Re: [Mikrotik Users] CCR-10368G-2S+ problems

2019-03-19 Thread Jesse DuPont via Mikrotik-users 

  
  
Those also have a serial port (8,1,n,115200) - that will give you
visibility and configurability about how you want it to boot.


  
  
  
  
  
  
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 3/19/19 12:51 PM, Leon Zetekoff via
  Mikrotik-users wrote:


  
  forgot about the reset button thing will have to try later. No
VM on this bare metal.
  thanks I'll give it a try later leon
  
  On 3/19/2019 2:42 PM, C D Tavares
wrote:
  
  

It can be a bear setting up netinstall to work the first time,
especially if you use a VM.  Also, if you're unaware that for
some reason the CCR series runs netinstall on the last port,
instead of the first port like every other MikroTik product.


Netinstall only works if you power up the unit
  while holding the reset button down for about 20+ seconds
  until the blinky light goes out.  If port 8 is pulling DHCP,
  it's not in the correct startup state.  And if it's looking
  for DHCP, it's no wonder it doesn't want to talk to your
  laptop, as your laptop doesn't offer any.
  

  On Mar 19, 2019, at 11:18 AM, Leon Zetekoff
via Mikrotik-users 
wrote:
  
  


  Hi Joe
  I spent a few hours tackling Netinstall
and I can not get it to work. If I connect ether8 to
the network it pulls a DHCP but if I connect ether8
to my laptop through a cross-over cable nothing
happens. I turned off AVG protection as well as the
default windows firewall. If I let the router boot,
I can ping ether8 from the laptop using the x-over
cable and ether8 set to 10Mbps. The laptop can be
set to Auto OR 10M fixed.
  Netinstall never sees the bootp request
and the netinstall gui only shows disk drives.
  ANy ideas?
  Thanks leon
  On 3/19/2019 11:34 AM,
Joe Novak wrote:
  
  

CCR support was added in 6.x
  if I'm not mistaken. The bootloader version may
  have 3.09, though. 
  
  
  Assuming you've netinstalled the
OS... I'm not sure there is much else to do. You
can try to swap in the ram from a known good
router, same with power supply. But that is more
or less the extent of troubleshooting I think
you can do.



  On Tue, Mar 19,
2019 at 10:21 AM Leon Zetekoff via
Mikrotik-users 
wrote:
  
  Hi
Folksthis device was given to us a number of
years ago and it had 
3.09 on it I believe. We eventually upgraded it
to 6.41.rc9 I think it 
was and started to act flooey. Put it on shelf
since no time to deal 
with it. Resurrected it again and i manually
upgraded it to 6.42.12. 
Whats going on is the ethernet ports only show
10Mbps, auto or anything 
other than 10M doesnt work. ALso only seems I
can only talk to my 
laptop. Mikrotik (and I) believe its a hardware
issue and of course out 
of warranty.

Anyone else seen this before and any way to
resolve it other than 
tossing it in the trash bin?

Thanks leon


---
This email has been checked for viruses by AVG.
https://www.avg.com

___

Re: [Mikrotik Users] OSPF "locking up" between routers

2018-10-30 Thread Jesse Dupont via Mikrotik-users 
I would make sure spanning tree is off on the 750 sw bridge and go ahead and 
turn off Multicast Enhancement on the APs (leave Multicast Allowed as enabled).

Sent from my iPhone

> On Oct 30, 2018, at 12:52 PM, Josh Luthman  
> wrote:
> 
> Multicast Data is allowed and Multicast Enhancement is Enabled on the AP.  
> The STA Multicast Data is allowed by there is no option for Multicast 
> Enhancement.  Should I disable the enhancement on the AP only?  I assume I 
> have to enable Multicast on these links.  (FYI one is 5 GHz the other is 3.65 
> GHz - 802.11n "M" gear).
> 
> There is an RB750 switch (software bridge).  L2 MTU 1598.
> 
> 
> Josh Luthman
> Office: 937-552-2340
> Direct: 937-552-2343
> 1100 Wayne St
> Suite 1337
> Troy, OH 45373
> 
>> On Tue, Oct 30, 2018 at 2:31 PM, Jesse Dupont via Mikrotik-users 
>>  wrote:
>> I think it’s an LSA flooding issue, especially since it works for a while 
>> then stops, then comes back. Disabling the instance as you do to fix it 
>> makes the whole adjacency start over which starts with new LSAs.
>> Using a “broadcast” network type doesn’t use broadcasts to establish the 
>> adjacencies, it still uses multicast. It just allows for the election of the 
>> DR/BDR and more than two endpoints compared to Point-to-point network type. 
>> Anyway, it’s not the issue.
>> Have you tried disabling (or enabling if it’s currently disabled) Multicast 
>> Enhancement on the two UBNT links? Is there a switch between the two UBNT 
>> links in the middle?
>> 
>> Sent from my iPhone
>> 
>>> On Oct 30, 2018, at 11:50 AM, Josh Luthman via Mikrotik-users 
>>>  wrote:
>>> 
>>> In your case did you use a "hidden non used" /30 to build the eoip and then 
>>> put your good IPs on top of the eoip?
>>> 
>>> 
>>> Josh Luthman
>>> Office: 937-552-2340
>>> Direct: 937-552-2343
>>> 1100 Wayne St
>>> Suite 1337
>>> Troy, OH 45373
>>> 
>>>> On Tue, Oct 30, 2018 at 1:43 PM, Adam R Johnson  
>>>> wrote:
>>>> Ours was/is a /29.
>>>> 
>>>> 
>>>>
>>>> ADAM JOHNSON — PRESIDENT
>>>> (815) 304-6008 | ajohn...@thewisp.net
>>>> PO BOX 460 TAMPICO,IL 61283
>>>> WWW.THEWISP.NET |  
>>>> 
>>>> 
>>>> 
>>>>> On Tue, Oct 30, 2018 at 10:36 AM Josh Luthman via Mikrotik-users 
>>>>>  wrote:
>>>>> Between the two routers it's a /30
>>>>> 
>>>>> Interesting thing to note...it came back up on its own over lunch.  About 
>>>>> 11 hours of it not working (see the log previously posted).
>>>>> 
>>>>> 
>>>>> Josh Luthman
>>>>> Office: 937-552-2340
>>>>> Direct: 937-552-2343
>>>>> 1100 Wayne St
>>>>> Suite 1337
>>>>> Troy, OH 45373
>>>>> 
>>>>>> On Tue, Oct 30, 2018 at 1:27 PM, Robert Andrews via Mikrotik-users 
>>>>>>  wrote:
>>>>>> So this brings up a question that we ran into, what are the netmasks 
>>>>>> around these links?
>>>>>> 
>>>>>> On 10/30/2018 10:14 AM, Adam R Johnson via Mikrotik-users wrote:
>>>>>> > Hey Josh,
>>>>>> > 
>>>>>> > Just throwing in my 2 cents here. We have a very similar situation. 
>>>>>> > What 
>>>>>> > was once a powercode bmu, is now a rb3011 connected to an AF24<>AF24 
>>>>>> > then another rb3011. The 3011s will not complete adjacency, where the 
>>>>>> > bmu and 3011 did originally. Our OSPF setup is PtP in these scenarios. 
>>>>>> > We have this setup in 2 separate locations on our network, and each 
>>>>>> > has 
>>>>>> > the same problem. Our 'stab in the dark' fix was adding a secondary 
>>>>>> > and 
>>>>>> > temporary 192.168.x.x/24 on the segment, and it created adjacency and 
>>>>>> > ran without error. We did the same for the second instance with the 
>>>>>> > same 
>>>>>> > result.
>>>>>> > 
>>>>>> > We revisited the issue, to try to resolve a week or so later, but was 
>>>>>> > unable to find the cause or solution in the time we had. Given that it 
>>>>>> > was working without error, albeit slight

Re: [Mikrotik Users] OSPF "locking up" between routers

2018-10-30 Thread Jesse Dupont via Mikrotik-users 
I think it’s an LSA flooding issue, especially since it works for a while then 
stops, then comes back. Disabling the instance as you do to fix it makes the 
whole adjacency start over which starts with new LSAs.
Using a “broadcast” network type doesn’t use broadcasts to establish the 
adjacencies, it still uses multicast. It just allows for the election of the 
DR/BDR and more than two endpoints compared to Point-to-point network type. 
Anyway, it’s not the issue.
Have you tried disabling (or enabling if it’s currently disabled) Multicast 
Enhancement on the two UBNT links? Is there a switch between the two UBNT links 
in the middle?

Sent from my iPhone

> On Oct 30, 2018, at 11:50 AM, Josh Luthman via Mikrotik-users 
>  wrote:
> 
> In your case did you use a "hidden non used" /30 to build the eoip and then 
> put your good IPs on top of the eoip?
> 
> 
> Josh Luthman
> Office: 937-552-2340
> Direct: 937-552-2343
> 1100 Wayne St
> Suite 1337
> Troy, OH 45373
> 
>> On Tue, Oct 30, 2018 at 1:43 PM, Adam R Johnson  wrote:
>> Ours was/is a /29.
>> 
>> 
>>  
>> ADAM JOHNSON — PRESIDENT
>> (815) 304-6008 | ajohn...@thewisp.net
>> PO BOX 460 TAMPICO,IL 61283
>> WWW.THEWISP.NET |  
>> 
>> 
>> 
>>> On Tue, Oct 30, 2018 at 10:36 AM Josh Luthman via Mikrotik-users 
>>>  wrote:
>>> Between the two routers it's a /30
>>> 
>>> Interesting thing to note...it came back up on its own over lunch.  About 
>>> 11 hours of it not working (see the log previously posted).
>>> 
>>> 
>>> Josh Luthman
>>> Office: 937-552-2340
>>> Direct: 937-552-2343
>>> 1100 Wayne St
>>> Suite 1337
>>> Troy, OH 45373
>>> 
 On Tue, Oct 30, 2018 at 1:27 PM, Robert Andrews via Mikrotik-users 
  wrote:
 So this brings up a question that we ran into, what are the netmasks 
 around these links?
 
 On 10/30/2018 10:14 AM, Adam R Johnson via Mikrotik-users wrote:
 > Hey Josh,
 > 
 > Just throwing in my 2 cents here. We have a very similar situation. What 
 > was once a powercode bmu, is now a rb3011 connected to an AF24<>AF24 
 > then another rb3011. The 3011s will not complete adjacency, where the 
 > bmu and 3011 did originally. Our OSPF setup is PtP in these scenarios. 
 > We have this setup in 2 separate locations on our network, and each has 
 > the same problem. Our 'stab in the dark' fix was adding a secondary and 
 > temporary 192.168.x.x/24 on the segment, and it created adjacency and 
 > ran without error. We did the same for the second instance with the same 
 > result.
 > 
 > We revisited the issue, to try to resolve a week or so later, but was 
 > unable to find the cause or solution in the time we had. Given that it 
 > was working without error, albeit slightly messy, we have left it in 
 > place with more important things to tackle. It has been like this for 
 > about 8 months now.
 > 
 > Im not necessarily advocating this as a fix, but it is a workaround that 
 > may provide further information to lead to the issues cause, and imho is 
 > a bit nicer than an EoIP tunnel.
 > 
 > Cheers!
 >   
 > *ADAM JOHNSON — PRESIDENT*
 > (815) 304-6008 | ajohn...@thewisp.net 
 > PO BOX 460 TAMPICO,IL 61283
 > *WWW.THEWISP.NET | * 
 >  
 > 
 > 
 > 
 > 
 > On Tue, Oct 30, 2018 at 8:37 AM Josh Luthman via Mikrotik-users 
 > mailto:mikrotik-users@wispa.org>> wrote:
 > 
 > CCR goes through two Ubnt wireless links before hitting the RB750.
 > 
 > On the CCR1009 it is ether4 - not a combo port, not switched.
 > 
 > 
 > Josh Luthman
 > Office: 937-552-2340
 > Direct: 937-552-2343
 > 1100 Wayne St
 > Suite 1337
 > Troy, OH 45373
 > 
 > On Tue, Oct 30, 2018 at 11:33 AM, Scott >>> > > wrote:
 > 
 > On 2018/10/30 09:24, Josh Luthman wrote:
 > 
 > There are two Ubnt backhauls between them.
 > 
 > 
 > With recent firmware it shouldn't be a big deal to run
 > broadcast.  I always run Point-to-point over wireless links with
 > exactly two endpoints.  A lot of that is leftover from when most
 > 802.11 based wireless links had issues with broadcast.
 > 
 > What connects the two backhauls?  Crossover cable?  Switch,
 > smart or dumb, brand?
 > 
 > Which interface are you using on the 1009?  Is it a combo port? 
 > Is it in the switch group?
 > 
 > 
 > 
 > 
 > -- 
 > Scott Lambert  KC5MLE Unix
 > SysAdmin
 > lamb...@lambertfam.org 
 > 
 > 
 >

Re: [Mikrotik Users] Detecting Virus/Malware

2018-06-18 Thread Jesse DuPont via Mikrotik-users 
There is generally a script or two, sometimes they're scheduled. The API 
and API-SSL services might have an IP block set to them. Services you 
had disabled might be enabled now. There might be a RADIUS server setup 
and in System-Users, on the AAA button, use RADIUS could be checked for 
login to authenticate non-local accounts to access the router. There 
could also be SSH or SSH Private Keys installed. Logging might be 
changed from the default (specifically, to not show API or login entries).

On 6/18/18 2:52 PM, Scott Reed via Mikrotik-users wrote:
> While we are getting everything on a network upgraded to avert the
> infection threat on RouterOS, is there anything we can see to know that
> the device is infected?
>

___
Mikrotik-users mailing list
Mikrotik-users@wispa.org
http://lists.wispa.org/mailman/listinfo/mikrotik-users

Re: [Mikrotik Users] Am I just blind?

2017-07-11 Thread Jesse Dupont via Mikrotik-users 
The PacketFlux SiteMonitor2 has a 5-port remotely operable, DIN mounted PDU you 
can run D.C. Through. They also have an 8 port gig midspan PoE with each port 
remotely operable.


From: mikrotik-users-boun...@wispa.org  on 
behalf of Nick Bright via Mikrotik-users 
Sent: Tuesday, July 11, 2017 11:32:16 AM
To: mikrotik-users@wispa.org
Subject: Re: [Mikrotik Users] Am I just blind?

I like the wifi-texas stuff, I've had good results with it; though I do wish 
they had a model with remote control on/off per-port (or per-bank even).

Selectable voltage per-bank would be nice too, but with complexity comes 
possibility of failures.

I tried Netonix and have been very dis-satisfied with them.

On 7/1/2017 3:28 PM, Grand Avenue Broadband via Mikrotik-users wrote:
These aren't switches.  They're power injectors in manifold format.

On Jul 1, 2017, at 1:24 PM, Tim 
> 
wrote:

Would never buy one.  Loose the switch you loose everything.  Do dc power 
separate from Ethernet.
We lost an 8 port switch but use separate Poe.  With redundant wireless links 
we were recovered in 30 minutes.

Had new switch in play next AM.

Poe switch is a bad idea.

MT doesn't make that.  While you're waiting, you can try these:

https://find-a-poe.com

--
  Grand Avenue Broadband -- Wireless Internet Service
 Circle City to Wickenburg and surrounding areas
  http://grandavebb.com




___
Mikrotik-users mailing list
Mikrotik-users@wispa.org
http://lists.wispa.org/mailman/listinfo/mikrotik-users



--
---
-  Nick Bright-
-  Vice President of Technology   -
-  Valnet -=- We Connect You -=-  -
-  Tel 888-332-1616 x 315 / Fax 620-331-0789  -
-  Web http://www.valnet.net/ -
---
- Are your files safe?-
- Valnet Vault - Secure Cloud Backup  -
- More information & 30 day free trial at -
- http://www.valnet.net/services/valnet-vault -
---

This email message and any attachments are intended solely for the use of the 
addressees hereof. This message and any attachments may contain information 
that is confidential, privileged and exempt from disclosure under applicable 
law. If you are not the intended recipient of this message, you are prohibited 
from reading, disclosing, reproducing, distributing, disseminating or otherwise 
using this transmission. If you have received this message in error, please 
promptly notify the sender by reply E-mail and immediately delete this message 
from your system.
___
Mikrotik-users mailing list
Mikrotik-users@wispa.org
http://lists.wispa.org/mailman/listinfo/mikrotik-users

Re: [Mikrotik Users] System/Health - temperature accuracy / bad sensors

2017-06-28 Thread Jesse Dupont via Mikrotik-users 
I think that's CPU temp?


From: mikrotik-users-boun...@wispa.org  on 
behalf of Nick Bright via Mikrotik-users 
Sent: Wednesday, June 28, 2017 7:09:49 PM
To: mikrotik-users@wispa.org
Subject: [Mikrotik Users] System/Health - temperature accuracy / bad sensors

How accurate is the temperature indicated, for routerboards which have
temperature sensors?

How common are bad sensors? Could accuracy vary by model?

I have an RB750UP reading 76C and it seems like that must be an
inaccurate reading or bad sensor, or the device would have failed.

--
---
-  Nick Bright-
-  Vice President of Technology   -
-  Valnet -=- We Connect You -=-  -
-  Tel 888-332-1616 x 315 / Fax 620-331-0789  -
-  Web http://www.valnet.net/ -
---
- Are your files safe?-
- Valnet Vault - Secure Cloud Backup  -
- More information & 30 day free trial at -
- http://www.valnet.net/services/valnet-vault -
---

This email message and any attachments are intended solely for the use of the 
addressees hereof. This message and any attachments may contain information 
that is confidential, privileged and exempt from disclosure under applicable 
law. If you are not the intended recipient of this message, you are prohibited 
from reading, disclosing, reproducing, distributing, disseminating or otherwise 
using this transmission. If you have received this message in error, please 
promptly notify the sender by reply E-mail and immediately delete this message 
from your system.

___
Mikrotik-users mailing list
Mikrotik-users@wispa.org
http://lists.wispa.org/mailman/listinfo/mikrotik-users
___
Mikrotik-users mailing list
Mikrotik-users@wispa.org
http://lists.wispa.org/mailman/listinfo/mikrotik-users

Re: [Mikrotik Users] PPTP/EOIP tunnels break until reboot

2017-05-30 Thread Jesse DuPont via Mikrotik-users 

  
  
I don't have any insight other than to say we've seen this
sometimes, too; primarily on CCR's.


  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont

  Network
  Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity
  Broadband LLC
Like us! facebook.com/celeritynetworksllc
  Like us! facebook.com/celeritybroadband
  

  

On 5/30/17 12:56 PM, Josh Luthman via
  Mikrotik-users wrote:


  Ever since I went from v5 to v6 I've had an issue
with a remote site not coming back up until the "server" is
rebooted.  I can see the EOIP tunnels are "not running" with the
lack of an R and the PPTP, while it will establish, does not
pass any traffic.


Disable/enable does not fix anything.  I've tried most if
  not all versions from 6.35 to 6.37.1.


Does anyone have any insight to this?  Anything beyond
  contact Mikrotik support?

  

  

  
  
  Josh Luthman
  Office: 937-552-2340
  Direct: 937-552-2343
  1100 Wayne St
  Suite 1337
  Troy, OH 45373
  

  

  
  
  
  
  ___
Mikrotik-users mailing list
Mikrotik-users@wispa.org
http://lists.wispa.org/mailman/listinfo/mikrotik-users



  

___
Mikrotik-users mailing list
Mikrotik-users@wispa.org
http://lists.wispa.org/mailman/listinfo/mikrotik-users

Re: [Mikrotik Users] High routing CPU load

2017-05-02 Thread Jesse DuPont via Mikrotik-users 

  
  
He did say it was only a single core, not all cores together, that
shows 100% continuously. It is most likely BGP.


  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont

  Network
  Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity
  Broadband LLC
Like us! facebook.com/celeritynetworksllc
  Like us! facebook.com/celeritybroadband
  

  

On 5/2/17 6:07 PM, Christian Palecek
  via Mikrotik-users wrote:


  
  Kevin, 
  We have 74 peers and 41 filters, and are above 1g a night at
peak time, we don't break 20%, Thats strictly all it does
though, but seems like something else may be wrong.
  
  
  
  
  
  
  
Sent from my
  Verizon, Samsung Galaxy smartphone
  
  
  
  
 Original message 
From: Kevin Sullivan via Mikrotik-users
   
Date: 5/2/17 4:44 PM (GMT-07:00) 
To: mikrotik-users@wispa.org 
Subject: [Mikrotik Users] High routing CPU load 


  
  
All,
 
We have  an edge router, CCR1072, that has
  a few 10g
  internet ports and a 10g connection back to the rest of the
  network. We're only
  passing ~1g at peak times currently, but the resources display
  shows 100% CPU
  on one of the cores continuously.  If we look at the load
  profiler, it
  says that "routing" is consuming 100% of that core. 
 
We have 31 BGP peers and 25 route filters
  on the router. I'm
  wondering what we can do to lessen or spread the load around a
  bit.
 
Thanks,
    Kevin
  
  
  
  
  
  ___
Mikrotik-users mailing list
Mikrotik-users@wispa.org
http://lists.wispa.org/mailman/listinfo/mikrotik-users



  

___
Mikrotik-users mailing list
Mikrotik-users@wispa.org
http://lists.wispa.org/mailman/listinfo/mikrotik-users

Re: [Mikrotik Users] Question about ospfV3

2017-01-03 Thread Jesse DuPont via Mikrotik-users 

  
  
I'm with Scott - seems like multicast is getting dropped one
direction.

IPv6 Input firewall maybe (on the end that doesn't show the
neighbor)?
Are the MTU's the same on both ends?
What does the MikroTik log show on both routers?

Did you torch the ifaces at both ends? Should see both the outgoing
multicast and the incoming, too (2 separate lines in torch).


  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont

  Network
  Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity
  Broadband LLC
Like us! facebook.com/celeritynetworksllc
  Like us! facebook.com/celeritybroadband
  

  

On 1/3/17 8:49 AM, Ethan E. Dee via
  Mikrotik-users wrote:


  I have two rb1100AHx2.

They are directly connected and ipv6 is on. They can both ping each 
other fine.

Setting up ospfv3, one shows it has a neighbor and neighbors shows the 
correct router ID.

The other shows no neighbor. And the two do not join routing tables.

No password is set.

I am scratching my head on this one.

Any thoughts?


SW version 6.37.1



--
This message has been scanned by E.F.A. Project and is believed to be clean.


___
Mikrotik-users mailing list
Mikrotik-users@wispa.org
http://lists.wispa.org/mailman/listinfo/mikrotik-users



  

___
Mikrotik-users mailing list
Mikrotik-users@wispa.org
http://lists.wispa.org/mailman/listinfo/mikrotik-users