Four New Training Classes for 2012. Sign up now and claim your seat!
Start your year right by enrolling in basic or advanced MikroTik training
Ready to train and have some fun? Learn more...
MTCNA MikroTik Certified Network Associate
January 10-12 Houston, Texas
Enroll Now
MTCRE, MTCWE, MTCTCE MikroTik Advanced Training
February 21-24 Dallas, Texas
Enroll Now
MTCNA MikroTik Certified Network Associate
March 27-29 Houston, Texas
Enroll Now
MTCRE, MTCWE, MTCTCE MikroTik Advanced Training
April 24-27 Dallas, Texas
Enroll Now
Saturday, December 3, 2011
European MUM Scheduled
I found out today the European MUM will be held in Warsaw, Poland March 15-18. We have tons of MikroTik in stock at ISPSupplies.com or MikroTik Training at LearnMikroTik.com.
Thursday, November 10, 2011
Mikrotik Sextants on their way
Easy to use and quick to deploy, SEXTANT is ideal for point to point links.
I think this will be your new favorite CPE so hurry and come get some!
Wednesday, November 9, 2011
Keeping RouterOS Queues on Top
One frustration I have recently dealt with is the dynamic simple queue behavior in MikroTik RouterOS that started sometime after version 3. Somewhere in there, they started adding new, dynamically created queues (created by MikroTik HotSpot or UserManager/PPPOE) to the top of the list instead of at the bottom.
This really causes an issue with static queues you might have in place for prioritizing traffic like VOIP. When the dynamic user queues are inserted above your VOIP queue, VOIP traffic from that user's target IP no longer has priority. I contacted support@mikrotik.com and Janis Megis from MikroTik indicated it was a requested feature that would be added at some point in the future. This caused me a lot of grief recently workign with a large HotSpot deployment on a RouterBoard RB1200.
Until then, here is a solution.
Create a script with the following code:
/queue simple move [find name="VOIP"] [:pick [find] 0]
In this code, I have a simple queue named UDP that I always want at the top of the list of queues. You can repeat this code for other queues to be placed below this queue like this:
/queue simple move [find name="VOIP"] [:pick [find] 0]
/queue simple move [find name="VIDEO"] [:pick [find] 1]
/queue simple move [find name="SSH"] [:pick [find] 2]
Then, create a scheduler job to run the script every 10 seconds or so and you should be in QOS heaven!
This really causes an issue with static queues you might have in place for prioritizing traffic like VOIP. When the dynamic user queues are inserted above your VOIP queue, VOIP traffic from that user's target IP no longer has priority. I contacted support@mikrotik.com and Janis Megis from MikroTik indicated it was a requested feature that would be added at some point in the future. This caused me a lot of grief recently workign with a large HotSpot deployment on a RouterBoard RB1200.
Until then, here is a solution.
Create a script with the following code:
/queue simple move [find name="VOIP"] [:pick [find] 0]
In this code, I have a simple queue named UDP that I always want at the top of the list of queues. You can repeat this code for other queues to be placed below this queue like this:
/queue simple move [find name="VOIP"] [:pick [find] 0]
/queue simple move [find name="VIDEO"] [:pick [find] 1]
/queue simple move [find name="SSH"] [:pick [find] 2]
Then, create a scheduler job to run the script every 10 seconds or so and you should be in QOS heaven!
Friday, September 16, 2011
RouterOS Version 5.7 Released
What's new in 5.7 (2011-Sep-14 10:54):
*) ovpn client - fixed crash when user name or password together
were longer than 11 symbols;
*) sstp client - added an option to skip
server address verification from certificate;
*) fixed problem - router crashed sometimes when using USB modem;
*) userman - show overall totals, show user totals if user has more
than one entry;
*) lcd - retrieving '/system lcd page' configuration did not work with
hundreds of interfaces;
*) webfig - added ability to reorder fields in skins;
*) webfig - added ability to add/remove new tabs & separators in skins;
*) webfig - added ability to add any field to special status page;
*) webfig - fixed problem when user sometimes got logged out with message
"internal server error";
*) webfig - logout didn't log user out from router;
*) webfig - added System/Password for changing user's own password;
*) system reset-configuration - if keep-users is specified ssh user keys are
preserved as well;
*) ipsec - new exchange mode (main-l2tp) for l2tp tunnel users to allow
FQDN as a peer ID with preshared key authorization in main mode;
*) ssh - fix possible server crash when connection is interrupted;
*) improved ipv4 forwarding performance on all boards with simple configuration
by up to 30%;
*) add passthrough setting to change-dscp, change-ttl, change-mss,
strip-ipv4-options, change-hop-limit mangle targets;
*) ipsec - fixed problem of RB1200 rebooting when large amount of UDP traffic is
sent through IPsec;
*) sniffer - added more useful packet filtering options, also available as quick
mode command parameters;
Link to the download page:
http://www.mikrotik.com/download.html
MikroTik Training HERE
*) ovpn client - fixed crash when user name or password together
were longer than 11 symbols;
*) sstp client - added an option to skip
server address verification from certificate;
*) fixed problem - router crashed sometimes when using USB modem;
*) userman - show overall totals, show user totals if user has more
than one entry;
*) lcd - retrieving '/system lcd page' configuration did not work with
hundreds of interfaces;
*) webfig - added ability to reorder fields in skins;
*) webfig - added ability to add/remove new tabs & separators in skins;
*) webfig - added ability to add any field to special status page;
*) webfig - fixed problem when user sometimes got logged out with message
"internal server error";
*) webfig - logout didn't log user out from router;
*) webfig - added System/Password for changing user's own password;
*) system reset-configuration - if keep-users is specified ssh user keys are
preserved as well;
*) ipsec - new exchange mode (main-l2tp) for l2tp tunnel users to allow
FQDN as a peer ID with preshared key authorization in main mode;
*) ssh - fix possible server crash when connection is interrupted;
*) improved ipv4 forwarding performance on all boards with simple configuration
by up to 30%;
*) add passthrough setting to change-dscp, change-ttl, change-mss,
strip-ipv4-options, change-hop-limit mangle targets;
*) ipsec - fixed problem of RB1200 rebooting when large amount of UDP traffic is
sent through IPsec;
*) sniffer - added more useful packet filtering options, also available as quick
mode command parameters;
Link to the download page:
http://www.mikrotik.com/download.html
MikroTik Training HERE
Wednesday, August 31, 2011
This is Mac Heaven
After several weeks of arguing with my Windows 2003 server and the interoperability issues it now has with Mac OSX Lion, I bit the bullet or more appropriately drank Steve Job's kool-aid and spend the evening configuring my new Mac Mini server in my hotel room. Four hours from home and teaching a MikroTik class in Dallas, I was bored and angry that my Time Machine backups weren't working any more because Windows 2003 server's Appletalk protocol has not been updated. Blame it on Lion or blame it on me for still using Winblows as my server, whatever, it was time.
Off to the store I went and am now the owner of a Mac Mini (our new file server, contact server, calendar server, etc.) and a Time Capsule for our home backups. This is Mac heaven.
Since I didn't have a monitor, I jacked the hotel television (thank goodness for HDMI inputs)
hooked up the new mac mini and started downloading Lion server while my Time Capsule backed up my 15" Mac Pro and served up the wireless. This is Apple bliss!
Thank goodness I am able to watch a movie on my I Pad while I watch Lion install on my Mac Mini and type my blog on my MacBook Pro. Heaven I tell you!
Off to the store I went and am now the owner of a Mac Mini (our new file server, contact server, calendar server, etc.) and a Time Capsule for our home backups. This is Mac heaven.
Since I didn't have a monitor, I jacked the hotel television (thank goodness for HDMI inputs)
hooked up the new mac mini and started downloading Lion server while my Time Capsule backed up my 15" Mac Pro and served up the wireless. This is Apple bliss!
Thank goodness I am able to watch a movie on my I Pad while I watch Lion install on my Mac Mini and type my blog on my MacBook Pro. Heaven I tell you!
Tuesday, August 30, 2011
Dallas MikroTik Training Started Today
MikroTik MTCNA Training started today in Dallas, Texas with a great group of students. Typically we spend a lot of time with the basics but this group has a great grasp of basic networking so we moved quickly today. We started with the OSI Modem and ended with firewalls. Tomorrow we start the day with bandwidth limitations and hope to finish early on Wednesday.
Are you ready to train? Our next MikroTik Training is in Las Vegas, NV, in October. Send us an email or visit us at LearnMikroTik.com.
Are you ready to train? Our next MikroTik Training is in Las Vegas, NV, in October. Send us an email or visit us at LearnMikroTik.com.
Tuesday, August 16, 2011
New MikroTIk RB750GL
I am sure you have heard of the new MikroTik 750GL but what abut the RB750GK? It has five gigabit ports and a creamy center!
Phil Crawford, a MT colleague is celebrating his birthday and wanted to test drive the newest model!
Phil Crawford, a MT colleague is celebrating his birthday and wanted to test drive the newest model!
Saturday, August 13, 2011
MikroTik MTCNA Training August 30 - Sept 1 Dallas, Tx
Ready to train? Come to Dallas and learn RouterOS. MikroTik training starts August 30. Learn more...
Tuesday, August 9, 2011
250 MBps link with MikroTik
Arc Wireless Dual polarity antenna
R52HN Card
RouterBoard 435G
802.11N NV2 link
245 MBps throughput
Nice!
Come get yours at http://ispsupplies.com
R52HN Card
RouterBoard 435G
802.11N NV2 link
245 MBps throughput
Nice!
Come get yours at http://ispsupplies.com
Monday, August 8, 2011
Netscape, are you kidding me?
Tuesday, August 2, 2011
OmniTIK Now Available
We just got a load of the new OmniTik's, Mikrotik's newest integrated solution. OmniTIK is a weatherproof outdoor AP with dual-polarized omni antennas - the perfect companion for the SXT, or for any other 5GHz 802.11a/n standard device.
Weatherproof, durable and ready to use. It has five 10/100 Ethernet ports, PoE support and a built-in 400mW 802.11a/n wireless radio. It supports Nv2 TDMA technology with up to 200Mbit aggregate throughput.
LED signal indicators on it’s back are fully customizable, show Ethernet activity or wireless signal - or any other information from RouterOS.
The USB port gives the ability to connect a 3G modem or a storage drive.
I am thinking of applications for this device including wireless networks for apartment complexes, as a backbone for an RV park WiFi, temporary internet access venues. etc. What is missing in my opinion is a second radio. I would rather sacrifice the dual chains for 802.11n and instead add a second radio running 2.4 GHz. A dual band mesh node at this price point would be awesome and could lend itself to municipal WiFi deployments, etc.
Wednesday, June 15, 2011
Get in the Groove!
We just received a huge MikroTik order with MikroTik RB1200's and Grooves. Look out Ubiquiti bullets, the MikroTik Groove is here!
Get yours today at ISPSupplies.com
Get yours today at ISPSupplies.com
Thursday, June 9, 2011
Thursday, April 14, 2011
April 2011 Dallas - MTCNA Training Class Completed
These 21 students just finished three long days of MikroTik Training in Dallas, Texas. They are taking a quick break before we start the MikroTik RouterOS certification exam.
Good job guys and gal!
Good job guys and gal!
Friday, April 8, 2011
MikroTik RouterOS Version 5.1 Released
What's new in 5.1 (2011-Apr-08 12:55):
*) ipsec - fix SA lifetime display when timezone offset does not equal 0;
*) ipsec - now default DPD interval is 2 min for new configurations;
*) webfig - make bandwidth-test work;
*) fixed problem - wireless package got disabled after upgrading from v4;
*) sstp - fix problems on multicore systems;
Get MikroTik Training today!
Saturday, January 8, 2011
MikroTik RB1100 - More Stock Arrives
Thursday, January 6, 2011
New MikroTik Product!
WOW! What a great new product from MikroTik for less than $90.
RouterBOARD SXT 5HnD is a low cost, high speed 5GHz wireless device. Dual chain 802.11n and Nv2 TDMA technology help to achieve even 200Mbit real throughput speed. Complete with a ready to mount enclosure and built-in antenna, this is the perfect CPE. Powered by RouterOS, it is also the most advanced router, bandwidth controller and firewall.
• Solid all-in-one design: quick and easy to mount
• Tower friendly one hand enclosure access
• 5GHz 802.11a/n wireless onboard
• One 10/100 Ethernet port
• 16dBi dual chain antenna built-in
• Signal strength LED indicators on back
• USB 2.0 port, voltage and temperature monitors
• Extended L2MTU support to avoid fragmentation overhead in MPLS, QinQ etc.
• Includes pole mounting bracket, mounting ring and PoE adapter
• RB/SXT
Read the DATASHEET.
RouterBOARD SXT 5HnD is a low cost, high speed 5GHz wireless device. Dual chain 802.11n and Nv2 TDMA technology help to achieve even 200Mbit real throughput speed. Complete with a ready to mount enclosure and built-in antenna, this is the perfect CPE. Powered by RouterOS, it is also the most advanced router, bandwidth controller and firewall.
• Solid all-in-one design: quick and easy to mount
• Tower friendly one hand enclosure access
• 5GHz 802.11a/n wireless onboard
• One 10/100 Ethernet port
• 16dBi dual chain antenna built-in
• Signal strength LED indicators on back
• USB 2.0 port, voltage and temperature monitors
• Extended L2MTU support to avoid fragmentation overhead in MPLS, QinQ etc.
• Includes pole mounting bracket, mounting ring and PoE adapter
• RB/SXT
Read the DATASHEET.
Script to Set Rate Limits for Self Created Users in MikroTik UserManager
Usermanager is MikroTik's version of radius and is a great way to centralize AAA on your network. In addition, it also has facility to allow users to buy credits on your network through hotspot, however, the only limitation it can automatically create is a time limitation. You can create packages that allow access for a day, week, month, etc., but in order to set a rate limit for that customer and their package, you have to manually make that change to the user in Usermanager.
I needed a way to automatically accomplish this so I enlisted the help of my script guru, Andrew Cox. Although I have never met Andrew in person, I can tell you he is a bright guy who is one of the few people I know that truly speaks MikroTik's scripting language. As usual, Andrew rose to the challenge and wrote a few lines of code that function perfectly.
A few notes, first the script uses the user property "credit-price" to determine which package the customer purchased, therefore, you need to have unique prices for each rate limit. For example, if the Gold package is 128k/64k and costs $25, then users that buy the 64k/64k package that costs $25 will get the same rate limit. In this example, just change the price slightly on one of the packages and it will work correctly. For example, make the 128k/64k package $19.95 or something similar.
So, here is the code, past it into a new script item through Winbox, set the scheduler to run it once every minute or so and you will enjoy the benefits of automatic rate limits with self created user accounts.
-- Script---
#Script to add rate limit's to newly created user-manager accounts.
#Written by Andrew Cox | http://www.mikrotik-routeros.com
:local counter
:local check
#Loop through all users in user-manager
:foreach counter in=[/tool user-manager user find] do={
#Check to see if comment contains "RLA" (short for 'rate limit added'). If it doesn't, this account hasn't had a rate limit set yet.
#We only check the first 3 characters, this means you can continue to use the comment field for whatever you like so long as you leave the 'RLA' untouched (if present)
:set check [:pick [/tool user-manager user get $counter value=comment] 0 3]
:if ($check="RLA") do={
#Has RLA, rate limit is already set so ignore
} else={
#Doesn't have RLA Set rate-limit based on initial purchase pricing
:if ([/tool user-manager user get $counter credit-price] ="1000") do={/tool user-manager user set $counter rate-limit="256k/128k" comment="RLA"}
:if ([/tool user-manager user get $counter credit-price] ="2500") do={/tool user-manager user set $counter rate-limit="256k/128k" comment="RLA"}
:if ([/tool user-manager user get $counter credit-price] ="4500") do={/tool user-manager user set $counter rate-limit="96k/48k" comment="RLA"}
:if ([/tool user-manager user get $counter credit-price] ="6000") do={/tool user-manager user set $counter rate-limit="128k/64k" comment="RLA"}
:if ([/tool user-manager user get $counter credit-price] ="7500") do={/tool user-manager user set $counter rate-limit="256k/128k" comment="RLA"}
}
}
--- End of Script---
I needed a way to automatically accomplish this so I enlisted the help of my script guru, Andrew Cox. Although I have never met Andrew in person, I can tell you he is a bright guy who is one of the few people I know that truly speaks MikroTik's scripting language. As usual, Andrew rose to the challenge and wrote a few lines of code that function perfectly.
A few notes, first the script uses the user property "credit-price" to determine which package the customer purchased, therefore, you need to have unique prices for each rate limit. For example, if the Gold package is 128k/64k and costs $25, then users that buy the 64k/64k package that costs $25 will get the same rate limit. In this example, just change the price slightly on one of the packages and it will work correctly. For example, make the 128k/64k package $19.95 or something similar.
So, here is the code, past it into a new script item through Winbox, set the scheduler to run it once every minute or so and you will enjoy the benefits of automatic rate limits with self created user accounts.
-- Script---
#Script to add rate limit's to newly created user-manager accounts.
#Written by Andrew Cox | http://www.mikrotik-routeros.com
:local counter
:local check
#Loop through all users in user-manager
:foreach counter in=[/tool user-manager user find] do={
#Check to see if comment contains "RLA" (short for 'rate limit added'). If it doesn't, this account hasn't had a rate limit set yet.
#We only check the first 3 characters, this means you can continue to use the comment field for whatever you like so long as you leave the 'RLA' untouched (if present)
:set check [:pick [/tool user-manager user get $counter value=comment] 0 3]
:if ($check="RLA") do={
#Has RLA, rate limit is already set so ignore
} else={
#Doesn't have RLA Set rate-limit based on initial purchase pricing
:if ([/tool user-manager user get $counter credit-price] ="1000") do={/tool user-manager user set $counter rate-limit="256k/128k" comment="RLA"}
:if ([/tool user-manager user get $counter credit-price] ="2500") do={/tool user-manager user set $counter rate-limit="256k/128k" comment="RLA"}
:if ([/tool user-manager user get $counter credit-price] ="4500") do={/tool user-manager user set $counter rate-limit="96k/48k" comment="RLA"}
:if ([/tool user-manager user get $counter credit-price] ="6000") do={/tool user-manager user set $counter rate-limit="128k/64k" comment="RLA"}
:if ([/tool user-manager user get $counter credit-price] ="7500") do={/tool user-manager user set $counter rate-limit="256k/128k" comment="RLA"}
}
}
--- End of Script---
Subscribe to:
Posts (Atom)