Can't connect to RB750 after power cycle

Bynar · December 28, 2017, 6:38am

Hey folks,
I’m a Mikrotik newbie, and I’ve had some odd behaviour with my RB750. I’ve found that if I have to power cycle it, I can no longer access the configuration for the router, either through the web interface or winbox. Connecting via MAC or IP address in winbox both yield the following error: “ERROR: Cannot connect to..”.

Internet access and VLANS appear to work regardless. The only way I found to get back into the router was to do a reset of the configuration, which is tiresome to say the least, and there are more tweaks that need to be made.

Any help would be appreciated!

n21roadie · December 28, 2017, 11:13am

Have you tried to access by its mac address (64:D1:54:B1:DF:A2) instead of trying the IP address (192.168.3.1)

normis · December 28, 2017, 11:22am

Clear cache from the menu, make sure your computer has the other interfaces turned off (like wireless etc.), try to reboot, try the MAC address.

Bynar · December 29, 2017, 1:37am

I had already tried connecting via the MAC (see my original post). Clearing the cache, and even trying it from other computers on the network have all yielded the same results. Still can’t connect to it.

Any other ideas? I don’t fancy the idea of having to redo the configuration every time I want to make a change.

Bynar · December 31, 2017, 2:23am

Quick update, I did a full reset again, and I can now connect with Winbox via MAC address only. It’s entirely possible that, with my VLAN setup, I’ve somehow cut myself off from accessing the interface via IP, but I’m not sure what I would have done that blocked it.

Here are my firewall rules. I am on VLAN 1. Is there anything amiss here that I could’ve misconfigured? If you need to see any more information, let me know.

Flags: X - disabled, I - invalid, D - dynamic 
 0  D ;;; special dummy rule to show fasttrack counters
      chain=forward action=passthrough 

 1    ;;; defconf: accept established,related,untracked
      chain=input action=accept connection-state=established,related,untracked 

 2    ;;; defconf: drop invalid
      chain=input action=drop connection-state=invalid 

 3    ;;; defconf: accept ICMP
      chain=input action=accept protocol=icmp 

 4    ;;; defconf: drop all not coming from LAN
      chain=input action=drop in-interface-list=!LAN 

 5    ;;; defconf: accept in ipsec policy
      chain=forward action=accept ipsec-policy=in,ipsec 

 6    ;;; defconf: accept out ipsec policy
      chain=forward action=accept ipsec-policy=out,ipsec 

 7    ;;; defconf: fasttrack
      chain=forward action=fasttrack-connection 
      connection-state=established,related 

 8    ;;; defconf: accept established,related, untracked
      chain=forward action=accept 
      connection-state=established,related,untracked 

 9    ;;; defconf: drop invalid
      chain=forward action=drop connection-state=invalid 

10    ;;; defconf:  drop all from WAN not DSTNATed
      chain=forward action=drop connection-state=new 
      connection-nat-state=!dstnat in-interface-list=WAN 

11    chain=forward action=drop in-interface=bridge-vlan1 
      out-interface=bridge-vlan3 log=no log-prefix="" 

12    chain=forward action=accept in-interface=bridge-vlan3 out-interface=ether1 
      log=no log-prefix="" 

13    chain=forward action=drop in-interface=bridge-vlan3 
      out-interface=bridge-vlan1 log=no log-prefix="" 

14    chain=forward action=accept in-interface=bridge-vlan1 out-interface=ether1 
      log=no log-prefix="" 

15    chain=forward action=accept connection-nat-state=dstnat log=no 
      log-prefix=""