Hi everyone!
I’m stupid and i have disabled all the services ports, including winbox (8291) and ssh.
The MikroTik is working well, but I can’t connect to it. What can I do to restore access? I also have a physical access to device.
The model is MikroTik RB951Ui-2HnD there is no physical Serial port to connect through it and restore access. Resetting the device is my last last resort because i don’t have a backup config and i have allot of stuff configured inside that i cant configure them again!
Is there any solution for this case?
Neighbors shows my router mac address but when i try to connect i get an ERROR: Could not connect message.
Winbox via MAC address.
Open Winbox … click “Neighberhood” … wait for your router … click MAC address in the MAC column … fill user + password … connect
As i already have written in my post i have already tried to connect via Winbox >> Neighbors with no success when i try to connect i get an ERROR: Could not connect.
if you can wait 1-2 hours i can go office and close all services in my main router and try to connect to it with mac-telnet from another hap lite that i have spare.
what do u think? should i try?
i have installed RouterOs on a VirtualBox and i have tried to use tools >> Telnet >> mac telnet
when i have inserted my Mikrotik router Mac address it asked me for a Login and password but when inserted the correct credentials it was not connecting and just showed Disconnected.
I’d say that mac-telnet client (=sw run on your Windows machine) asks about credentials even before it tries to connect to the other end.
There are settings for MAC servers (telnet and winbox), which by default limit access to connections coming in through interfaces members of LAN interface list. If you forget to update that list, then you might well get locked out of using MAC connectivity even though that was not intentionally. This lock-out is specially easy to achieve when VLANs are in use.
Hey amte I managed to achieve the same thing but in a different way. Still I couldn’t connect to the router via web or winbox including winbox mac so a the end I just made a reset of the device. I guess it’ll be a bit paintful if you have a lot of settings but it’s always an option.
Making a reset is my last last resort because i have so many firewall rules and some vpn connections. Unfortunately because i am beginner in Mikrotik i have made all these settings by trial and error and i cant reproduce them again after the reset. I am that stupid i didn’t even made a backup.
This router i have installed it in my company so it will be allot of problem to just make a reset.
The router is working perfect i was just experimenting with the winbox service port because i have read about the vulnerability. Now i am locked out of the router and i cant even go inside to make an update to patch the vulnerability problem.
Please is anyone out there that can suggest something ?
This router doesn’t have Serial port only one USB port.
Is it possible to do something using the USB Port to gain console access ?
If the router you’re using is essential for the companies business they should have a backup router pre-configured and ready to go in case of failure.
If they don’t have one get them to get one.
Configure that one and when it’s ready plan some downtime.
Swap.
Hello, as i previously stated unfortunately i cant recreate fully the settings i have done due to the settings have been achieved through trial and error.
Hello, this looks very interesting can some one confirm that it will work with MikroTik RB951Ui-2HnD which i have mistakenly closed all service ports including winbox port ?
