You don't by chance have the interface costs set to where multiple paths
have the same cost to the destination do you?
The TTL Exceeded and the extra hops you are seeing is because of a routing
loop - A mikrotik in the path is removing the route to that destination IP
address, but other routers st
y now,
Airnet
http://www.airnet.ca
Office Phone: 1-877-534-0021
Office Hours: 9:00am - 5:00pm EST
On 07/02/2013 10:27 AM, Robert Haas wrote:
> That is how I am configured now (with the exception of using MT for
> the AP's, but they are just bridging down to the core router). Where
>
"4g"
AirMAx speeds. We hit them all the time.
But we won't light up a repeater, without a MT450g, it's a must have.
You have a Good Day now,
Airnet
http://www.airnet.ca
Office Phone: 1-877-534-0021
Office Hours: 9:00am - 5:00pm EST
On 05/02/2013 1:08 PM, Robert Haas wrote:
Another vote for Rancid. I use to snarf the configs of all our HP and cisco
switches, Cisco & Routers. If you can script an expect script then you can
grab the configs of most any piece of equipment.
The nice thing is I have it pumped to CVSWeb, so that I can see config
diff's online.
-Orig
ill recommends
not using the same channel. I'd love to be able to use a full 2x2/40mhz in
the middle of the 2.4Ghz band on 3 (or more) sectors.
-Troy
> -Original Message-
> From: mikrotik-boun...@mail.butchevans.com [mailto:mikrotik-
> boun...@mail.butchevans.com] On Beh
7Mbps per customer or total through the AP?
On 2/4/2013 4:30 PM, Robert Haas wrote:
> We've been using Routerboards (433AH's as of late) with UBNT XR2's
> for our AP's for years. It's time to start migrating these AP's to
> something with more capacity.
We've been using Routerboards (433AH's as of late) with UBNT XR2's for our
AP's for years. It's time to start migrating these AP's to something with
more capacity.
With 10Mhz channels we find we are hitting a bottleneck of about 7Mb/s
before customers start complaining about slow speeds & high p
t out, and it never did it again. This was at least
>> a couple years ago, and the RB493 we saw this on was on ROS 3.30.
>>
>> I chalked it up to some kind of ROS bug.
>>
>> bp
>>
>>
>> On 8/29/2012 2:47 PM, Robert Haas wrote:
>>
>>&
Behalf Of Randy Cosby
Sent: Wednesday, August 29, 2012 5:01 PM
To: Mikrotik discussions
Subject: Re: [Mikrotik] Odd
Just a guess...
Did the pppoe sessions possibly come up BEFORE the Mikrotik device synced
time with an ntp server?
On 8/29/2012 3:47 PM, Robert Haas wrote:
> Anyone see this bef
Anyone see this before?
I got an alert that one of our core routers rebooted at 2am this morning,
but no alarms from any attached devices as being unreachable etc. Got up and
logged in and the uptime was 8 minutes or so.
This afternoon I had a chance to investigate the router more. The router has
I'm wondering if there is any recommendation for core router hardware that
is capable of handling 600-700 PPPoE sessions, 200 or so simple queues, 1600
OSPF routes and maybe 40-50 firewall rules, 20-30k pps.
Physically I'd like a minimum of 2 gige ports but don't need any more than
6.
I'm used
il.server.com protoc=tcp tcp-flags=syn
connection-limit=5,32 action=drop comment="5 connections per address for
mail server"
One or two of those arguments don't appear in the GUI, either the tcp-flag
or connection-limit, unless you type it in the CLI. Then it shows. At
least last
Is there a graceful way of limiting the number of TCP connection per hour
based upon source address? I'd like to limit the number of new tcp
connections to my mailserver.
After poking around a bit I found:
http://wiki.mikrotik.com/wiki/Bruteforce_login_prevention_(FTP_%26_SSH)
Utilizing the escalat
ik] Syslog
System->Logging
Actions tab
Double click 'Remote'
Define src address
On 10/5/2011 1:20 PM, Robert Haas wrote:
> Is it possible in MT to log syslog messages via a loopback IP rather than
> interface IP? IE I would like to define the source IP address for the
syslog
Is it possible in MT to log syslog messages via a loopback IP rather than
interface IP? IE I would like to define the source IP address for the syslog
messages being sent to the remote syslog server.
I am doing so now by defining src-nat rules on each router for every exiting
interface, just wonde
I can't answer you specific question. I just want to point out that both of
those cards are multi-mode SX (short range).
You may be aware already but be sure to check with your provider for both
the fiber type and the distance. It may be better to look for a card that
has an SFP port that way you
OOPS, I just saw where you said it may work without the burst. If that is
the case then the dictionary is not the issue.
The issue I was seeing here was that any account using Mikrotik-Rate-Limit
attribute would fail.
-Original Message-
From: mikrotik-boun...@mail.butchevans.com
[mailto:
When you upgraded did you make sure that the Mikrotik dictionary is still
being loaded? Sometimes during upgrades the config files are overwritten and
the Mikrotik dictionary is not always loaded by default.
DAMHIK.. Fought that one for HOURS..
-Original Message-
From: mikrotik-boun...@
. Or it least it did in 3.x and
earlier. I doubt that has changed.
On 1/20/2011 4:44 PM, Robert Haas wrote:
> I knew layer 7 could potentially be an issue, but I've been running
similar
> rules on the network for quite some time now on older machines. For some
> reason this combo of r
le
On 01/20/2011 02:38 PM, Robert Haas wrote:
> The layer 7 rule is still active and I'm back to 40-50% cpu load.
> I wouldn't have thought connection limiting would cause an issue, but
could
> it be a combination of the two - layer 7& connection limiting?
Layer 7 is certain
t x86 hardware? Run the rule for a few minute or two every
hour?
Josh Luthman
Office: 937-552-2340
Direct: 937-552-2343
1100 Wayne St
Suite 1337
Troy, OH 45373
On Thu, Jan 20, 2011 at 3:54 PM, Robert Haas
wrote:
> Well crap... There goes that plan then.. :/
>
> Any other suggestions I
: 937-552-2340
Direct: 937-552-2343
1100 Wayne St
Suite 1337
Troy, OH 45373
On Thu, Jan 20, 2011 at 3:38 PM, Robert Haas
wrote:
> The layer 7 rule is still active and I'm back to 40-50% cpu load.
> I wouldn't have thought connection limiting would cause an issue, but
could
> it
7 rule?
On 1/20/2011 3:20 PM, Robert Haas wrote:
> Is there any reason the following rules would cause 100% CPU usage?
>
> ---
>
> /ip firewall mangle
> add action=mark-connection chain=prerouting comment="Peer to Peer -
> Connection" disabled=no new-connecti
Of Josh Luthman
Sent: Thursday, January 20, 2011 2:25 PM
To: Mikrotik discussions
Subject: Re: [Mikrotik] p2p firewall rule
layer7-protocol=bittorrent
That part right there.
Josh Luthman
Office: 937-552-2340
Direct: 937-552-2343
1100 Wayne St
Suite 1337
Troy, OH 45373
On Thu, Jan 20, 2011 at 3:20 PM,
Is there any reason the following rules would cause 100% CPU usage?
---
/ip firewall mangle
add action=mark-connection chain=prerouting comment="Peer to Peer -
Connection" disabled=no new-connection-mark=P2P_CON p2p=all-p2p
passthrough=yes protocol=tcp
add action=mark-connection chain=prerouting
What was the issue initially?
I just turned up a new site with a using a Rocket M5 as a backhaul, also on
this tower is a canopy 900Mhz AP using timing from a lastmile gear CTM. As
soon as I A) Turn timing on the CTM to the 900AP and B) Bond the surge
suppressor on the rocket's Ethernet run (ALPU-
>The one question that I have not been able to figure out is whether an
>MT with PPPoE on the ethernet interface can have a regular IP bound to
>it as well that is not related to the PPPoE. If I can do that, I
>believe I can smoothly transition the customers over to the regular IP
>scheme. I
2/2010 11:13 AM, Robert Haas wrote:
> Anyone have any of these deployed? We have had two customers now trying to
> use these on our network and neither will authenticate via PPPoE.
> Doing a sniff I can see The broadcast request (padI) from the dsl router,
> the MT router responding with
Anyone have any of these deployed? We have had two customers now trying to
use these on our network and neither will authenticate via PPPoE.
Doing a sniff I can see The broadcast request (padI) from the dsl router,
the MT router responding with the offer - padO, but then the dsl router just
sends
x27;t imagine why one would pull that plug...
On 5/27/09, Butch Evans wrote:
> On Wed, 2009-05-27 at 16:17 -0500, Robert Haas wrote:
>> Lest not forget the dummy who looked at the 'air' pressure gauge reading
>> 15lbs and decided it was a good idea to pull the 'air&#
Lest not forget the dummy who looked at the 'air' pressure gauge reading
15lbs and decided it was a good idea to pull the 'air' line off while
standing under it. :-/
Thanks,
Robert Haas
Network Administrator
BPS Networks
573-293-2638
> At another site, I had a large wav
.
So the chain would be something like: client--->mikrotik--->actual DNS
servers. Basically the MT box becomes a caching nameserver.
Thanks,
Robert Haas
Network Administrator
BPS Networks
573-293-2638
> -Original Message-
> From: mikrotik-boun...@mail.butchevans.com [mai
32 matches
Mail list logo
