Just recently brought mikrotik router. Any site that requires me to log into the site with a user or password does not load. For example, if I go to amazon and click on "Sign In" then enter my username and password and click on Sign-In. The redirection doesn't load or is really slow. The same thing happens with google and even my work VPN from home.
I have a ASUS router. I'm using the mikrotik for the 10gb connect and am connecting it to the asus router. The mikrotik is currently setup as a bridge. Most of my home computers is currently using 1gb nic so that is why I'm keeping the ASUS router around as the main so that all my computers can see each other. I will evently change them all to spf+ but can't do that right now because of cost. The mikrotik is 8 spf+ 10gb ports and 1 cat port.
So its ISP_Modem ----> ASUS router ------> MT (10gig)-------> other devices
If so, what IP structure does the ASUS for its private LANS, which the MT is on?
Any site that requires me to log into the site with a user or password does not load
The Mikrotik just acting as a switch, does not differentiate on traffic.
Does this happen also when connected directly to the Asus ?
Suspects are Asus (webfilters), and browser/client device settings for HTTPS, like time and date.
??? I have no clue , but suspecting wired connections (SFP).
Is there any website that works fast when using the CRS309 ?
You might try site “speedtest.net” to compare both cases roughly.
I’ve tried changing it to router instead of bridge. Created a bridge and added all the SFP ports to the bridge. Then added the bridge to a vlan. Setup a DHCP server for the bridge. Everything seems to work fine and it is fast. I just don’t know how to make computers connected on the asus see the computers on the mikrotik since I’m not really a network guy and don’t completely understand this. I was able to get the computers connect to mikrotik see the computers connected to the asus. I’m continuously messing with this. I pretty sure I not going to get help on the asus end on this forum to make this work out.
So, I don’t think it is the wired connections on the SFP that is causing the issue since the above works fine. I was just thinking taht setting up the switch would have been much easier since I don’t have to worry about them being on a different subnet and seeing each other.
Your RouterOS version setup as you posted was using the RouterOS as a bridge.
The only thing that might be missing is the “hardware offloading” , so that the CRS309 is using the switch chip as it should.
(With default settings I don’t know if the hw=yes should be visible in the config or not, as I don’t have a CRS309)
https://wiki.mikrotik.com/wiki/Manual:Interface/Bridge#Bridge_Hardware_Offloading
It looks like the “hw=yes” is missing in your config ! All is done by the CPU, and that is very slow in a CRS device.
Tick Hardware offload in every port of the bridge. There is also a letter H in the bridge port overview if the Hardware offload is used.
EDIT: On a hAP ac2 the default for Hardware Offloading is “yes”. So it’s not in the config file. This setting is not documented as parameter for “/interface bridge port” in the Wiki,(https://wiki.mikrotik.com/wiki/Manual:Interface/Bridge#Port_Settings) so I can only guess what is default.
After I restore my configuration to when it was using RouterOS as a bridge, from WinBox GUI the Hardware Offload is checked even though it does not not say so on the exported configuration. My guess is that it is on by default and would only show in the exported configuration if you turn it off.
