OmniTik U-5HnD issue

RouterOS Wireless Networking
1

Hello everybody,
It’s my first post, so please be patient.

Here is my network layout:

Omnitik------SXT-----LinuxGateway
|
|------SXT-----PC
|
|------Groove-----Other-PC




This is outside 5ghz installation.
Omnitik(not UPA) is set as ap-bridge, SXT’s and groove - as a station. Wireless connections between SXT’s/omnitik/groove
is created via mpls/vpls tunnels. Wireless protocol is set to any.
In SXT’s Tunnels are bonded into bridges with ether interfaces. I can ping from each point to the rest, also i can ping to internet from each node of network.
All firewall rules are removed.
All mikrotiks are upgraded to 5.14

Here is the problems:

  1. I can’t connect from PC via winbox to Omnitik, Groove and SXT near gateway.
  2. I can ssh/telnet to omnitik but i can’t get via ftp (and sftp also) supout.rif
  3. I can’t open any http site from PC. also skype (good testing tool:)) not works.
  4. I can’t open facebook and bank sites from Other-PC.

Help me :confused:

2

You need to provide more information from your configuration.
Please post:
ip export compact
mpls export compact
int export compact

From onmitik and one of the sxt.

3

----------------SXT near PC--------------------

[admin@Ptp1] > /ip export compact

apr/09/2012 18:29:32 by RouterOS 5.14

software id = 4XIP-8CRN

/ip address
add address=10.0.1.4/28 interface=wlan1
add address=192.168.59.224/24 interface=bridge1
/ip dns
set max-udp-packet-size=512 servers=192.168.1.254
/ip firewall connection tracking
set enabled=no
/ip route
add distance=1 gateway=192.168.59.254
add distance=1 dst-address=192.168.0.0/16 gateway=192.168.59.254
/ip service
set telnet disabled=yes
set ftp disabled=yes
set www disabled=yes
/ip traffic-flow
set interfaces=ether1
[admin@Ptp1] > /mpls export compact

apr/09/2012 18:29:46 by RouterOS 5.14

software id = 4XIP-8CRN

/mpls interface
set [ find default=yes ] mpls-mtu=1500
/mpls ldp
set enabled=yes loop-detect=yes lsr-id=10.0.1.4 transport-address=10.0.1.4
/mpls ldp interface
add interface=wlan1
[admin@Ptp1] > /interface export compact

apr/09/2012 18:29:55 by RouterOS 5.14

software id = 4XIP-8CRN

/interface ethernet
set 0 l2mtu=1600
/interface bridge
add l2mtu=1500 name=bridge1 protocol-mode=rstp
/interface wireless
set 0 band=5ghz-onlyn disabled=no frequency=5805 ht-ampdu-priorities=0,1,2,3,4,5,6,7 ht-guard-interval=long ht-rxchains=0,1 ht-supported-mcs=
mcs-0,mcs-1,mcs-2,mcs-3,mcs-4,mcs-5,mcs-6,mcs-7,mcs-8,mcs-9,mcs-10,mcs-11,mcs-12,mcs-13,mcs-14,mcs-15 ht-txchains=0,1 l2mtu=2290 mode=station-bridge nv2-preshared-key=1234 nv2-security=enabled
radio-name=kd55 ssid=JnM wds-default-bridge=bridge1 wds-mode=dynamic wireless-protocol=any
/interface vpls
add disabled=no l2mtu=1500 mac-address=XX:XX:XX:XX:2C:50 name=KD55 remote-peer=10.0.1.1 vpls-id=3:3
/interface wireless nstreme
set wlan1 enable-nstreme=yes
/interface wireless security-profiles
set [ find default=yes ] group-ciphers="" supplicant-identity=MikroTik unicast-ciphers=""
/interface bridge port
add bridge=bridge1 interface=ether1
add bridge=bridge1 interface=KD55

----------------------Omnitik's----------------------------

[admin@OmniTik] > /ip export compact

apr/09/2012 18:33:29 by RouterOS 5.14

software id = D2T7-SP88

/ip address
add address=192.168.59.103/24 interface=ether1-master-local
add address=10.0.1.1/28 interface=wlan1
/ip dns
set max-udp-packet-size=512 servers=192.168.1.254
/ip route
add distance=1 gateway=192.168.59.254
/ip service
set winbox address=192.168.59.0/24
[admin@OmniTik] > /mpls export compact

apr/09/2012 18:33:36 by RouterOS 5.14

software id = D2T7-SP88

/mpls ldp
set enabled=yes lsr-id=10.0.1.1 transport-address=10.0.1.1
/mpls ldp interface
add interface=wlan1
[admin@OmniTik] > /interface export compact

apr/09/2012 18:33:43 by RouterOS 5.14

software id = D2T7-SP88

/interface bridge
add admin-mac=XX:XX:XX:XX:62:81 auto-mac=no l2mtu=1500 name=bridge-local priority=0x8080 protocol-mode=rstp
/interface wireless
set 0 band=5ghz-onlyn disabled=no frequency=5805 ht-rxchains=0,1 ht-txchains=0,1 l2mtu=2290
mac-address=XX:XX:XX:XX:62:85 mode=ap-bridge nv2-preshared-key=1234
JnM wireless-protocol=any
/interface ethernet
set 0 name=ether1-master-local
set 1 name=ether2-master-local
set 2 master-port=ether2-master-local name=ether3-slave-local
set 3 master-port=ether2-master-local name=ether4-slave-local
set 4 master-port=ether2-master-local name=ether5-slave-local
/interface vpls
add disabled=no l2mtu=1500 mac-address=XX:XX:XX:XX:1F:7D name=M11 remote-peer=10.0.1.3 vpls-id=2:2
add disabled=no l2mtu=1500 mac-address=XX:XX:XX:XX:A9:28 name=KD55 remote-peer=10.0.1.4 vpls-id=3:3
add disabled=no l2mtu=1500 mac-address=XX:XX:XX:XX:F8:DD name=SKLV remote-peer=10.0.1.2 vpls-id=1:1
/interface wireless security-profiles
set [ find default=yes ] group-ciphers="" supplicant-identity=MikroTik unicast-ciphers=""
/interface bridge port
add bridge=bridge-local interface=wlan1
add bridge=bridge-local interface=ether2-master-local
add bridge=bridge-local interface=ether1-master-local
add bridge=bridge-local interface=KD55
add bridge=bridge-local interface=M11
add bridge=bridge-local interface=SKLV

4

Why do you put the wlan1 interface into the bridge on the omnitik?
Remove it!

IP-addresses must be set on the bridge, not on interface inside the bridge.
Change the IP on the omnitik to belong to the bridge!

Think this helps :slight_smile:

5

Already done. And…

:laughing: works
previous i seen this misconfig but i can’t remove it so easily

i love export compact :smiley:

Thank you man!

6

Glad to help!