Community discussions

Search found 2457 matches

  • 1
  • 5
  • 6
  • 7
  • 8
  • 9
  • 50
by mkx
Sun Jun 02, 2019 5:28 pm
Forum: Wireless Networking
Topic: Mikrotik WLAN & CAPsMAN - Bad download perfomance
Replies: 46
Views: 4274

Re: Mikrotik WLAN & CAPsMAN - Bad download perfomance

@Bivvy: when datapath is configured to use capsman's bridge, this usually becomes a srrious bottleneck. If you don't have a good reason not to, set datapath to local-firwarding=yes ... and the rest of appropriate settings.
by mkx
Sat Jun 01, 2019 4:24 pm
Forum: General
Topic: Aux port? [SOLVED]
Replies: 6
Views: 456

Re: Aux port? [SOLVED]

So I reckon the real question would be why use MIMO antenna in the first place, and the answer to that is to have more speed, if you lucky enough to have support from your carrier, and current cell tower have aggregation enabled, and your modem uses all the supported bands etc etc Carrier aggregati...
by mkx
Fri May 31, 2019 11:03 pm
Forum: Beginner Basics
Topic: Connection tracking and VoWIFi
Replies: 1
Views: 169

Re: Connection tracking and VoWIFi

I don't know details about VoWiFi by your MNO, but 3GPP standard VoWiFi works over IPSEC connection between phone and MNO's IMS core network. Then it's up to phone's ability to reconnect (or possibly resume) IPSEC connection. I don't see how firewall's connection tracking engine could possibly know ...
by mkx
Fri May 31, 2019 3:07 pm
Forum: General
Topic: Switch VLANs Very High CPU [SOLVED]
Replies: 9
Views: 611

Re: Switch VLANs Very High CPU [SOLVED]

Right now all packets between VLANs (and access ports towards your CHR) are passing CRS' weak CPU.

You should reconfigure CRS to use single bridge and vlan-filtering ... you can have a look at this fine tutorial.
Your CRS3xx will then deal with VLANs in hardware (switch chip).
by mkx
Fri May 31, 2019 11:57 am
Forum: General
Topic: New CCR
Replies: 7
Views: 497

Re: New CCR

I don't understand why someone (e.g. OP) would ask "that they design a CCR 1036 router with 4 SFP+ ports" ... unless they wanted high-speed routing between those 10G interfaces. And that's the point of my comment ... CRS is not CCR. Period.
by mkx
Thu May 30, 2019 11:08 pm
Forum: General
Topic: Unusual hotspot setup/configuration
Replies: 3
Views: 190

Re: Unusual hotspot setup/configuration

Check if browser received whole index.html content. I wouldn't be surprised if browsers, when displaying hotspot page, would run in a kind of degraded mode to prevent from running some malicious code before user decided that current wireless network is fine to use...
by mkx
Thu May 30, 2019 10:56 pm
Forum: General
Topic: New CCR
Replies: 7
Views: 497

Re: New CCR


That's a switch, not a router. Most definitely not capable of routing anything near the SFP+ speeds.
by mkx
Thu May 30, 2019 10:52 pm
Forum: Beginner Basics
Topic: RB3011 Show LTE in Quickset
Replies: 13
Views: 730

Re: RB3011 Show LTE in Quickset

How about factory reset? No I don't want to make a factory reset, because there are many settings I do it in RB There is a problem and factory reset is not a solution If you have many custom settings, then you should most definitely not use quickset. If you can still sensibly change settings using ...
by mkx
Thu May 30, 2019 10:41 pm
Forum: Beginner Basics
Topic: Route or Bridge ? ?
Replies: 13
Views: 717

Re: Route or Bridge ? ?

In the previous configuration, when 4 ip addresses were assigned, the system automatically created 4 routing entries in the routing table, all of which are DAC entries. Are you sure that's not still the case? Dynamic routes are shown using /ip route print but aren't present in configuration export....
by mkx
Thu May 30, 2019 2:00 pm
Forum: Beginner Basics
Topic: RB3011 Show LTE in Quickset
Replies: 13
Views: 730

Re: RB3011 Show LTE in Quickset

How about factory reset?
by mkx
Thu May 30, 2019 1:59 pm
Forum: Beginner Basics
Topic: Route or Bridge ? ?
Replies: 13
Views: 717

Re: Route or Bridge ? ?

A few things puzzle me in posted config: Center router has two L3 interfaces defined: 192.168.95.100/24 (connecting it to .B area) and 192.168.105.116/24 (connecting it to .A area). It can communicate with those hosts without problem because they are all directly accessible. For communication with h...
by mkx
Wed May 29, 2019 11:53 pm
Forum: Wireless Networking
Topic: two "hap ac lite" as AP over 10 meters behind walls
Replies: 3
Views: 246

Re: two "hap ac lite" as AP over 10 meters behind walls

The big problem are the walls. Both devices will probably connect, but the throughput won't be much (my estimate is a few Mbps assuming low external interference). You should avoid walls, at least place both devices at windows (plain glass, not some gass-filled twin-glass windows or glass covered wi...
by mkx
Wed May 29, 2019 10:01 pm
Forum: Beginner Basics
Topic: How to reserve IP in mikrotik hex poe lite [SOLVED]
Replies: 7
Views: 369

Re: How to reserve IP in mikrotik hex poe lite [SOLVED]

... did I get to reserved?
Yes. As the screenshot shows ... these two are on the list of leases, but don't show a 'D' in the status column ('D' stands for Dynamic) ... so they are static leases, reserved forever and won't get re-used as dynamic lease for any random client.
by mkx
Wed May 29, 2019 3:54 pm
Forum: RouterOS v6 RC and v7 BETA
Topic: Feature Request: Logging of all administrator user actions
Replies: 17
Views: 2466

Re: Feature Request: Logging of all administrator user actions

I'm sure you realize that rule numbers don't exist until you use print command and change if you use some additional filters with that command ... e.g. compare outputs of /ip firewall nat print and /ip firewall nat print chain=srcnat ... So to make log lines really useful, they should contain full r...
by mkx
Wed May 29, 2019 2:01 pm
Forum: Beginner Basics
Topic: How to reserve IP in mikrotik hex poe lite [SOLVED]
Replies: 7
Views: 369

Re: How to reserve IP in mikrotik hex poe lite [SOLVED]

If devices (DVR) are statically configured with IP addresses, then DHCP server will not see request for address from those devices. The status column refers to how DHCP server sees the status, not how devices are using IP addresses in question. The whole point of the exercise above is to prevent DHC...
by mkx
Wed May 29, 2019 1:57 pm
Forum: Beginner Basics
Topic: Route or Bridge ? ?
Replies: 13
Views: 717

Re: Route or Bridge ? ?

While waiting for the config ... what are configured routes on router in .A area? I expect that PCs in the lower center rectangle have router A set as their default gateway ...
by mkx
Tue May 28, 2019 4:37 pm
Forum: Beginner Basics
Topic: One last Newbie Question.. Hopefully
Replies: 4
Views: 315

Re: One last Newbie Question.. Hopefully

Properly configured /ip firewall filter can completely close all accesses from internet while allowing you to connect to router from your LAN. Which is what default firewall does. If some random internet site shows port 443 open, it can be due to 3 things: you changed default firewall filter rules (...
by mkx
Tue May 28, 2019 4:25 pm
Forum: General
Topic: Help regarding 2 subnets/vlans
Replies: 9
Views: 406

Re: Help regarding 2 subnets/vlans

Regardless the fact, that you want VLAN=2 untagged on your ether ports, bridge should still be tagged member:
/interface bridge vlan
add bridge=bridge tagged=bridge vlan-ids=2
by mkx
Tue May 28, 2019 11:16 am
Forum: Useful user articles
Topic: How to opitimize list of IP4 addresses
Replies: 6
Views: 1236

Re: How to opitimize list of IP4 addresses

How many possible host addresses are available for an IPv4 address? Depends on how IPv4 is divided to subnets. Theoretical that's 2^32 addresses (slightly less than 4.2*10^9). Some are used for network addresses (and same number for broadcast addresses) - exact number depends on sizes of subnets an...
by mkx
Tue May 28, 2019 11:03 am
Forum: Beginner Basics
Topic: Route or Bridge ? ?
Replies: 13
Views: 717

Re: Route or Bridge ? ?

What in particular doesn't work?

Post output of command /export hide-sensitive as well ...
by mkx
Tue May 28, 2019 8:46 am
Forum: Wireless Networking
Topic: RBLHG2 no access
Replies: 4
Views: 303

Re: RBLHG2 no access

Did you try to connect to it via wireless interface?
by mkx
Tue May 28, 2019 8:21 am
Forum: Beginner Basics
Topic: How do I delete these lines from config
Replies: 1
Views: 195

Re: How do I delete these lines from config

Lines like /interface ethernet [ find default-name=ether1 ] speed=100 Also, how do I re-enable auto-negotiation on an interface? The config line shown above doesn't mean that autonegotiation is disabled ... for that port would have auto-negotiation=no set. You can check actual settings (all of them...
by mkx
Mon May 27, 2019 8:32 am
Forum: General
Topic: DNS ghost traffic
Replies: 4
Views: 317

Re: DNS ghost traffic

Also for security issues you need to disable DNS remote request, because your router will respond to requests from WAN! Not necessarily. "DNS remote requests" are needed if router is to be DNS server for LAN devices. DNS service will, by default, answer to requests regardless of their origin (LAN o...
by mkx
Sat May 25, 2019 9:46 pm
Forum: Beginner Basics
Topic: Can WAN with multiple VLAN will work with trunked port for Internet and IPTV?
Replies: 14
Views: 735

Re: Can WAN with multiple VLAN will work with trunked port for Internet and IPTV?

While lagging IPTV, what's hEX's CPU load? If it's not much more than about 50%, then cause for problems might be somewhere else ...
by mkx
Sat May 25, 2019 9:42 pm
Forum: Beginner Basics
Topic: Help setting IPv6 with Japanese ISP [SOLVED]
Replies: 25
Views: 1910

Re: Help setting IPv6 with Japanese ISP [SOLVED]

My guess is that you should keep all 5 ports bridged together (otherwise Sob's magic for separating IPv6 from PPPoE won't work), but just to be sure set hw=no for WAN ether port (that's in /interface bridge port ) ... my non-educated guess is that this should be enough to reconfigure your hEX S acc...
by mkx
Sat May 25, 2019 2:26 pm
Forum: Beginner Basics
Topic: Limiting speed per ip
Replies: 1
Views: 250

Re: Limiting speed per ip

You'll have to disable fast-track in firewall filter for this particular host.
For testing purposes (to verify that queue is actually working) you can entirely disable the fast-track rule, but that will affect overall routing performance and you probably don't want to do that.
by mkx
Sat May 25, 2019 11:19 am
Forum: Beginner Basics
Topic: Can WAN with multiple VLAN will work with trunked port for Internet and IPTV?
Replies: 14
Views: 735

Re: Can WAN with multiple VLAN will work with trunked port for Internet and IPTV?

Not exactly the solution I had in my mind. But it works for you and that's what is important.
by mkx
Fri May 24, 2019 11:21 pm
Forum: Beginner Basics
Topic: Can WAN with multiple VLAN will work with trunked port for Internet and IPTV?
Replies: 14
Views: 735

Re: Can WAN with multiple VLAN will work with trunked port for Internet and IPTV?

Wow, so no other special requirements for the ISP IPTV other than VLAN tagging? My ISP wants users to register set-top boxes (maps MAC addresses to user name) to provision play lists. Most channels are available for multicast subscription so with a good VLC playlist one can watch also channels whic...
by mkx
Fri May 24, 2019 7:48 pm
Forum: Beginner Basics
Topic: Can WAN with multiple VLAN will work with trunked port for Internet and IPTV?
Replies: 14
Views: 735

Re: Can WAN with multiple VLAN will work with trunked port for Internet and IPTV?

May I ask, will vlan-filtering in bridge consume much CPU? It just a home network so I try to keep my CPU low. Thanks for the tutorial, I inspect it now. Need to learn a lot of this network stuff. I don't know how things will work on your hAP ac. When I did tests on my RB951G (has slower CPU) it co...
by mkx
Fri May 24, 2019 6:34 pm
Forum: Beginner Basics
Topic: Can WAN with multiple VLAN will work with trunked port for Internet and IPTV?
Replies: 14
Views: 735

Re: Can WAN with multiple VLAN will work with trunked port for Internet and IPTV?

Just a question: does IPTV set-top box expect its data tagged or untagged (my ISP delivers IPTV multicasts via VLAN and set-top boxes expect them tagged as well). Other than that ... since all ports except ether1 are bridged, you can not configure vlans on ether3 the way you did. You'll have to play...
by mkx
Fri May 24, 2019 6:23 pm
Forum: Beginner Basics
Topic: Help setting IPv6 with Japanese ISP [SOLVED]
Replies: 25
Views: 1910

Re: Help setting IPv6 with Japanese ISP [SOLVED]

What can I say, life is sometimes hard for early adopters. Although "early adopter of IPv6" in 2019... :roll: ... but that's how it is. Reading this thread I'd say I'm lucky to have the misery of DSL line ... my ISP is delivering both IPv4 and IPv6 over PPPoE, eliminating need for IPv6 on WAN inter...
by mkx
Fri May 24, 2019 6:03 pm
Forum: Beginner Basics
Topic: Help setting IPv6 with Japanese ISP [SOLVED]
Replies: 25
Views: 1910

Re: Help setting IPv6 with Japanese ISP [SOLVED]

My guess is that you should keep all 5 ports bridged together (otherwise Sob's magic for separating IPv6 from PPPoE won't work), but just to be sure set hw=no for WAN ether port (that's in /interface bridge port ) ... my non-educated guess is that this should be enough to reconfigure your hEX S acco...
by mkx
Fri May 24, 2019 3:03 pm
Forum: General
Topic: Configuring VLAN access port
Replies: 7
Views: 362

Re: Configuring VLAN access port

OK, I'll just pass this problem to anybody else who wants - quoting @anav - to play whack-a-mole with you. You're not showing us full config (not even the relevant sections), only pieces which you think are relevant. If you have a problem and don't know how to solve it (or else you wouldn't be askin...
by mkx
Fri May 24, 2019 2:49 pm
Forum: Beginner Basics
Topic: Slow throughput (<100Mbps) between 2 Gbit Routers being used as switch
Replies: 4
Views: 334

Re: Slow throughput (<100Mbps) between 2 Gbit Routers being used as switch

As long as CPU on devices running bwtest is at 100%, the test results are inconclusive as to how some box in the middle might affect the throughput.
by mkx
Fri May 24, 2019 8:07 am
Forum: Beginner Basics
Topic: Slow throughput (<100Mbps) between 2 Gbit Routers being used as switch
Replies: 4
Views: 334

Re: Slow throughput (<100Mbps) between 2 Gbit Routers being used as switch

Is it because the test is initiated from one one to the other, and therefore the test itself is loading the CPU? Yes. Actually switching is not involved in your test case scenario ... all traffic flows between CPUs of both powerboxes. To check switching capacity one should perform test using extern...
by mkx
Thu May 23, 2019 4:27 pm
Forum: General
Topic: CAPsMAN loses CAPs after reboot
Replies: 4
Views: 234

Re: CAPsMAN loses CAPs after reboot

On CAPs check (and post) output of /interface wireless cap print ... could be that discovery interface is not yet enabled when cap client starts ...

Which ROS version are CAPs running?
by mkx
Thu May 23, 2019 4:21 pm
Forum: General
Topic: Uninstall Wireless and other packages [SOLVED]
Replies: 4
Views: 285

Re: Uninstall Wireless and other packages [SOLVED]

@meazz1: by default, Routerboard devices have installed package bundle and it's not possible to completely uninstall individual packages ... it's only possible to disable them. If you want to completely uninstall some packages, you have to "unbundle" ROS first. The procedure is as follows (you only ...
by mkx
Thu May 23, 2019 4:01 pm
Forum: General
Topic: Download over xDSL, Upload over 4G LTE
Replies: 10
Views: 593

Re: Download over xDSL, Upload over 4G LTE

In short: it's not possible. Different WAN lines come with different WAN IP addresses. Your router has to NAT internal hosts into WAN IP and it should use the correct one for the line it uses for sending the packet out. The WAN host then replies to the same IP address meaning uplink and downlink wil...
by mkx
Thu May 23, 2019 3:49 pm
Forum: General
Topic: Configuring VLAN access port
Replies: 7
Views: 362

Re: Configuring VLAN access port

tdw: Yes, I know. It's a typo. This is example of my config. It's switch2 and ether6, ether7 in my production configuration. But thank you! In this case the /interface ethernet switch vlan section should look like this: /interface ethernet switch vlan add independent-learning=yes ports=ether2,switc...
by mkx
Thu May 23, 2019 3:29 pm
Forum: Beginner Basics
Topic: 1 Bridge with VLAN vs multi bridge
Replies: 5
Views: 327

Re: 1 Bridge with VLAN vs multi bridge

The VLAN-based approach offers full HW accelerated switching on many (even most, but not all) RB devices if VLANs are configured on switch chip (which is not the same as in tutorial linked by @anav) meaning that even devices with slowest CPUs can do wire-speed switching. Note that inter-VLAN traffic...
by mkx
Wed May 22, 2019 8:11 pm
Forum: Beginner Basics
Topic: 1 Bridge with VLAN vs multi bridge
Replies: 5
Views: 327

Re: 1 Bridge with VLAN vs multi bridge

Conceptually both approaches should provide 100% separation of LANs (either bridge-based or VLAN-based).

Surely there's room for bugs with both implementations and only in this case there would be some "bleeding" ... but one has to trust in his network gear, doesn't he? ;-)
by mkx
Wed May 22, 2019 6:08 pm
Forum: Beginner Basics
Topic: Low LTE speed with RBSXTR
Replies: 8
Views: 463

Re: Low LTE speed with RBSXTR

I think it should be possible to lock LTE modem to some band. But it shouldn't be possible to lock to a particular cell (tower) ... if modem was locked to cell on the same spectrum part (same MNO same band) with worse signal strength (but lower load), it would both receive higher interference from s...
by mkx
Wed May 22, 2019 5:46 pm
Forum: General
Topic: CRS328-24P-4S+ Speed issue
Replies: 2
Views: 167

Re: CRS328-24P-4S+ Speed issue

Copying a large file between a windows share and local disk is not a scientiffic way of measuring link speed. Scientific way is to use some kind of traffic generator/sink, such as iperf.
by mkx
Wed May 22, 2019 5:39 pm
Forum: RouterOS v6 RC and v7 BETA
Topic: Manage two distinct subnet behind WAN
Replies: 2
Views: 345

Re: Manage two distinct subnet behind WAN

Remove port ether3 from bridge add IP eddress to ether3 (e.g. 192.168.2.1/24) add firewall filter rules /ip firewall filter add chain=forward src-address=192.168.1.0/24 dst-address=192.168.2.0/24 action=drop add chain=forward src-address=192.168.2.0/24 dst-address=192.168.1.0/24 action=drop at the ...
by mkx
Wed May 22, 2019 8:52 am
Forum: Wireless Networking
Topic: Trouble updating cAP version
Replies: 5
Views: 330

Re: Trouble updating cAP version

The /caps-man manager setting package-path should be set to folder containing packages ... not the packages directly. In your case it should be set package-path=/upgrade ...
by mkx
Tue May 21, 2019 9:44 pm
Forum: Wireless Networking
Topic: link interruption
Replies: 3
Views: 265

Re: link interruption

Some interference local to the tower? Grab a spectrum analyzer with directional antenna and hunt the fox ...
I love the hunt the fox idea :) but I should climb to the tower and sit on it at midnight :)
Isn't wireless communication cute? ;-)
by mkx
Tue May 21, 2019 9:12 pm
Forum: Beginner Basics
Topic: IPv6 Neighbour discovered but MAC is 00:00:00:00:00:00
Replies: 4
Views: 301

Re: IPv6 Neighbour discovered but MAC is 00:00:00:00:00:00

Yup, the pool name is local setting, no business of ISP. The "non-working" variant in point 2 ... you can probably use it, but don't set the "xx" part of address postfix ... this way you'll be able to properly use one /64 subnet (where "xx" equals "00") in a dynamic way ... hopefully router's WAN ad...
by mkx
Tue May 21, 2019 9:00 pm
Forum: Beginner Basics
Topic: Low LTE speed with RBSXTR
Replies: 8
Views: 463

Re: Low LTE speed with RBSXTR

You have answered yourself.
by mkx
Tue May 21, 2019 2:49 pm
Forum: Wireless Networking
Topic: link interruption
Replies: 3
Views: 265

Re: link interruption

Some interference local to the tower? Grab a spectrum analyzer with directional antenna and hunt the fox ...
  • 1
  • 5
  • 6
  • 7
  • 8
  • 9
  • 50