I am testing OpenDNS now for filtering sites but I have some questions(after reading on the forum).
I’m running MT 2.9.x. Tested with some different configurations but im not able so see exactly which one is correct, since OpenDNS need some time to put the information on their servers. So i’m looking to set up in the good way.
At the moment this is my config. Rules
ip web-proxy set enabled=yes src-address=0.0.0.0 port=8080 hostname=“" transparent-proxy=yes
parent-proxy=0.0.0.0:0 cache-administrator="”
max-object-size=4096KiB cache-drive=secondary-master max-cache-size=unlimited
max-ram-cache-size=none
ip firewall filter add chain=input in-interface=***(ISP) protocol=tcp dst-port=8080 action=drop
comment=“prevent using web-proxy as open proxy” disabled=no
ip firewall nat add chain=dstnat dst-address=!192.168.0.254 protocol=tcp dst-port=80 action=redirect
to-ports=8080 comment=“redirect http traffic from port 80 to 8080” disabled=no
ip dns set primary-dns=ISP Prim. secondary-dns=ISP Sec. allow-remote-requests=no
cache-size=2048KiB cache-max-ttl=1w
Will OpenDNS work with ip web-proxy enabled redirecting http traffic from port 80 to 8080 and preventing it to be used from outside and default ISP DNS’s, only by redirecting port 53 to OpenDNS? If it does work show me the way please! The same if it doesn’t
Also I suppose the surfing speed will decrease,the firsts packet will arrive after 1ms(router)+120ms(to OpenDNS)+120ms(back to router)+1ms(client) since the client will first request something on my router > redirect DNS to OpenDNS(filter) > back to my router > client. Will the speed decrease, i am right at those calculations !?
Well i will figure out myself when i upgrade, i wouldn’t have been creating this thread if i had upgrated. I want it to set up on this version. Thanks anyway . Anyone better help!
it iss not illegal , a friend of mine installed it about 2 years ago, lvl 4 license, upgrated later to lvl6. And im already sure that there is no difference on versions 2.9.x about proxy(only the new proxy package).
I don’t really understand what you’re trying to do with the proxy.. but if you’re trying to use OpenDNS, just set your 2 dns servers to 208.67.222.222 and 208.67.220.220 then allow that to be assigned to users via dhcp.
Yes i supposed that should work just like that, but wanted to be sure if i have configured it right. Thanks
I now have set Primary DNS my ISP’s primary and Secondary DNS OpenDNS 208.67.222.222.
But one question still remains: is this supposed to make a delay on dns requests?
Have to wonder why you would upgrade to 2.9.51 but wait a month to 3.11. It’s not like there is any added cost. Oops, you would have a legal license to know that :-p
no you misunderstood me, i didn’t have what for to upgrade to latest 2.9.x, since i was happy with the config i had, but since u wanted me to upgrade (unbelievers ) i did it to you believe me(what for , do i really need it haha), nau do u want some screens or anything or what the heck. And yes that is not an new license, i can not upgrade to version 3, but i meant i was going to buy a new license (from local reseller Negenet) .
And one other thing, i HAVE solved OpenDNS setup(what i requested in this thread) OK. And btw in the moment i was writing this u had 1111 posts, take care my friend, that can be an unlucky number haahha .
And you have a problem with your trust . And yes, my bad, i don’t really know if the license I’ve got is legal, since i didn’t install it, but in the mean time it is an old license(mentioned above) and back there 2-3 years ago there we’re time restriction for upgrading your ROS, and now licenses allow you to upgrade to latest of your version. And I guess that license is purchased when the change was made and that’s why I’m able to upgrade only to latest 2.9.x. Or It could be that this a real fake license, don’t really know now, you confused me. Tha’s it. But I have a license just standing there on my MT.com(yeah you can really check this) profile and I will upgrade it soon.
Not really an ISP. Mostly software development and network administration. Most (may be all) of our sites use MT equipment. We do some wireless point to point for clients that can use it. Mostly ridding the world of $500 a month T1 lines.
n2m - A screenshot and a nod from Normis would go a long way.
there are very simple ways how to get a free, legal license. Also, RouterOS is something you use in networks, not at home for your own pleasure. I can’t see how a company can’t afford 45$ for a router. And it saves you time and money that you spend looking for help.
, planning to switch to version 3, 3.11(latest) exactly in a month or so!
. Anyone better help!
, a friend of mine installed it about 2 years ago, lvl 4 license, upgrated later to lvl6. And im already sure that there is no difference on versions 2.9.x about proxy(only the new proxy package).
) i did it to you believe me(what for