Internet speed is really inconsistent

WhiteSpace · April 27, 2022, 9:27pm

Got a microtik hAP ac2 a month ago and at the start it seemed to work great, as shown in the first photo. After a while it noticed it got a lot slower and it would only reach up to 100-110 mbps download and 800mbps upload. I tried resetting to factory settings and that seemed to do the trick for a short time but now its back to being really bad as shown in the second picture. Any clue why that might be?

rextended · April 27, 2022, 9:32pm

This is not Clue/Cluedo game.
Provide relevant details, for example, why not?, the configuration?

rextended · April 27, 2022, 9:56pm

Export the config but before post it remove private data with notepad or similar!!!

Move the IP from ether2 to bridge

WhiteSpace · April 27, 2022, 9:58pm

which parts are the private ones?

WhiteSpace · April 27, 2022, 10:00pm

and to change the ip from ether2 to bridge
add address=192.168.88.1/24 comment=defconf interface=ether2 network=
i need to change the bolded part to bridge?

rextended · April 27, 2022, 10:02pm

for example serial number, pppoe username and passwords, wireless SSID and passwords

ok, I do the job for you, I hope someone can help you, I not see any wrong except for IP on ether2

# apr/28/2022 00:49:10 by RouterOS 6.47.10
# software id = VR0L-S598
#
# model = RBD52G-5HacD2HnD
# serial number = <CENSORED>
/interface bridge
add admin-mac=DC:2C:6E:2D:C2:81 auto-mac=no comment=defconf name=bridge
/interface pppoe-client
add add-default-route=yes disabled=no interface=ether1 name=pppoe-out1 \
    password=<CENSORED> use-peer-dns=yes user=<CENSORED>
/interface wireless
set [ find default-name=wlan1 ] band=2ghz-b/g/n channel-width=20/40mhz-XX \
    disabled=no distance=indoors frequency=auto installation=indoor mode=\
    ap-bridge ssid=<CENSORED> wireless-protocol=802.11
set [ find default-name=wlan2 ] band=5ghz-a/n/ac channel-width=\
    20/40/80mhz-XXXX country=romania disabled=no distance=indoors frequency=\
    auto installation=indoor mode=ap-bridge ssid=<CENSORED> \
    wireless-protocol=802.11
/interface list
add comment=defconf name=WAN
add comment=defconf name=LAN
/interface wireless security-profiles
set [ find default=yes ] authentication-types=wpa2-psk mode=dynamic-keys \
    supplicant-identity=MikroTik wpa-pre-shared-key=<CENSORED> \
    wpa2-pre-shared-key=<CENSORED>
/ip pool
add name=dhcp ranges=192.168.88.10-192.168.88.254
/ip dhcp-server
add address-pool=dhcp disabled=no interface=bridge name=defconf
/interface bridge port
add bridge=bridge comment=defconf interface=ether2
add bridge=bridge comment=defconf interface=ether3
add bridge=bridge comment=defconf interface=ether4
add bridge=bridge comment=defconf interface=ether5
add bridge=bridge comment=defconf interface=wlan1
add bridge=bridge comment=defconf interface=wlan2
/ip neighbor discovery-settings
set discover-interface-list=LAN
/interface list member
add comment=defconf interface=bridge list=LAN
add comment=defconf interface=ether1 list=WAN
add interface=pppoe-out1 list=WAN
/interface wireless access-list
add mac-address=<CENSORED>
/ip address
add address=192.168.88.1/24 comment=defconf interface=ether2 network=\
    192.168.88.0
/ip dhcp-client
add comment=defconf interface=ether1
/ip dhcp-server network
add address=192.168.88.0/24 comment=defconf gateway=192.168.88.1
/ip dns
set allow-remote-requests=yes
/ip dns static
add address=192.168.88.1 comment=defconf name=router.lan
/ip firewall filter
add action=accept chain=input comment=\
    "defconf: accept established,related,untracked" connection-state=\
    established,related,untracked
add action=drop chain=input comment="defconf: drop invalid" connection-state=\
    invalid
add action=accept chain=input comment="defconf: accept ICMP" protocol=icmp
add action=accept chain=input comment=\
    "defconf: accept to local loopback (for CAPsMAN)" dst-address=127.0.0.1
add action=drop chain=input comment="defconf: drop all not coming from LAN" \
    in-interface-list=!LAN
add action=accept chain=forward comment="defconf: accept in ipsec policy" \
    ipsec-policy=in,ipsec
add action=accept chain=forward comment="defconf: accept out ipsec policy" \
    ipsec-policy=out,ipsec
add action=fasttrack-connection chain=forward comment="defconf: fasttrack" \
    connection-state=established,related
add action=accept chain=forward comment=\
    "defconf: accept established,related, untracked" connection-state=\
    established,related,untracked
add action=drop chain=forward comment="defconf: drop invalid" \
    connection-state=invalid
add action=drop chain=forward comment=\
    "defconf: drop all from WAN not DSTNATed" connection-nat-state=!dstnat \
    connection-state=new in-interface-list=WAN
add action=accept chain=forward dst-port=<CENSORED> in-interface-list=WAN protocol=\
    tcp
/ip firewall nat
add action=masquerade chain=srcnat comment="defconf: masquerade" \
    ipsec-policy=out,none out-interface-list=WAN
add action=dst-nat chain=dstnat dst-port=<CENSORED> in-interface-list=WAN protocol=\
    tcp to-addresses=<CENSORED> to-ports=<CENSORED>
/system clock
set time-zone-name=Europe/Bucharest
/tool mac-server
set allowed-interface-list=LAN
/tool mac-server mac-winbox
set allowed-interface-list=LAN

rextended · April 27, 2022, 10:03pm

You can paste this directly on terminal:

/ip address
set [find where address=192.168.88.1/24] interface=bridge

Or you can change interface on ip / address on winbox from ether2 to bridge
(because eterh2 is a bridge slave)