What are TX pauses?

This content is for Patreon subscribers of the j2 blog. Please consider becoming a Patreon subscriber for as little as $1 a month. This helps to provide higher quality content, more podcasts, and other goodies on this blog.
To view this content, you must be a member of Justin Wilson's Patreon at $0.01 or more
Already a qualifying Patreon member? Refresh to access this content.

Cleaning Dude Database in Version 4

This content is for Patreon subscribers of the j2 blog. Please consider becoming a Patreon subscriber for as little as $1 a month. This helps to provide higher quality content, more podcasts, and other goodies on this blog.
To view this content, you must be a member of Justin Wilson's Patreon at $0.01 or more
Already a qualifying Patreon member? Refresh to access this content.

Setting up Cambium and Mikrotik for PPPoE

Cambium has a pretty good tutorial on their community forums on setting up PPPoE between Mikrotik and Cambium radios acting as clients.

https://community.cambiumnetworks.com/t5/ePMP-Networking/High-level-RouterOS-PPPoE-Server-Client-Configuration-Example/m-p/49625#M14

#packetsdownrange #epmp #mikrotik

Udemy course of the week: Mikrotik Traffic Control

This content is for Patreon subscribers of the j2 blog. Please consider becoming a Patreon subscriber for as little as $1 a month. This helps to provide higher quality content, more podcasts, and other goodies on this blog.
To view this content, you must be a member of Justin Wilson's Patreon at $0.01 or more
Already a qualifying Patreon member? Refresh to access this content.

Updated Mikrotik firewall script from Rick Frey

Our friend Rick Frey has updated his Mikrotik Firewall script.  You can find it here
http://rickfreyconsulting.com/rfc-mikrotik-firewall-6-0-for-ipv4-free-version/

You will need a fairly beefy router to run all of this.  If you are an enterprise this will be very handy for protecting your corporate network.  If you are an ISP I would pick and choose some of the parts which apply to you.  Your infrastructure should already be on non accessible IP space so the need for this big of a firewall should not be necessary

RouterOS 7.0Beta4 released on Dec 6 2019

!) included all features and fixes from 6.46 version;
!) implemented completely new User Manager package;
*) dhcpv4-server – added “option-set” parameter for each “vendor-class-id”;
*) dhcpv4-server – added “radius-password’ parameter under “config” menu;
*) dhcpv6-client – allow reading passed options in script;
*) dhcpv6-relay – include client’s Link-Layer address in option 79;
*) interface – improved support for Intel, Mellanox and other generic network cards;
*) ipsec – fixed action=none policies;
*) ipv6 – added “disable-ipv6” parameter;
*) lte – added support for Quectel EC25-E;
*) lte – added support for Sierra Wireless MC7304;
*) lte – improved system stability when resetting modem;
*) package – fixed USB and CD-ROM installs;
*) ssh – improved key exchange algorithm support;
*) system – fixed port duplication on each system reboot;

Mikrotik RouterOS 6.46 is out

What’s new in 6.46 (2019-Dec-02 11:16):

Lots of fixes in this.  Many LTE, WInbox, SNMP fixes.  CRS fixes as well.
Notable Changes (not all but ones I think are worth pulling out). Full changelog can be foudn at https://www.mikrotik.com/download

*) backup – fixed automatic backup file generation when configuration reset by button;
*) backup – store automatically created backup file in “flash” directory;
*) bonding – correctly remove HW offloaded bonding with ARP monitoring;
*) bonding – properly handle MAC addresses when bonding WLAN interfaces;
*) bridge – disable/enable bridge port when setting bpdu-guard;
*) bridge – do not add bridge as untagged VLAN member when frame-types=admit-only-vlan-tagged;
*) bridge – do not add dynamically VLAN entry when changing “pvid” property for non-vlan aware bridge;
*) bridge – include whole VLAN-id in DHCP Option 82 message;
*) ccr – improved general system stability;
*) crs1xx/2xx – allow to set trunk port as mirroring target;
*) crs3xx – correctly handle L2MTU change;
*) crs3xx – do not send pause frames when ethernet “tx-flow-control” is disabled on CRS326/CRS328/CRS305 devices;
*) crs3xx – improved interface initialization;
*) crs3xx – improved switch-chip resource allocation on CRS317-1G-16S+, CRS309-1G-8S+, CRS312-4C+8XG, CRS326-24S+2Q+ devices;
*) crs3xx – improved system stability on CRS309-1G-8S+, CRS312-4C+8XG, CRS326-24S+2Q+ devices;
*) defconf – require “policy” permission to print default configuration;
*) dhcpv6-client – fixed timeout when doing rebind;
*) dhcpv6-client – properly update bind time when unused prefix received from the server;
*) dhcpv6-client – properly update IPv6 address on rebind;
*) dhcpv6-server – fixed logged error message when using “address-pool=static-only”;
*) dhcpv6-server – ignore prefix-hint from client’s DHCPDISCOVER if static prefix received from RADIUS;
*) dhcpv6-server – include “User-Name” parameter in accounting requests;
*) dhcpv6-server – made “calling-station-id” contain MAC address if DUID contains it;
*) dot1x – added “reject-vlan-id” server parameter (CLI only);
*) dot1x – added support for dynamic switch rules from RADIUS;
*) dot1x – added support for “mac-auth” authentication type (CLI only);
*) ethernet – automatically detect interface when using IP address for power-cycle-ping;
*) ethernet – do not enable interface after reboot that is already disabled;
*) ipsec – fixed DNS resolving when domain has only AAAA entries;
*) ipsec – fixed policy “sa-src-address” detection from “local-address” (introduced in v6.45);
*) ipv6 – changed “advertise-dns” default value to “yes”;
*) route – fixed area range summary route installation in VRF;
*) sniffer – allow filtering by packet size;
*) usb – general USB modem stability improvements;