Thank You for direction. It was incorrect. I did think something was wrong with the ping time, it was also incorrect.
I believe its fixed. Working for one day with no issue...
Thank you for the alternative suggestion, but if I did that I would learn less...
@Sob by using DHCP client "add address=<internal address>/<mask> interface=<internal interface (bridge)>" was done automatically. Is this correct ?
General question: I have set-up static ip addresses in the DHCP server & they work as expected.
When a device requests a static ip (that it is free) it gets it & works as expected.
However it does not display this static ip in the DHCP server / Leases. Is it possible to display them here (they appear under Torch).
hapac2 -
Code: Select all
# jun/17/2019 14:23:23 by RouterOS 6.44.3
# software id = QHJT-8N12
#
# model = RBD52G-5HacD2HnD
# serial number = B4A00A0DD983
/interface bridge
add name=BridgeAllExceptSXTP1
/interface wireless
set [ find default-name=wlan1 ] antenna-gain=3 band=2ghz-b/g/n country=\
ireland disabled=no frequency-mode=regulatory-domain mode=ap-bridge ssid=\
MikroTik24
set [ find default-name=wlan2 ] antenna-gain=3 band=5ghz-a/n/ac country=\
ireland disabled=no frequency-mode=regulatory-domain mode=ap-bridge ssid=\
MikroTik50
/interface list
add name=WAN
add name=LAN
/interface wireless security-profiles
set [ find default=yes ] authentication-types=wpa2-psk eap-methods="" mode=\
dynamic-keys supplicant-identity=MikroTik wpa2-pre-shared-key=Adelya1234
/ip hotspot profile
set [ find default=yes ] html-directory=flash/hotspot
/ip pool
add name=dhcp ranges=192.168.3.2-192.168.3.100
/ip dhcp-server
add address-pool=dhcp disabled=no interface=BridgeAllExceptSXTP1 name=Mydhcp
/interface bridge port
add bridge=BridgeAllExceptSXTP1 interface=ether2
add bridge=BridgeAllExceptSXTP1 interface=ether3
add bridge=BridgeAllExceptSXTP1 interface=ether4
add bridge=BridgeAllExceptSXTP1 interface=ether5
add bridge=BridgeAllExceptSXTP1 interface=wlan1
add bridge=BridgeAllExceptSXTP1 interface=wlan2
/interface list member
add interface=ether1 list=WAN
add interface=BridgeAllExceptSXTP1 list=LAN
/ip address
add address=192.168.3.1/24 interface=BridgeAllExceptSXTP1 network=192.168.3.0
/ip dhcp-client
add dhcp-options=hostname,clientid disabled=no interface=ether1
/ip dhcp-server lease
add address=192.168.3.2 client-id=N300A-IP mac-address=7C:2F:80:FC:FE:98 \
server=Mydhcp
add address=192.168.3.16 client-id=1:38:2d:e8:b7:64:22 comment=Adelyas_Tablet \
mac-address=38:2D:E8:B7:64:22 server=Mydhcp
add address=192.168.3.15 client-id=1:48:88:ca:49:6f:4e comment=MJTablet \
mac-address=48:88:CA:49:6F:4E server=Mydhcp
add address=192.168.3.17 comment=gerry-Latitude-E5430-non-vPro mac-address=\
3C:A9:F4:4C:23:4C server=Mydhcp
add address=192.168.3.18 client-id=1:b8:81:98:ac:bb:c9 comment=\
Gerry_Adelya-HP mac-address=B8:81:98:AC:BB:C9 server=Mydhcp
add address=192.168.3.20 client-id=1:54:27:1e:4b:7:a4 comment=htpc \
mac-address=54:27:1E:4B:07:A4 server=Mydhcp
/ip dhcp-server network
add address=192.168.3.0/24 dns-server=192.168.3.19 gateway=192.168.3.1
/ip dns
set allow-remote-requests=yes servers=192.168.3.19
/ip dns static
add address=192.168.3.1 name=router.lan
/ip firewall filter
add action=accept chain=input protocol=icmp
add action=accept chain=input connection-state=established
add action=accept chain=input connection-state=related
add action=drop chain=input in-interface-list=!LAN
/ip firewall nat
add action=masquerade chain=srcnat disabled=yes out-interface=ether1 \
out-interface-list=all
/system clock
set time-zone-name=Europe/Dublin
/tool mac-server
set allowed-interface-list=LAN
/tool mac-server mac-winbox
set allowed-interface-list=LAN
SXT Lte
Code: Select all
# jun/17/2019 14:24:43 by RouterOS 6.42.1
# software id = Z1Q2-GX3Z
#
# model = RBSXTR
# serial number = 99850980033F
/interface lte
set [ find ] band=20 mac-address=AC:FF:FF:00:00:00 name=lte1
/interface bridge
add admin-mac=B8:69:F4:01:34:19 auto-mac=no comment=defconf name=bridge
/interface list
add comment=defconf name=WAN
add comment=defconf name=LAN
/interface lte apn
set [ find default=yes ] apn=hs.vodafone.ie
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/ip hotspot profile
set [ find default=yes ] html-directory=flash/hotspot
/ip pool
add name=dhcp ranges=192.168.88.10-192.168.88.254
/ip dhcp-server
add address-pool=dhcp disabled=no interface=bridge lease-time=30m name=\
defconf
/interface bridge port
add bridge=bridge comment=defconf interface=ether1
add bridge=bridge comment=defconf interface=ether2
/interface list member
add comment=defconf interface=bridge list=LAN
add comment=defconf interface=lte1 list=WAN
/ip address
add address=192.168.88.1/24 comment=defconf interface=ether1 network=\
192.168.88.0
/ip dhcp-server lease
add address=192.168.88.250 client-id=1:60:a4:4c:6c:b:b1 mac-address=\
60:A4:4C:6C:0B:B1 server=defconf
add address=192.168.88.100 client-id=1:74:4d:28:41:ca:49 mac-address=\
74:4D:28:41:CA:49 server=defconf
/ip dhcp-server network
add address=192.168.88.0/24 comment=defconf gateway=192.168.88.1 netmask=24
/ip dns
set allow-remote-requests=yes
/ip dns static
add address=192.168.88.1 name=router.lan
/ip firewall address-list
add address=0.0.0.0/8 comment="Self-Identification [RFC 3330]" list=Bogons
add address=10.0.0.0/8 comment="Private[RFC 1918] - CLASS A # Check if you nee\
d this subnet before enable it" list=Bogons
add address=127.0.0.0/8 comment="Loopback [RFC 3330]" list=Bogons
add address=169.254.0.0/16 comment="Link Local [RFC 3330]" list=Bogons
add address=172.16.0.0/12 comment="Private[RFC 1918] - CLASS B # Check if you \
need this subnet before enable it" list=Bogons
add address=192.0.2.0/24 comment="Reserved - IANA - TestNet1" list=Bogons
add address=192.88.99.0/24 comment="6to4 Relay Anycast [RFC 3068]" list=\
Bogons
add address=198.18.0.0/15 comment="NIDB Testing" list=Bogons
add address=198.51.100.0/24 comment="Reserved - IANA - TestNet2" list=Bogons
add address=203.0.113.0/24 comment="Reserved - IANA - TestNet3" list=Bogons
add address=224.0.0.0/4 comment=\
"MC, Class D, IANA # Check if you need this subnet before enable it" \
list=Bogons
add address=192.168.2.16 comment="tablets list" list=tablets
add address=192.168.2.15 list=tablets
add address=192.168.3.15 list=tablets
add address=192.168.3.16 list=tablets
/ip firewall filter
add action=accept chain=forward comment="defconf: accept in ipsec policy" \
ipsec-policy=in,ipsec
add action=accept chain=forward comment="defconf: accept out ipsec policy" \
ipsec-policy=out,ipsec
add action=fasttrack-connection chain=forward comment="defconf: fasttrack" \
connection-state=established,related
# inactive time
add action=reject chain=forward comment="tablet restriction morning" \
connection-state=established,new fragment=no reject-with=\
icmp-host-unreachable src-address-list=tablets time=\
10h-13h30m,sun,mon,tue,wed,thu,fri,sat
# inactive time
add action=reject chain=forward comment="tablet restriction evening" \
connection-state=established,new reject-with=icmp-host-unreachable \
src-address-list=tablets time=15h5m-17h,sun,mon,tue,wed,thu,fri,sat
# inactive time
add action=reject chain=forward comment=\
"tablet restriction remove for Adelya to call Russia !" connection-state=\
established,new reject-with=icmp-host-unreachable src-address-list=\
tablets time=17h15m-19h15m,sun,mon,tue,wed,thu,fri,sat
# inactive time
add action=reject chain=forward comment="tablet restriction night" \
connection-state=established,new dst-address-type="" hotspot="" \
reject-with=icmp-host-unreachable src-address-list=tablets time=\
20h5m-23h15m,sun,mon,tue,wed,thu,fri,sat
add action=accept chain=forward comment=\
"defconf: accept established,related, untracked" connection-state=\
established,related,untracked
add action=drop chain=forward comment="defconf: drop invalid" \
connection-state=invalid
add action=drop chain=forward comment=\
"defconf: drop all from WAN not DSTNATed" connection-nat-state=!dstnat \
connection-state=new in-interface-list=WAN
add action=accept chain=input protocol=icmp
add action=accept chain=input connection-state=established
add action=accept chain=input connection-state=related
add action=drop chain=forward comment="Drop to bogon list" dst-address-list=\
Bogons
add action=drop chain=input in-interface-list=!LAN
/ip firewall nat
add action=masquerade chain=srcnat comment="###NAT for 192.168.2.0/24###" \
src-address=192.168.2.0/24
add action=masquerade chain=srcnat comment="### NAT for 192.168.3.0/24 ###" \
src-address=192.168.3.0/24
add action=masquerade chain=srcnat comment="defconf: masquerade" \
ipsec-policy=out,none out-interface-list=WAN
/ip route
add check-gateway=ping comment=tomato distance=1 dst-address=192.168.2.0/24 \
gateway=192.168.88.250
add check-gateway=ping comment="hap ac2" distance=1 dst-address=\
192.168.3.0/24 gateway=192.168.88.100
/snmp
set trap-interfaces=all
/system clock
set time-zone-name=Europe/Dublin
/system ntp client
set enabled=yes primary-ntp=89.234.64.77 secondary-ntp=193.1.12.167
/system routerboard settings
set silent-boot=no
/tool graphing interface
add interface=lte1
/tool mac-server
set allowed-interface-list=LAN
/tool mac-server mac-winbox
set allowed-interface-list=LAN
/tool sms
set port=lte1 receive-enabled=yes