR1009-8G-1S-1S+
Replies: 6
Views: 2339

Re: NAT performance on CCR1009-8G-1S-1S+

i think you are on the right point of a frequently asked question at the forum and their respective consequences of someone buying a device which in the field do not meet their expectations i think mikrotik has to document and establish device performance beyond the actually published performance: B...
by chechito
Thu Mar 03, 2016 9:43 pm
Forum: General
Topic: CCR1009-8G-1S Replacement
Replies: 12
Views: 1058

Re: CCR1009-8G-1S Replacement

Wow! Can you guys read? I asked if anyone knew why they discontinued it. We have a lot of them in the field and I want to know if there is an issue with them. i think was a logical way of product evolution CCR1009-8G-1S-PC the cheaper model goes passive to attend many requests of a powerful, compac...
by chechito
Thu Mar 03, 2016 9:10 pm
Forum: RouterBOARD hardware
Topic: CRS version of CCR1072-1G-8S+
Replies: 7
Views: 1582

Re: CRS version of CCR1072-1G-8S+

+1 for this
by chechito
Thu Mar 03, 2016 9:09 am
Forum: General
Topic: CRS125 option for broadcast storm ?
Replies: 8
Views: 957

Re: CRS125 option for broadcast storm ?

i suggest you to test in LAB (not production network) this configurations because some times can be tricky to troubleshot Thats fine, I can try with a lab router. but how would I try myself generating broadcast ? in my case i have tested doing a loop on the switch, that is a patch-cord connecting f...
by chechito
Thu Mar 03, 2016 9:05 am
Forum: General
Topic: CRS125 option for broadcast storm ?
Replies: 8
Views: 957

Re: CRS125 option for broadcast storm ?

http://wiki.mikrotik.com/wiki/Manual:CRS_examples#Traffic_Storm_Control Thanks! Lets say, I have 2 ports being used in CRS< one for PPPoE and one for DHCP and then it goes to access layer switches. So only place those 2 codes for both of those ether ? i suggest you to test in LAB (not production ne...
by chechito
Wed Mar 02, 2016 11:10 pm
Forum: Wireless Networking
Topic: Wi-fi problem, unstable ping
Replies: 18
Views: 3933

Re: Wi-fi problem, unstable ping

you need a spectrum analizer to discard interference problems

check datarates and CCQ of client connected to the hap

using the dude you can get some spectral analysis using the hap

http://wiki.mikrotik.com/wiki/Manual:Spectral_scan
by chechito
Wed Mar 02, 2016 10:49 pm
Forum: Beginner Basics
Topic: LED on/off RB951G-2HnD
Replies: 20
Views: 2840

Re: LED on/off RB951G-2HnD

until today the only configurable LED on rb951G is wireless LED
by chechito
Wed Mar 02, 2016 10:40 pm
Forum: RouterBOARD hardware
Topic: mAP Lite Ethernet susceptible to interference!
Replies: 44
Views: 8034

Re: mAP Lite Ethernet susceptible to interference!

i think ehernet is vulnerable to interference by itself, you have to guarantee good cabling and avoid any source of interference to be safe

of course i think a strong magnet so close to a electronic device is a bad idea
by chechito
Wed Mar 02, 2016 10:00 pm
Forum: General
Topic: DNS Remote requests on VLAN interfaces
Replies: 8
Views: 1699

Re: DNS Remote requests on VLAN interfaces

Your input chain might be easier like this: 1) action=accept connection-state=established,related 2) action=drop in-interface=wan1 3) action=drop in-interface=wan2 4) action=accept This would block DNS remote-requests from the wan interfaces. Obviously this is a bit of an over-simplified chain - in...
by chechito
Wed Mar 02, 2016 6:52 am
Forum: RouterBOARD hardware
Topic: RB2011/3011 replacement power supply source?
Replies: 2
Views: 1438

Re: RB2011/3011 replacement power supply source?

Why you don't just use some other power supply? Any ~15w will work. Laptop ones are the best, work forever. RB3011 requires only 10W max.
yes, cheap power supply do not acomlish advertised rating, a good measure is to buy it over 200% of required real power
by chechito
Wed Mar 02, 2016 6:50 am
Forum: General
Topic: multiples vlan on 1 router
Replies: 15
Views: 887

Re: multiples vlan on 1 router

Tried to config with a setup like this (http://wiki.mikrotik.com/wiki/Manual:Interface/VLAN) but when i ping from different vlan. It's not "time out" but "no route to host" instead. That's mean if i create a route they can ping each other =.=!!! be sure of configure router interface address as defa...
by chechito
Wed Mar 02, 2016 5:21 am
Forum: Beginner Basics
Topic: extending network range
Replies: 31
Views: 6197

Re: extending network range

thanks guys. and hardware wise what do you think, go with another hap ac lite, or get something better to replace it as the first device, or maybe with one of the hot spot/access point offerings like cAP-2n, or maybe a RB951G-2HnD ... so many choices.... hap lite, hap and hap ac lite have a medium ...
by chechito
Wed Mar 02, 2016 5:18 am
Forum: General
Topic: VRRP and mangle rules question
Replies: 1
Views: 335

Re: VRRP and mangle rules question

We are running VRRP on a VLAN interface on our CCR1036. If we create mangle rules referencing the parent interface, will the rules apply for the VRRP interface as well? We want rules to work whether or not the interface is currently active. Or do we need to duplicate the rules for both interfaces? ...
by chechito
Wed Mar 02, 2016 5:16 am
Forum: RouterBOARD hardware
Topic: CRS125 Max single TCP stream transfer speed of 30Mb/s
Replies: 3
Views: 827

Re: CRS125 Max single TCP stream transfer speed of 30Mb/s

forum is plenty of topics about CRS layer 3 performance
by chechito
Wed Mar 02, 2016 5:15 am
Forum: RouterBOARD hardware
Topic: RBSXT LTE
Replies: 59
Views: 20716

Re: RBSXT LTE

Why is it not possible to bridge the LTE and ethernet port together? Now there is one additional NAT in the network setup because of this...

i think is normal, network assign you a valid address automatically, then you have to nat all your traffic using that address
by chechito
Wed Mar 02, 2016 5:07 am
Forum: RouterBOARD hardware
Topic: HAP AC
Replies: 540
Views: 134458

Re: HAP AC

Why cannot use TILE ( dual core ) or PowerPC or Cavium MIPS64 ??? Atheros processor is too bad. Let' discuss next generation version. :D smallest tilera is 9 core i think dual core power pc like 850gx2 will be nice or ARM like rb3011 off course the cost will be higher if just the RB3011 had two pci...
by chechito
Tue Mar 01, 2016 9:54 pm
Forum: General
Topic: Block DDoS on Prerouting chain on firewall
Replies: 24
Views: 3350

Re: Block DDoS on Prerouting chain on firewall

maybe you need a powerfull routerboard than actual??
I have CCR1036-8G-2S+ 16GB memory 32 CPUs, Does it enough?
ccr1036 has 36 cpu tile cores not 32

bandwidth an pps of legitimate traffic??

bandwidth and pps of offending traffic when attacked??
by chechito
Tue Mar 01, 2016 8:45 pm
Forum: General
Topic: Block DDoS on Prerouting chain on firewall
Replies: 24
Views: 3350

Re: Block DDoS on Prerouting chain on firewall

maybe you need a powerfull routerboard than actual??
by chechito
Tue Mar 01, 2016 4:09 pm
Forum: General
Topic: Block DDoS on Prerouting chain on firewall
Replies: 24
Views: 3350

Re: Block DDoS on Prerouting chain on firewall

maybe limiting specific application destination port to a max size of packet?? looks like ip firewall has the option of match ip fragments
by chechito
Tue Mar 01, 2016 12:09 pm
Forum: General
Topic: CRS125 bridge/switch latency
Replies: 3
Views: 698

Re: CRS125 bridge/switch latency

i cant understand your topic, can you explain a little bit better??
by chechito
Tue Mar 01, 2016 11:39 am
Forum: General
Topic: multiples vlan on 1 router
Replies: 15
Views: 887

Re: multiples vlan on 1 router

explanation of master ports an switch chip features

http://wiki.mikrotik.com/wiki/Manual:Sw ... p_Features
by chechito
Tue Mar 01, 2016 11:33 am
Forum: General
Topic: multiples vlan on 1 router
Replies: 15
Views: 887

Re: multiples vlan on 1 router

Thanks, but i want to setup with vlan :) btw, i can only set one master port at the same time. I wonder why ? you can have multiple master ports but in this case only 2 because its only 5 port switch multiple master port is a practical and easy way to partition the switch to setup using vlans you w...
by chechito
Tue Mar 01, 2016 11:21 am
Forum: General
Topic: troughput problem CCR1036-12G-4S
Replies: 4
Views: 691

Re: troughput problem CCR1036-12G-4S

AirFiber which, AF24, AF5, AF5x? I've never had to hard set the speeds on an AF to CCR ethernet link. Sometimes you have to fix the tower grounding and make a new cable that will actually negotiate at 1000Mbps/Full-duplex. Every negotiation issue we've had was curable by getting the ethernet and gr...
by chechito
Tue Mar 01, 2016 11:14 am
Forum: General
Topic: multiples vlan on 1 router
Replies: 15
Views: 887

Re: multiples vlan on 1 router

result will be like this, communication between eth2 and eth3 will be at wirespeed using hw switch no CPU usage communication between eth4 and eth5 will be at wirespeed using hw switch no CPU usage communication between subnet 1 and subnet 2 will be routed by software using CPU resources IFETH.jpg
by chechito
Tue Mar 01, 2016 11:11 am
Forum: General
Topic: multiples vlan on 1 router
Replies: 15
Views: 887

Re: multiples vlan on 1 router

a better way to do this can be assign a master port to each group of ethernet ports and then that master port give the addressing of the corresponding subnet, no bridges Could you be more specific plz ??? 1. no bridges 2. no vlan interfaces 3. set eth2 master port = none, eth3 master port = eth2 4....
by chechito
Tue Mar 01, 2016 11:05 am
Forum: General
Topic: multiples vlan on 1 router
Replies: 15
Views: 887

Re: multiples vlan on 1 router

i think in your configuration vlans are working but only in tagged mode that is vlan packets are tagged with vlanid
How to use tagged mode ?? i already enabled "Use Service Tag" in Vlan config but it's not working ?

service tag is for QinQ vlans so uncheck that
by chechito
Tue Mar 01, 2016 10:42 am
Forum: General
Topic: multiples vlan on 1 router
Replies: 15
Views: 887

Re: multiples vlan on 1 router

a better way to do this can be assign a master port to each group of ethernet ports and then that master port give the addressing of the corresponding subnet, no bridges
by chechito
Tue Mar 01, 2016 10:38 am
Forum: General
Topic: multiples vlan on 1 router
Replies: 15
Views: 887

Re: multiples vlan on 1 router

i think in your configuration vlans are working but only in tagged mode that is vlan packets are tagged with vlanid
by chechito
Tue Mar 01, 2016 10:36 am
Forum: General
Topic: CRS port trunking
Replies: 3
Views: 459

Re: CRS port trunking

It is however possible between routeros devices, isn't it ??

i have not tested but documentation says is working between CRS switches
by chechito
Tue Mar 01, 2016 9:49 am
Forum: Beginner Basics
Topic: VLAN trunks without bridges?
Replies: 5
Views: 3774

Re: VLAN trunks without bridges?

if you want to do vlans using hap switch take a look on this http://wiki.mikrotik.com/wiki/Manual:Switch_Chip_Features to do vlans on CRS take a look on this http://wiki.mikrotik.com/wiki/Manual:CRS_examples on hap switch chip is a lot simpler and easier and can be a good introductory before trying ...
by chechito
Tue Mar 01, 2016 9:44 am
Forum: General
Topic: native vlan in CRS
Replies: 3
Views: 700

Re: native vlan in CRS

can be done on mikrotik be sure of adjusting ingress and egress vlan settings correctly

i know that can be a little tricky

the forum is populated with vlan trying on CRS take a look on that topics

if you do not find a solution feel free to quote me to give some help
by chechito
Tue Mar 01, 2016 9:42 am
Forum: General
Topic: troughput problem CCR1036-12G-4S
Replies: 4
Views: 691

Re: troughput problem CCR1036-12G-4S

some users have reported wired ethernet negotiation problem between CCR and Airfiber, check ethernet for errors

sometimes is needed to tweak the auto negotiation for a manual setting on one or both sides (CCR and Airfiber)
by chechito
Tue Mar 01, 2016 9:15 am
Forum: RouterBOARD hardware
Topic: Powering USB devices with mikrotik router.
Replies: 10
Views: 2946

Re: Powering USB devices with mikrotik router.

Use a Passive PoE feature and a 24V — 5V converter, for example. Passive PoE can be turned on and off too, and "stupid" enough just to give voltage without any devices.

because that is called passive POE
by chechito
Tue Mar 01, 2016 9:13 am
Forum: Beginner Basics
Topic: branding option
Replies: 4
Views: 962

Re: branding option

some time ago that topic was touched

contact sales or support about it, as far as i know is possible but with mikrotik approval
by chechito
Tue Mar 01, 2016 9:09 am
Forum: RouterBOARD hardware
Topic: HAP AC
Replies: 540
Views: 134458

Re: HAP AC

@aleh Doing some tests I judge idle wattage to be around 3 to 4 watt. The max power usage I don't know yet, but the data given is confusing. Routerboard.com states max 17 watt , the little paper included with the hAP AC in the box says 5 watt. I'm inclined to believe the max 17 watt because the ada...
by chechito
Tue Mar 01, 2016 8:38 am
Forum: General
Topic: CRS port trunking
Replies: 3
Views: 459

Re: CRS port trunking

by chechito
Tue Mar 01, 2016 8:23 am
Forum: General
Topic: Basic Inter VLAN routing - not Working
Replies: 15
Views: 1861

Re: Basic Inter VLAN routing - not Working

i have find config on CRS switches is better via winbox look at this topic http://forum.mikrotik.com/viewtopic.php?p=522193#p522193 from another topic this tip can help: when setting ingress vlan (untagged vlan of the port) be sure to include that " 0 " example /interface ethernet switch ingress-vla...
by chechito
Tue Mar 01, 2016 7:18 am
Forum: General
Topic: CRS and vlan untagged port, again
Replies: 4
Views: 674

Re: CRS and vlan untagged port, again

maybe this can help http://forum.mikrotik.com/viewtopic.php?p=522193#p522193 from another topic this tip can help: when setting ingress vlan (untagged vlan of the port) be sure to include that " 0 " example /interface ethernet switch ingress-vlan-translation add customer-vid= 0 new-customer-vid=20 p...
by chechito
Mon Feb 29, 2016 8:34 pm
Forum: General
Topic: Block DDoS on Prerouting chain on firewall
Replies: 24
Views: 3350

Re: Block DDoS on Prerouting chain on firewall

is important to establish if offending traffic is toward the router itself or is in transit traffic
by chechito
Mon Feb 29, 2016 8:10 pm
Forum: General
Topic: CRS125 and trunk ports
Replies: 8
Views: 897

Re: CRS125 and trunk ports

is better to configure CRS switch via winbox, i had problems with terminal configuration Thanks for the suggestion, I'm using only winbox By the way...when I have these VLAN connection problems winbox also disconnects and for 5-10 sec routerbord i not accessible =( whan cound be the problem? i sugg...
by chechito
Sun Feb 28, 2016 6:50 am
Forum: RouterBOARD hardware
Topic: HAP AC
Replies: 540
Views: 134458

Re: HAP AC

--update
I just finished writing a kind of review with more detailed statistics on my blog. You can find it here!
i think the power supply is fine because the usb port and poe output, for that the 28 watt of the power supply are just tight enough

good review
by chechito
Sat Feb 27, 2016 11:54 pm
Forum: Announcements
Topic: MUM EUROPE 2016
Replies: 33
Views: 10215

Re: MUM EUROPE 2016

wAP ac - nice!
It is 3x3 5ghz and 3x3 2,4Ghz?
I dont think so

to me looks more like a hap ac LITE in a outdoor enclosure
There is no Lite in the name.
I hope it is Gigabit and 3x3 ac
hopefully you are right
by chechito
Sat Feb 27, 2016 7:53 pm
Forum: Announcements
Topic: MUM EUROPE 2016
Replies: 33
Views: 10215

Re: MUM EUROPE 2016

wAP ac - nice!
It is 3x3 5ghz and 3x3 2,4Ghz?
I dont think so

to me looks more like a hap ac LITE in a outdoor enclosure
by chechito
Sat Feb 27, 2016 7:51 pm
Forum: General
Topic: Bye bye MIKROTIK...
Replies: 29
Views: 8820

Re: Bye bye MIKROTIK...

bon voyage !!!!!!! 8)
by chechito
Fri Feb 26, 2016 8:44 pm
Forum: RouterBOARD hardware
Topic: CCR1036 DC Powered
Replies: 1
Views: 459

Re: CCR1036 DC Powered

looks like last ethernet port have poe in support, check user manual to confirm
by chechito
Fri Feb 26, 2016 8:37 pm
Forum: Wireless Networking
Topic: Balance connected customers between AP - s
Replies: 12
Views: 2802

Re: Balance connected customers between AP - s

Hi all, any clue if the solutions provided in this topic worked ? I am asking because i have to front the challenge to manage to configure 5 ap's that should covering a single conference room in order to provide internet access to 200 - 300 peoples. The challenge that i see it's to try to balance c...
by chechito
Thu Feb 25, 2016 9:47 am
Forum: Wireless Networking
Topic: Disablink VirtualAP interface resets registration of all connected clients on master WLAN interface.
Replies: 2
Views: 592

Re: Disablink VirtualAP interface resets registration of all connected clients on master WLAN interface.

i always have see this behavior

will be interesting to see if its considered normal or can be solved
by chechito
Thu Feb 25, 2016 6:15 am
Forum: General
Topic: wiki firewall update
Replies: 2
Views: 805

Re: wiki firewall update

i think
add chain=input limit=10,0:packet protocol=icmp
has similar results
by chechito
Thu Feb 25, 2016 4:49 am
Forum: RouterBOARD hardware
Topic: "hAP AC" with 802.3af/at PoE? Enterprise calling...
Replies: 20
Views: 6483

Re: "hAP AC" with 802.3af/at PoE? Enterprise calling...

ok, on it

please mikrotik do not abandon passive PoE, it makes viable so many projects
by chechito
Wed Feb 24, 2016 9:57 pm
Forum: Beginner Basics
Topic: How to slow down torrent?
Replies: 11
Views: 4641

Re: How to slow down torrent?

/queue type #CREATING RED QUEUES FOR OTHER BIG TRAFFIC RED WORKS BETTER TO CONTAIN BIG RUSH OF TORRENT CONNECTIONS# add kind=red name=red_download red-avg-packet=1500 red-burst=10 red-limit=40 red-max-threshold=40 add kind=red name=red_upload red-avg-packet=1500 red-burst=5 red-limit=20 red-max-thr...
by chechito
Tue Feb 23, 2016 8:18 pm
Forum: Beginner Basics
Topic: How to slow down torrent?
Replies: 11
Views: 4641

Re: How to slow down torrent?

http://forum.mikrotik.com/viewtopic.php ... 50#p511339

tonight i will post the mangle and queue tree

the configuration is for a DOCSIS connection with real bandwidth of 11000kbps download and 2200kbps upload
by chechito
Tue Feb 23, 2016 5:48 pm
Forum: Beginner Basics
Topic: How to slow down torrent?
Replies: 11
Views: 4641

Re: How to slow down torrent?

in my case i prioritize other traffic leaving other traffic with the lower priority indirectly achieving torrent gets the lower priority in may case i prioritize first icmp, ack, dude, dns, voip, snmp, vpns, http, http-big, mail, other tcp udp connections moving few traffic. that leaves me with othe...
by chechito
Tue Feb 23, 2016 5:42 pm
Forum: Beginner Basics
Topic: Connecting to MikroTik CCR1009-8G-1S-1S+PC
Replies: 2
Views: 484

Re: Connecting to MikroTik CCR1009-8G-1S-1S+PC

use the neighbors tab and connect using mac, try eth1 and eth8
by chechito
Tue Feb 23, 2016 5:41 pm
Forum: Wireless Networking
Topic: hAP ac 802.11ac mode compatibility issue
Replies: 39
Views: 10727

Re: hAP ac 802.11ac mode compatibility issue

i think the problem are not with 802.11ac devices in general the problem is with that intel 7260 NIC in my experience i have same problems with intel 7260 no ac version some driver versions give better performance than others will be a good idea to explore the specific topic of performance with inte...
by chechito
Tue Feb 23, 2016 5:32 pm
Forum: RouterBOARD hardware
Topic: New Switch hardware
Replies: 8
Views: 1447

Re: New Switch hardware

you can afford more expensive equipment you want we to pay more for stuff we dont need because you want to pay less for the stuff you need very selfish too much small project are viable because of passive PoE for many people to access to internet the main problem is money not cable cluttering many p...
by chechito
Mon Feb 22, 2016 10:29 pm
Forum: General
Topic: CRS125 and trunk ports
Replies: 8
Views: 897

Re: CRS125 and trunk ports

is better to configure CRS switch via winbox, i had problems with terminal configuration
by chechito
Mon Feb 22, 2016 7:23 pm
Forum: General
Topic: Basic setup of CCR-1009-8G-1S router
Replies: 2
Views: 4271

Re: Basic setup of CCR-1009-8G-1S router

if you think is too many work to do, hire a consultant to do that
by chechito
Mon Feb 22, 2016 7:21 pm
Forum: RouterBOARD hardware
Topic: New Switch hardware
Replies: 8
Views: 1447

Re: New Switch hardware

Same as my conclusion.
And their PoE output isn't following the IEEE802.3af/at standard.

yes because 802.3 PoE is expensive

in my experience no need for expensive PoE, maybe other implementations need it
by chechito
Sat Feb 20, 2016 4:59 am
Forum: RouterBOARD hardware
Topic: (help) CCR1009-8G-1S-1S+ PSU2: Failed
Replies: 2
Views: 1853

Re: (help) CCR1009-8G-1S-1S+ PSU2: Failed

sorry for the obvious question, have you connected a AC source to failed PSU?
by chechito
Thu Feb 18, 2016 11:16 pm
Forum: General
Topic: Swithing Without Master port
Replies: 13
Views: 1325

Re: Swithing Without Master port

when you are sure your vlan configuration is ready check this
switch.jpg
by chechito
Thu Feb 18, 2016 11:14 pm
Forum: General
Topic: Swithing Without Master port
Replies: 13
Views: 1325

Re: Swithing Without Master port

hmm just an idea but i cant test it now. What will happen... If i set eth1,2,3,4,5,6,7 master port = eth8 will ports 1 to 5 be able to see vlans on ports eth6 and eth7? and i will isolate eth6,eth7,eth8 so they cant see each-other? I must test this. my friend, master port has not any relationship w...
by chechito
Thu Feb 18, 2016 10:07 pm
Forum: General
Topic: Swithing Without Master port
Replies: 13
Views: 1325

Re: Swithing Without Master port

each eth interface only can have a single master port http://wiki.mikrotik.com/wiki/Manual:Switch_Chip_Features http://wiki.mikrotik.com/wiki/Manual:CRS_features http://wiki.mikrotik.com/wiki/Manual:CRS_examples yes its possible but multiple master port is not the way to do it the only thing you ne...
by chechito
Thu Feb 18, 2016 9:55 pm
Forum: General
Topic: Swithing Without Master port
Replies: 13
Views: 1325

Re: Swithing Without Master port

each eth interface only can have a single master port http://wiki.mikrotik.com/wiki/Manual:Switch_Chip_Features http://wiki.mikrotik.com/wiki/Manual:CRS_features http://wiki.mikrotik.com/wiki/Manual:CRS_examples yes its possible but multiple master port is not the way to do it the only thing you nee...
by chechito
Wed Feb 17, 2016 11:39 pm
Forum: General
Topic: PCC load balancing not working
Replies: 4
Views: 982

Re: PCC load balancing not working

i have not used that radius implementation because that i dont understand why you cant use simple queuing on the router i think dis-balance occurs because high bandwidth connections, maybe you have to identify the source or destination of it to think a strategy try balancing only for source address ...
by chechito
Wed Feb 17, 2016 10:28 pm
Forum: RouterBOARD hardware
Topic: 256-bit OpenVPN @ 200/200 mbps
Replies: 15
Views: 11770

Re: 256-bit OpenVPN @ 200/200 mbps

beware of hardware compatibility when building a x86 mikrotik, some times is better to use virtualization to avoid hardware compatibility problems but it add another layer of complexity the best single threaded performance per dollar is obtained with intel core i3 CPUs and pentium cheap for example ...
by chechito
Wed Feb 17, 2016 10:11 pm
Forum: Beginner Basics
Topic: Mikrotik Routerboard 1100ahx2 not working
Replies: 5
Views: 1082

Re: Mikrotik Routerboard 1100ahx2 not working

check voltage on inverter
by chechito
Wed Feb 17, 2016 10:02 pm
Forum: The Dude
Topic: Syslog doesn't work on 4.0beta3
Replies: 3
Views: 1147

Re: Syslog doesn't work on 4.0beta3

check syslog is enabled on dude and verify the port

check log generating devices configuration to asure have the correct ip of dude server

check connectivity between devices and dude server

as jarda says check syslog packets are arriving to dude server
by chechito
Wed Feb 17, 2016 9:59 pm
Forum: General
Topic: When 6.34.2 bugfix release coming??
Replies: 2
Views: 1144

Re: When 6.34.2 bugfix release coming??

i dont know ...
by chechito
Wed Feb 17, 2016 9:38 pm
Forum: Beginner Basics
Topic: EOIP over IPSEC TWO RB750
Replies: 21
Views: 12632

Re: EOIP over IPSEC TWO RB750

maybe if you dont need layer 2 connectivity between sites using iPiP over ipsec tunnels can make easier the routing
by chechito
Wed Feb 17, 2016 9:30 pm
Forum: General
Topic: Swithing Without Master port
Replies: 13
Views: 1325

Re: Swithing Without Master port

how can i do it?

set all ethernet interfaces without master

then define which ports you use as masters for example to use eth1 and eth6 as master ports

then set eth2 eth3 eth4 eth5 master port= eth1

then set eth7 eth8 eth9 eth10 master port= eth6
by chechito
Wed Feb 17, 2016 9:21 pm
Forum: General
Topic: PCC load balancing not working
Replies: 4
Views: 982

Re: PCC load balancing not working

PCC is never perfectly balanced because is done per tcp/ip connection is a matter of luck because there is no manner to know how many traffic a tcp/ip connection will transfer normally this situation is normalized when link is near full utilization. use simple queues to control bandwidth of the host...
by chechito
Wed Feb 17, 2016 9:09 pm
Forum: General
Topic: Block or Allow MAC address on interface?
Replies: 6
Views: 1349

Re: Block or Allow MAC address on interface?

exactly what kind of filtering between bridge interfaces are you trying to do??
by chechito
Wed Feb 17, 2016 7:20 pm
Forum: RouterBOARD hardware
Topic: Can't find a CCR1072-8G-8S-4S+ or similar
Replies: 2
Views: 775

Re: Can't find a CCR1072-8G-8S-4S+ or similar

add a CRS210-8G-2S+IN to it and you have what you want....

yes or maybe another vendor manageable switch and you are done
by chechito
Wed Feb 17, 2016 7:14 pm
Forum: General
Topic: CCR-1036 got rebooted with DDoS
Replies: 5
Views: 935

Re: CCR-1036 got rebooted with DDoS

is a specific weakness of your configuration

if you really want to secure a router

you need to create rules to policy and QoS traffic towards router to protect it

in Cisco its called Control Plane Protection and Control Plane policing
by chechito
Wed Feb 17, 2016 7:10 pm
Forum: General
Topic: Swithing Without Master port
Replies: 13
Views: 1325

Re: Swithing Without Master port

in theory it supports multiple master ports

but i dont understand why you cant do a configuration using only 1 master port (normal behavior)
by chechito
Tue Feb 16, 2016 10:23 am
Forum: General
Topic: Two Net work on a single infrastucture
Replies: 3
Views: 407

Re: Two Net work on a single infrastucture

vlans, pbr, pcc, mpls....

with mikrotik the possibilities are many

you have to look on limitations of another networking devices of the network
by chechito
Tue Feb 16, 2016 5:30 am
Forum: RouterBOARD hardware
Topic: mAP lite
Replies: 58
Views: 19611

Re: mAP lite

More photo and quick review
http://lanmarket.ua/stats/obzor-i-testi ... a-mAP-lite

p.s. On high load device make squeak/noise... like dry capacitors

as always very good review !!! 8)
by chechito
Tue Feb 16, 2016 4:50 am
Forum: RouterBOARD hardware
Topic: x86 or CCR for 10Gbps
Replies: 6
Views: 1926

Re: x86 or CCR for 10Gbps

the experiences shared on the forum point toward a virtualized implementation someone shared a experience of a routeros virtualized on vmware esxi or vsphere with very good performance meantime someone shared experiences of problems with ccr1036 an ccr1072 on specific scenarios of big queues bgp con...
by chechito
Sat Feb 13, 2016 2:25 am
Forum: Wireless Networking
Topic: Printer Access with "client to client forwarding" disabled
Replies: 6
Views: 1258

Re: Printer Access with "client to client forwarding" disabled

maybe an additional ssid for printers
by chechito
Fri Feb 12, 2016 7:34 am
Forum: Wireless Networking
Topic: Best Device for 500 Active Users
Replies: 3
Views: 926

Re: Best Device for 500 Active Users

no matter what commercial agents of any vendor say to you there is no way one single device can serve 500 concurrent wireless clients reliably
by chechito
Thu Feb 11, 2016 7:21 pm
Forum: Beginner Basics
Topic: Prevent Encrypted Torrent
Replies: 4
Views: 826

Re: Prevent Encrypted Torrent

You cannot block it completely but you can limit available bandwidth for "big" connections.
totally agree classifying all other important traffic leaves torrent traffic with the lower priority

dont block torrent, just throttle it
by chechito
Tue Feb 09, 2016 3:29 pm
Forum: RouterBOARD hardware
Topic: HAP AC
Replies: 540
Views: 134458

Re: HAP AC

Hehe, even MikroTik themselfs posted a link. %)
$129 is quite high though... even hEX as a router is cheaper and more powerful (BTW, why? They have the same CPU, aren't they?).
maybe is something related to the dual 3x3 radio included :lol: :lol: :lol:
by chechito
Tue Feb 09, 2016 7:49 am
Forum: Beginner Basics
Topic: ipsec vpn - same local subnets
Replies: 10
Views: 2247

Re: ipsec vpn - same local subnets

maybe proxy arp can help in that situation
by chechito
Tue Feb 09, 2016 7:38 am
Forum: Beginner Basics
Topic: I have a situation
Replies: 3
Views: 290

Re: I have a situation

to balance is a little different

http://wiki.mikrotik.com/wiki/Manual:PCC
by chechito
Tue Feb 09, 2016 6:48 am
Forum: Beginner Basics
Topic: I have a situation
Replies: 3
Views: 290

Re: I have a situation

policy based routing

not an exact example but it explain the basics

http://wiki.mikrotik.com/wiki/Policy_Base_Routing
by chechito
Mon Feb 08, 2016 8:15 pm
Forum: General
Topic: OID of total CPU usage on CCR
Replies: 16
Views: 10073

Re: OID of total CPU usage on CCR

i have a ccr1009 and the dude is showing total cpu usage
by chechito
Mon Feb 08, 2016 5:37 pm
Forum: RouterBOARD hardware
Topic: Mikrotik CCR1072 Fault issue.
Replies: 12
Views: 1910

Re: Mikrotik CCR1072 Fault issue.

It's been over two weeks and MikroTik do not want to replace equipment RMA140122885. It's a shame that even MikroTik don't know what is the problem and hide behind the MikroTik RMA policy ;( its a shame, looks like new devices are not suitable for critical environments. is not only a mikrotik probl...
by chechito
Mon Feb 08, 2016 5:33 pm
Forum: General
Topic: SNMP graphs broke with CCR / Tile 6.34
Replies: 3
Views: 520

Re: SNMP graphs broke with CCR / Tile 6.34

i have ccr1009 monitored with the dude using dude and snmp ethernet interface monitoring and i see almost equal graphics using RoS 6.34

which type of interface you have the problem?