OSPF MESH is crashes when quake(online) is started.
I have a small 15 MT router MESH network operating. the MESH is created with OSPF. The router are all RB532 w/ 2.9.12. The network crashes when a users starts quake3 online. Most of the router will reboot, and some will get disable and will not answer any attempts to comunication request until they are manually rebooted. All the RB532 have less than 1 month in service. I am on able to create a supout file. since that router get rebooted by itself. I set the watchdog to do a supout file automaticaly, but non comes out.
It is repordusable on any RB532. I desided to post this here as the support@mikrotik.com is not answering any of my questions for the past few weeks. Does anyone know what could be causeing this?
A user starts Quake3 and asks Quake3 to search for online servers, imideatly after that the MT RB532s start rebooting all over the network.
Please someone help me! For me this is an emergency, as my customer are shuting my network down. And I have no support.
I don’t know what is causing the problem, personally i’d like to know more about setting up the mesh network.
Which leads me to respond about sending mails to mikrotik I too havn’t heard back from them in quite some time. I just keep getting the message “contact my vendor that I bought it from” and well… I bought them directly from Mikrotik except for one of them. And they can’t offer any help at all other than “it’s a wireless router and go visit the website for instructions”
Michael, i do not know what to tell you, but so far support from mikrotik only has helped me in that past once. After I insisted quite a-bit. and it was realted to a PPPoE problem. But everthing releating to routing and sys crashes no resonse. Bad support.
I am setting today a lab with 4 RB532s to test the crashes. I will post the results here later.
Traffic that will forcebly reboot an RB532A with 2.9.12.
Only config in the RB532A:
Two ethernet ports configured with IPs.
One of the port to be used as a gateway to the internet .
The second port to connect to a PC running Quake3 with all the lates paches.
The reset of the config as default in the router. Start Quake3 and seach for online servers, and Router will reboot.
go into “ip firewall service-port” and disable quake3. Problem goes away.
From my point of view these are two errors:
The service-port is only used with NAT. In this router I have no NAT configure so Service-port should have effect on the packet.
No matter what a PC send to a router. the router should not crash.
So 2.9.12 has a huge BUG, one that can disable a whole Mikrotik based Network.
Unfortunetly OSPF is not reliable in 2.9.13, and I need OSPF. and 2.9.11 does not work with PPPoE and rate-limits. 2.9.14 was removed from the web site does to a big bug for RB532. Does anyone know a version that works? I need OSPF, BGP, PPPoE, DHCP, and RADIUS.
1st I can not make supout file, as the router just reboots, when ever I pass quake3 traffic throw it.
2nd, Network arquitecture, well maybe. But I can reprodues this crash with just one Mikrotik RB532 connected to a CISCO and using static routes and all public IPs. NO OSPF, BGP, PPPoE. Simple static routes.
I can disable the crash by removing the service-port for quake3 in firewall. And again I am NOT unsing NAT.
If you reset the config of an RB532 and add two IP addresses one looking at your gateway and the other looking at the PC with QUAKE. Add a defualt route to the GATEWAY. ADD a static route from your gateway to the IPs that your PC with QUAKE. and enable service-port Quake. run Quake3 look for online servers. The RB532 will crash!
Ok, i am interested, i want to see it with my own eyes - Queake3: The Network slayer
I don’t have Cisco, but have at least 5 spear Mikrotiks to use. What configuration do i need to make to repeat this bug by my self? Simple routing? Masquarade?
And what quake3 version are you using??? (maybe a torrent) And what i need to do in the game!
The network calls for about 25 more site with-in the net 3 months. I have stop construction until I get a fix to the RouterOS or I find a substitue to the routing problems.
I can disable the crash by removing the service-port for quake3 in firewall. And again I am NOT unsing NAT.
While maybe a bug, the service-ports are “helper applications” for NAT. Since you’re routing your network, these should not apply to your traffic. Seems that since you’re routing that they wouldn’t do anything but you can safely turn all of these off.
Do you have connection tracking enabled in the firewall? If so, have you tried without it enabled?[/quote]
Thank you for the suggestion. My network is now stable after I removed this services-ports. However this is a mayor undocumented but that could bring a network down. Just by playing a game.
Uldis, I hope that you found this bug and can document it for the rest that do not exptect a Mikrotik Router based network to be brought down by QUAKE3.
Does anyone have any ideas when 2.9.15 will come out?
I hope fixes for OSPF, BGP, PPPoE are working.
Did you have service-port for quake3 enabled. We found out that the crash happens when service-port is enable and in our case we where not NATing anything. Just Reset Config; add IP address looking at you gateway, and defult route; add IP address on a second interface for your PCw/QUAKE3; configure your PC so that it conects to the internet via the 2nd port. Once you can browse the internet. Open Quake3 and access the online server. Your RB532 will crash.
OSPF has nothing to do with the problem. In our case the router that was crashing was an important OSPF member of the mesh. So everytime someone would run QUAKE3 OSPF would suffer. And we linked OSPF with QUAKE3. But at the end of our search this was a problem with service-port in the firewall section. Apparently service-port is used for NATing when a server that is on the NATed side needs to work. For some unexplain reason the RouterOS is passing unNATed traffic to this feature.
Would someone from Mikrotik confirm this, so other do not run in to the same problem and disable the service-port for quake3!
service-ports are used only in NATed packets when inside of packet is addicional information ( besides src and dst address and port) about something that we need to change in order to get working configuration throught the NAT!
In PPTP case it is necessary to enable service port to get more than 1 PPTP connection from one NATed network!
Sorry, but I upgrated all my routers to 2.9.16 allready and i can not get Quake crash Even with your simple configuration…
Even with your simple configuration…