Official MikroTik Hardware

$anch3z · 16 Sep 2024 at 22:50

Despite saying I wouldn't get one and could not justify it, i got a crs310. Setup was dead easy as a layer 2 switch with 4 vlans, obviously not content with this I decided to wipe this and go full layer 3.....the headaches began

More fun with this tomorrow night

Caged · 16 Sep 2024 at 23:17

I wouldn't expect too much out of its L3 performance, you have to be careful to only use features that are hardware offloaded unless you want it to turn into a dog egg.

L3 Hardware Offloading - RouterOS - MikroTik Documentation

help.mikrotik.com

Steveocee · 21 Sep 2024 at 15:45

Ok - Proxmox host built and CHR deployed, only used a 1Gb license as the WAN won’t exceed that. All up and working great apart from I need to figure out WireGuard and client configs. Good to be back on the ‘Tik

Steveocee · 21 Sep 2024 at 15:50

Scratch that! WireGuard is working with the “smash it together it might work” config I put on :cry:

Ad_Augendae · 19 Oct 2024 at 11:09

Tryiing 7.17 beta4, the DoH performance uptick for me is very good. Also the white list feature is a bonus!

Steveocee · 20 Oct 2024 at 07:06

Ad_Augendae said:
Tryiing 7.17 beta4, the DoH performance uptick for me is very good. Also the white list feature is a bonus!

DoH is on my list to do. Easy?

Ad_Augendae · 20 Oct 2024 at 10:00

Steveocee said:
DoH is on my list to do. Easy?

Yeah It's all pretty basic stuff, enable DoH function and tick enable remote requests, grab your root pem from here https://cloudflare-dns.com/dns-query smash....
cloudflare-dns.com 1.1.1.1 1.0.0.1 in your static tab, import your cert to certificates. Give your cache 200MB and add your adlist of choice https://raw.githubusercontent.com/hagezi/dns-blocklists/main/hosts/pro.txt enable HTTPS verify if you wish by adding the appropirate cert for that as well.

I've tested a few, quad9 plays up and spams the logs with various types of explanations of why it disconnected. Only tested upto 7.17beta2, they have messed with the dns internals since then, I might give quad9 another go sometime later today! Cloudflare is far more stable. I've not tested the whitelist function yet.

$anch3z · 20 Oct 2024 at 10:42

Ad_Augendae said:
Tryiing 7.17 beta4, the DoH performance uptick for me is very good. Also the white list feature is a bonus!

Just updated my RB5009 this morning and enabled DoH - thanks

Ad_Augendae · 20 Oct 2024 at 15:49

quad9 for me at least is still the same, Cloudflare doesn't do this, or at least not very often anyway.
This!

Code:

14:22 DoH server connection error: remote disconnected while in HTTP exchange
14:31 DoH server response not OK: 502: no downstream server available
15:22 DoH server connection error: remote disconnected while in HTTP exchange

kakarott · 22 Oct 2024 at 11:57

I'm planning to buy a security camera and I read that 5G Chateau supports home assistant. Has anyone tried this?

Caged · 22 Oct 2024 at 13:01

What do you mean by "supports Home Assistant"? Do you want to run it on the Chateau?

kakarott · 23 Oct 2024 at 12:50

Caged said:
What do you mean by "supports Home Assistant"? Do you want to run it on the Chateau?

Apparently you can run a server on it?

$anch3z · 23 Oct 2024 at 18:10

kakarott said:
Apparently you can run a server on it?

Aye you can run it in a container, although I have only ran adblock in a container on my rb5009

Steveocee · 23 Oct 2024 at 20:45

kakarott said:
Apparently you can run a server on it?

Be realistic with your expectations. It's not a big CPU, it has very minimal RAM and both CCTV stream ingest and HA can be resource hungry beasts which the Chateau will keel over with.

Steveocee · 27 Nov 2024 at 07:05

Made a huge change to my firewall yesterday morning and I think I only just got it working how I wanted it to now.
By default I always put in a final drop WAN>LAN forward rule, I’ve now added multiple local subnets so I adjusted it to just drop all forward.
Needed an extra couple rules to get normal web access and the subnets I want to talk talking but super happy now, so much I may upgrade my P1 to a P10.

Steveocee · 29 Nov 2024 at 20:20

Glad this thread is quiet, means I won’t have to explain why I bought a P10 CHR license for my home router

That and you can also get an OVH CHR for <£1 per month for the first 12 months!

Ad_Augendae · 30 Nov 2024 at 10:11

Device-Mode seems to causing quite a stir at the moment, they are also creating a cloud based solution as well. I do hope i have a choice NOT to use that function!

Steveocee · 2 Dec 2024 at 17:03

Ad_Augendae said:
Device-Mode seems to causing quite a stir at the moment, they are also creating a cloud based solution as well. I do hope i have a choice NOT to use that function!

Device-mode? Cloud based solution? A what now? lol

Well the home CHR is now licensed up to 10Gb and the old 1Gb has been redployed to my OVH server. Did they need them? No. Does it make me happy? Yes.

Ad_Augendae · 2 Dec 2024 at 17:30

I have a 250/25M conection so no need for custom stuff, although nice to have. So no need for a cloud based/local controller etc. I do like Mikrotik now I'm used to all the little niggles&riddles... I didn't think an 864MHz cpu could do so much. Next purchase is still going to be RB5009.

**Official MikroTik Hardware **

Official MikroTik Hardware