Default configuration for AP devices

normis · February 28, 2012, 12:04pm

Our current default config for AP devices with one ethernet is like this:

bridged wlan1,ether1	
192.168.88.1/24 on lan port

http://wiki.mikrotik.com/wiki/Manual:Default_Configurations

Do you have any suggestions how this could be improved?

Aug · February 28, 2012, 2:20pm

I think less is better.
For me:

Enable ether 1
Enable neighbor discovery on ether 1
If anything else is added, please allow for “remove configuration”

Thanks for asking

samsung172 · March 2, 2012, 6:43pm

normis:

Our current default config for AP devices with one ethernet is like this:
bridged wlan1,ether1	
192.168.88.1/24 on lan port
http://wiki.mikrotik.com/wiki/Manual:Default_Configurations

Do you have any suggestions how this could be improved?

Would be nice to at least have discovery on, to ether1. (or whatever bridge its member of) We have problems deploying SXT, becouse of default no discovery ether 1. (not problem, but not possible pick a new on from package and just install so engineer is able to configure remote without making a big new route trough whole MPLS net)

mrz · March 5, 2012, 7:26am

On SXT neighbor discovery is not disabled on ether1. Ether1 is a lan port and everything is allowed on that port.

samsung172 · March 7, 2012, 11:05pm

my bad… i mean omnitik

mrz · March 8, 2012, 7:47am

On omnitiks ether1 is wan port that why discovery was disabled, but starting from v5.13 discovery and access to wan port is enabled.

honzam · March 8, 2012, 8:00am

It is possible that the units that have no built-in antenna (Groove, 711-xx) have in default disable wlan1?

Every other units can be enabled wlan1 in default. Thanks

stmx38 · April 14, 2012, 7:46pm

RB751U-2HnD - ROS 5.14.
All my devices connected to eth1 via PoE under a roof.
As I understand if I will reset RB I will lost access to it because Mac-Server is disabled by default on ether1-gateway.
Also I tried to add it manually to the Mac-Server interfaces(and tried all too)but with no luck
I steel can’t connect by mac to my device via eth1 interface, Winbox don’t show anything.

Is it possible to change default behavior for this device ?
If device is connected via PoE and this is single connection to the device, it should permit to use it for management purpose. Not by IP, but by Mac only.

Lakis · June 7, 2012, 7:40pm

normis:

Our current default config for AP devices with one ethernet is like this:
bridged wlan1,ether1	
192.168.88.1/24 on lan port
http://wiki.mikrotik.com/wiki/Manual:Default_Configurations

Do you have any suggestions how this could be improved?

best is with no config just 192.168.88.1/24 on ether1

maxstel · June 21, 2012, 8:27am

Yes, please, remove the filter rules “drop” from firewall for ETH1!!
If I forgot to use “no-default=yes” on reset, I could get in trouble on single port (PoE) connection device.

Thanks

Sorry I’m a little bit out of topic because I was talking about multi-ethernet devices like 750, 751, OmniTIK…

normis · June 21, 2012, 8:30am

This would affect security. Multi ethernet devices only have firewall on the LAN port, you can still connect from the wireless interface and LAN (2-5) ports.

maxstel · June 21, 2012, 8:42am

I know, I know, but some times, this could be a problem, because the eth1 is the only port connected, because of PoE, and after a remote “system reset-configuration” with no other parameter, you can cut out yourself…
That was my fault… After that, the “no-default=yes” became my “default” option in a system reset…

Thanks anyway, Normund…