CRS125-24G-1S-RM bricked

Hardware MikroTik hardware general
1

Hi,

two days ago about 9 PM people from the office reported they couldn’t connect to our network through VPN. After a diagnosis (remote and local one hour later):

  • MT responds to ping (locally and over the internet)
  • DHCP server works perfectly
  • LCD panel responds
  • MT allows connection through VPN (MT only forwards a port to OpenVPN server on our network)…
  • …but doesn’t allow access anyone to access our resources (shared drives etc.)
  • clients on local network can ping outside addresses…
  • …but aren’t allowed to browse the web
  • MT isn’t accessible through WinBox (outside address, inside address or through configured eth24 management port with separate network)

RouterOS: 6.39.1

Can I do something to:

  1. Download the current configuration from it (there were some modifications since I made the last .backup)
  2. Make it work again :slight_smile:
    One thing I was doing the same day was reconfiguring some port forwarding to local machines through WinBox.

Best regards!

2

It sounds as though your device has been compromised. If you connect can you get into Winbox through MAC address as that does not require IP connectivity?
You will only get a backup of your device if you can gain administrative access, if you can’t then reset and reconfigure ensuring good security is followed.

3

It worked with the MAC address, thank you!
But if it is compromised am I correct to assume, it may not be a good idea to copy the config to another device?

4

If you’re in it may not be compromised. For safety I’d probably make a backup anyway.