Questions tagged [routeros]
Linux-based operating system known also known as MikroTik RouterOS that runs on x86 and RouterBOARD systems.
81
questions
5
votes
3
answers
23k
views
How do I set up RouterOS to use web proxy on another machine?
The RouterOS docs show how to transparently proxy all web traffic via the HTTP proxy built into RouterOS:
/ip firewall nat
add in-interface=ether1 dst-port=80 protocol=tcp action=redirect to-ports=...
- 277
5
votes
1
answer
11k
views
How to make connections answer from the same gateway they entered in RouterOS?
I have a MikroTik RouterOS 6.23 device, and my network is as follows:
Router
|
|-- bridge1_LAN (wlan1 + ether1) (192.168.0.210) -- LAN (192.168.0.0/24)
| Here is where computers are. Those ...
- 292
4
votes
2
answers
489
views
WiFi: Frequencies that map to non-overlapping 2.4 GHz channels 1,6 & 11
I'm configuring a wireless router. I know the non-ovelapping channels are 1,6 & 11. However, my router only specifies frequencies that I can select, not channels. What are the frequencies that ...
- 365
4
votes
2
answers
12k
views
Use Mikrotik as a switch and route subnets through another router
I've got the following network configuration:
Comtrend 5813 FTTH Router, connected to WAN, let's say in 192.168.50.x (being .1 router's address) and a DHCP server active, giving addresses from .150 ...
- 155
4
votes
1
answer
4k
views
IPv6 subnetting a dynamic /56 prefix
I read How does IPv6 subnetting work and how does it differ from IPv4 subnetting? but my question was not answered there.
I'm upgrading our IPv4 network to IPv6. Currently, our NAT gateway splits our ...
- 1,455
3
votes
1
answer
9k
views
How to setup an encrypted L2-Tunnel using MikroTik Routers?
What I would like to achieve
I want to securely spread an existing internal subnet over multiple buildings. That means that I have two locations with virtual machines that need to be within the same ...
- 385
3
votes
2
answers
50k
views
Routing from mikrotik two IP addresses to same gateway
I have 2 static addreses (a.b.c.72/24 and a.b.c.128/24) on gateway1 and gateway2 interfaces. ISP have one gateway a.b.c.1 . I can use a.b.c.72 only on gateway1, a.b.c.128 only on gateway2.
How to ...
- 294
3
votes
2
answers
8k
views
Can't get a serial console on MikroTik RB4011iGS+
I am trying to connect to the serial console of my MikroTik RB4011iGS+.
I might be missing something obvious, but I can't seem to get a terminal (or anything else).
Relevant documentation page:
...
3
votes
2
answers
11k
views
NAT to two different servers on the same port via hostname with Mikrotik RB2011
I have a Mikrotik RB2011 router, running RouterOS which connects to the internet via a static IP.
In my lan I have two different servers, one that is on IP 192.168.89.11 and
another on 192.168.89.12
...
- 143
3
votes
1
answer
9k
views
MIKROTIK - set proxy authentication
Is it possible to set mikrotik authetication to be used for set the connection of other applications to internet using mikrotik proxy?
For example connect miranda IM using mikrotik proxy server:
I'...
- 145
3
votes
2
answers
20k
views
MikroTik IPsec client Fortigate 'Received ESP packet with unknown SPI.'
We have a client with 6 sites using IPsec. Every now and again, possibly once a week, sometimes once a month, data just stops flowing from the remote Fortigate VPN server to the local MikroTik IPsec ...
3
votes
2
answers
2k
views
Manually set IPv6 neighbor's MAC address in Mikrotik's RouterOS
I have an interesting problem. An ISP of ours started providing native IPv6 on their network. They provided us with a /56 prefix and a /126 linking segment (::1 being their endpoint and ::2 being ours)...
user81458
2
votes
1
answer
2k
views
MikroTik beep on RDP
I am a newbie in MikroTik RouterOS.
How can I add a rule or script to beep when some one tries to connect to a special port on one of interfaces?
For example I need to know if someone is trying to ...
- 139
2
votes
4
answers
19k
views
How to hack airport extreme to support USB 3G modem? [closed]
Has anyone out there ever tried to hack the Airport Extreme, specifically with regard to the USB port? There are many cellular routers available that provide WiFi sharing of a USB modem link. However, ...
- 133
2
votes
2
answers
7k
views
Does exist a curl equivalent command in routeros?
Just starting with routeros and after searching the official docs just fetch appears
I need to do a POST request to REST API but I cannot find any curl like command. Is it possible to install curl ...
- 163
2
votes
1
answer
8k
views
How do I configure routing for an IPSEC tunnel between Openswan and RouterOS
I am trying to create a site-to-site VPN between a Linux router that runs openswan and shorewall (host A, serving subnet 10.10.0.0/16) and a MikroTek RouterBoard running RouterOS 6.3 (host B, serving ...
- 425
2
votes
1
answer
111
views
Port forwarding fails with two DHCP Servers/routers on the same network
TL;DR I have two routers and a switch, and have forwarded port 80 on both routers to the switch, but depending on which router gives the switch its IP, it'll have that as its default gateway, and I ...
- 141
2
votes
1
answer
2k
views
On RouterOS, how will transparent proxying (with DNAT) affect reporting of netflow?
I have a box running Mikrotik RouterOS, which is set up to do transparent web proxying, as described here.
In short, this means that I have a firewall rule for destination NAT causing any port 80 ...
- 277
2
votes
2
answers
3k
views
On Mikrotik RouterOS, is it possible to get Netflow information from a bridged connection?
I have a RouterOS box set up to bridge two ethernet connections. I have use-ip-firewall=yes in the bridge configuration, so that the ports go through the firewall.
I've enabled netflow reporting via ...
- 277
2
votes
0
answers
1k
views
Why is port forwarding in Mikrotik RouterOS stuck at SYN_RECV?
I'd like to set up port forwarding of tcp port 8000 -> 192.168.1.16:4200 on my Mikrotik RouterOS.
I've done the following:
/ip firewall nat add dstnat chain=dstnat action=dst-nat to-addresses=192....
- 285
2
votes
2
answers
2k
views
RRAS Server 2012 R2 Not Assigning Network Info or if it does not passing NAT
I wouldn't bother with this for any other reason than the fact that the speeds I get are worth it.
Cable Modem (Bridge mode) - Server 2012 R2 (RRAS) - Linksys EA2700 (Bridged as Switch)
My issue is ...
- 43
1
vote
8
answers
4k
views
MikroTik vs. Cisco for WiFi bridge application
A local vendor is proposing a wireless bridge solution using MikroTik. I had never heard of MikroTik before but it seems they have a following. My usual first choice is Cisco, however the price ...
- 1,247
1
vote
3
answers
2k
views
Order of external DNS servers on Router OS DNS Server
We have DNS server on our Mikrotik (RouterOS 6.36).
[admin@xxx] /ip dns> print
servers: 10.0.10.3,8.8.8.8
dynamic-servers:
allow-remote-requests: yes
max-udp-packet-...
- 137
1
vote
2
answers
8k
views
Export vs Backup
Basically self-explanatory. Mikrotik's RouterOS has two distinct functions, one which backs up the router and one which exports the configuration of the router. What exactly is the difference, and ...
- 538
1
vote
1
answer
178
views
Simple router with two ethernet interface no static route needed?
Normaly, for two subnets connected with one router, i always used to create two routes
per example:
subnet 1: 192.168.1.0/24
subnet 2: 192.168.2.0/24
router interface 1: 192.168.1.99
router ...
1
vote
1
answer
3k
views
Mikrotik: Firewall dropping packets even though rule seems to match
I set up an L2TP VPN server on my Mikrotik. Connecting to the VPN when I'm behind the router works, but once I'm connecting from the WAN side, it doesn't. I logged my firewall to see if I was dropping ...
- 16.9k
1
vote
1
answer
2k
views
Make a Mikrotik Router behave as a separate router on each port
We use Mikrotik routers for many points in our system, but we have an odd need for one location.
We would like to use one router (example: RB960PGS-PB), where the main Internet connection comes in on ...
- 13
1
vote
2
answers
3k
views
UDP NAT traffic but no response on MikroTik RouterOS
I have a MikroTik router with v7.1beta2 firmware installed
It's WAN (eth1) has an IP address of 192.168.7.122
There are two devices connected to its LAN
Device #1 is a webserver, communicating on ...
- 111
1
vote
1
answer
4k
views
Manually subnet an IPv6 Prefix Across Multiple MikroTik Routers w/out Prefix Delegation
I want to configure my network so hosts can IPV6 auto-address Global Unicast Addresses ("GUA") using SLAAC. I have a ::/48 (assigned by Hurricane Electric) that I want to divide into subnets and ...
- 365
1
vote
1
answer
5k
views
RouterOS push static route for IPSec IKEv2 VPN
Can't find a solution how actually I can push a static routes to VPN clients, when they connect via VPN.
Configuration from here
RouterOS, IPSec, IKEv2. Clients mainly macOS users via standard soft.
...
- 143
1
vote
1
answer
9k
views
Mikrotik switched VLAN configuration
With Routerboard 450G I want to configure the 5 Ethernet ports as follows:
ether1: vlan3, untagged
ether2: vlan1, untagged
ether3: vlan2, untagged
ether4: vlan2, untagged
ether5: vlan1-vlan3, tagged
...
- 568
1
vote
0
answers
51
views
Scripting with variables in RouterOS
I seem to be at a complete loss as to how Global variables work in RouterOS. My goal is to create a script which will make calls to other infrastructure components when DHCP leases are changed.
For ...
- 685
1
vote
0
answers
275
views
Packet forwarding for L2TP/IPSec VPN
I have 2 Server:
Server 1: MikroTik RouterOS (Setting up L2TP vpn server) [out of my country]
Server 2: Fresh Ubuntu 20.04 OS [in my country]
I can't connect to Server 1 via L2TP connection (protocol ...
- 11
1
vote
2
answers
2k
views
How to access subnet from Open VPN server (Ubuntu), VPN client RouterOS?
Here's the setup:
[OpenVPN server] --- WAN --- [RouterOS client] --- [Local subnet client]
10.5.0.0 10.5.0.14 10.10.10.2
$ route -n
Kernel IP routing table
...
- 11
1
vote
0
answers
773
views
How to allow responding to broadcast pings on Mikrotik RouterOS?
By default, most systems don't respond to broadcast ping requests. However, there exist ways to explicitly allow responding to broadcast ICMP requests on multiple systems, such as Linux.
How can I ...
- 163
1
vote
1
answer
6k
views
MikroTik Capsman is trying to push network channel configurations that are not allowed by access points
According to information from allowed-channels command on my Access Point the allowed channels are the following:
5180/20-Ceee/ac,
5260/20-Ceee/ac/DP,
5745/20-Ceee/ac,
5750/20-Ceee/ac,
5755/20-Ceee/...
- 161
1
vote
0
answers
689
views
RouterOS sending malformed packets
I have a Routerboard 951G-2HnD which runs latest stable:
RouterOS v6.50.5
Firmware v3.41
The board acts as the WiFi AP in WPA2-PSK mode. Recently I have noticed unhealthy amount of traffic sent from ...
user218324
1
vote
1
answer
12k
views
How to setup route to gateway on different subnet with MikroTik Routers?
We have the following setup which I need to get working:
Location A:
Subnet 1:
Network: 192.168.1.0
Mask: 255.255.255.0
Default Gateway: 192.168.1.1
Subnet 2:
Network: 192.168.2.0
Mask: 255.255....
- 201
1
vote
1
answer
1k
views
MikroTik - Traffic flow (Netflow) Octets Counter wrap
I am using Traffic Flow with pmacct (nfacct) to do IP Accounting.
I've noticed that if a flow exceeds ~4GBytes in less than a minute (which is my active-flow-timeout) the exported flow Octets counter ...
- 2,462
1
vote
0
answers
3k
views
RouterOS on Hyper-V (v3/2012) - any way to get it working?
Trying to set up a small VPN point to connect into a remote Hyper-V cluster using ROuterOS. Anyone got it working ON Hyper-V with the latest builds of RouterOS? It seems the legacy network adapter is ...
- 51.7k
1
vote
3
answers
901
views
bridge between vlans
We have a somewhat exotic setup. Some devices connected to a cisco switch must be administered by a third party and we don't want to give this third party full access to our network.
There devices do ...
- 223
0
votes
1
answer
690
views
Why are certain TCP connections extremely slow, except while running a packet capture on the router?
I have a weird issue with my MikroTik RouterBOARD hEX - RB750Gr3 (running Router OS 7.8).
Certain TCP connections are extremely slow, for example this 93 KB file takes ages to download from the ...
- 416
0
votes
1
answer
43k
views
MikroTik - can't access webfig from external / can't SSH into router from external ip
Ok,
here's the deal.
Let's say that my public facing IP is 10.0.01.
I can't webfig into 10.0.01 from external and can't SSH into mikrotik router from external IP.
I can do it if I am physically ...
- 385
0
votes
3
answers
7k
views
GRE keepalive with Linux and RouterOS
I have a Linux host and couple of routerboadrs. I created a GRE tunnel, but Linux does not answer keepalive packages. Then router mark gre connection as unreachable, so I cant send to Linux host from ...
- 294
0
votes
4
answers
814
views
OS router distribution with very low memory footprint?
I'm looking for an os router distribution with a very low memory footprint. I want to start it in a VM to join multiple VM subnets together in a lab environment.
Anything that requires that the host ...
- 1,075
0
votes
1
answer
1k
views
DNS entry always preferring wildcard entry instead of explicit entry
I have a Mikrotik Router with Router OS where I need to set a static DNS entry. I have set
a url exhibitorsearch.test.intern.customer.com to an ip with the ending .92
a regexp .*\.test\.intern\....
- 115
0
votes
1
answer
3k
views
Mangling traffic from a Mikrotik Router
I have a MikroTik powered Router in the house with a couple of internet connections (2 200/10Mb Cable modems and a 100/20Mb VDSL Line). I am using Mangle rules to set routing marks and NAT rules to do ...
- 744
0
votes
2
answers
2k
views
How to forbid DHCP-server to lease specific IP address on Mikrotik's routerOS?
My Mikrotik router is running a DHCP server in /24 network, I would like to prohibit it to lease some IP addresses (I would like to use them statically on a couple of devices). Are there any ways to ...
- 55
0
votes
1
answer
886
views
DNS requests with the term "router" in a subdomain always redirected to local router
It seems that my router (Mikrotik RB2011UiAS) is somehow hijacking DNS request that have the subdomain "router" in them and forwards them to itself.
router.google.com, router.amazon.com, you name it,...
- 973
0
votes
1
answer
364
views
IPTABLES not blocking EoIP Tunnel
So I decided to play with EoIP Tunnels today on two VMs which I installed free trial RouterOS on them.
I set rules on iptables on the hypervisor (which is Proxmox) that prevents any input to vms ...
- 27