Public
Threads by month
- ----- 2024 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2023 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2022 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2021 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2020 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2019 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2018 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2017 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2016 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2015 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2014 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
November 2017
- 15 participants
- 7 discussions
Hi Harry, thanks for the comments!
(have you tried subscribing to the public list? What happens when you try
to add a subscription?)
That is only the LIPD class license document but it does not list the
relevant standards. The standards list some of the ETSI specifications
which according to MT include radar detect operation. From MT perspective,
they claim that DFS implies Radar Detect in the relevant standards. I have
no doubt that it DOES make that link in the EU specification, but since our
AU compliance requirements also refer to some ETSI standard then it is
possible that our rules are also affected by the recent updates to relevant
ETSI standards simply by association and since ACMA have not explicitly
excluded that revision...
This is what I am attempting to ascertain ;)
So far, I have not been able to find the direct relationships and have been
doing the rounds of some compliance folks to try to get to the bottom of it
all. It may take some time :-1
Cheers, Mike.
----------------------------------------------------------------------------
--------
Why Choose DuxTel for all your MikroTik needs?
10 good reasons: http://duxtel.com/why_duxtel
----------------------------------------------------------------------------
--------
Follow our tweets for news and updates: http://twitter.com/duxtel
> -----Original Message-----
> From: Harry Fiotakis [mailto:Harry.Fiotakis@tasmanet.com.au]
> Sent: Monday, 23 October 2017 10:39 AM
> To: Mike Everest (mike(a)duxtel.com) <mike(a)duxtel.com>
> Cc: Philip Loenneker <Philip.Loenneker(a)tasmanet.com.au>
> Subject: RE: [MT-AU Public] Radar detection Chaos Since 6.40.4
>
> Morning Mike, Phil forwarded me the latest correspondence as I still have
not
> been approved on the mailing list :(
>
> https://www.legislation.gov.au/Details/F2015L01438 (Radiocommunications
> (Low Interference Potential Devices) Class Licence 2015)
>
> 5250-5350 Must use DFS
> 5470-5600 Must use DFS
> 5650-5725 Must use DFS
>
> No Radar Detect required (it is not implied)
>
> We will have to seek official clarification on that if Mikrotik require
it, but
> with it forced on we are downgrading Mikrotik radios or simply not using
> them.
>
>
> Regards,
>
> Harry Fiotakis | TasmaNet
> 40-50 Innovation Drive, Tas 7010, Australia
> M: 0418 540 806 P: 1300 792 711
> Email: harry.fiotakis(a)tasmanet.com.au
>
>
> -----Original Message-----
> From: Philip Loenneker
> Sent: Monday, October 23, 2017 10:30 AM
> To: Harry Fiotakis <Harry.Fiotakis(a)tasmanet.com.au>
> Subject: FW: [MT-AU Public] Radar detection Chaos Since 6.40.4
>
>
> -----Original Message-----
> From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of
> Mike Everest
> Sent: Monday, 23 October 2017 9:50 AM
> To: 'MikroTik Australia Public List' <public(a)talk.mikrotik.com.au>
> Subject: Re: [MT-AU Public] Radar detection Chaos Since 6.40.4
>
> Further update on this issue,
>
> I've had a bit of correspondence with them, but they are 'fighting' it.
Latest
> comment from them is that "ETSI standard mentions when you use DFS and
> those ranges you need to use the Radar-detect. Radar detect is happening
> only for 1 minute."
>
> The line they are taking is that since our LIPD class license
specification says
> that DFS must be enabled for the sub 5785 channels, then radar detect must
> also be enabled. I've been trying to pore through all the relevant ACMA
> documentation so that I can find some definitive paragraph that clarifies
the
> situation, but so far have drawn a blank.
>
> I need someone who has some specific familiarity with the relevant rules
and
> standard that can find something that will convince them to turn it off -
any
> takers? :-}
>
> Cheers, Mike.
>
>
>
> _______________________________________________
> Public mailing list
> Public(a)talk.mikrotik.com.au
> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
5
26
That's flat out wrong. Have a look at the PDF on http://www.acma.gov.au/
Industry/Suppliers/Regulatory-arrangements/EMC-
Electromagnetic-compatibility/emc-standards-list and see page 5. All IT
equipment - no exceptions - must be tested (by an approved tester) to and
comply with CISPR-32 and get a C-Tick for use in Australia.
Upshot is don't import and use or sell the SPF modules unless the supplier
has ensure it's complied. Duxtel know all about this - they supply all
their Mikrotik gear (including boring old routers with no Wifi) with pretty
little compliance stickers.
On 9 August 2017 at 17:05, Paul Julian <paul(a)oxygennetworks.com.au> wrote:
> Agreed, the VC-231's are Tick approved, PSU and Bridge, we use a lot of
> them when deployed as a NTU for a VDSL2 DSLAM Implementation or as a point
> to point VDSL2 link.
>
> C tick or A tick approval is only required when connecting
> telecommunication devices to public communication networks, C tick or A
> tick approval is required for radio communications devices, so if it's a
> telecommunications device connected to a private wire you don't need
> approval, if it's a radio communications device you need approval no matter
> what.
>
> The ACMA make it pretty clear on their website if you aren't sure.
>
> http://www.acma.gov.au/theACMA/bringing-communications-
> equipment-into-australia
>
> Regards
> paul
>
> -----Original Message-----
> From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of
> Jason Hecker (Up & Running Tech)
> Sent: Wednesday, 9 August 2017 4:52 PM
> To: MikroTik Australia Public List
> Subject: Re: [MT-AU Public] xDSL SFPs
>
> That's partly true. As it's an active device it still needs C-Tick
> approval for electromagnetic compatibility and susceptibility reasons.
> There are likely even considerations for electrical isolation as it can
> connect two sites on different AC phases and potentials. Considering it's
> pumping HF energy into a long wire it's like a radio transmitter anyway so
> it definitely needs to comply.
>
> On 9 August 2017 at 16:45, Paul Julian <paul(a)oxygennetworks.com.au> wrote:
>
> > If it's a private CAT3 cable there are no approvals required as it's
> > just a private link.
> >
> > We use the Planet VC-231 bridges for that sort of thing, they are
> > pretty good and will do 100/100 over a couple of hundred metres with
> good cable.
> >
> > Regards
> > Paul
> >
> > -----Original Message-----
> > From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of
> > Jason Hecker (Up & Running Tech)
> > Sent: Wednesday, 9 August 2017 4:41 PM
> > To: MikroTik Australia Public List
> > Subject: Re: [MT-AU Public] xDSL SFPs
> >
> > Yes the belt and braces and correct way is to find a version that
> > someone has had approved for use in Australia. I don't think anyone
> > has done that yet! It'd be nice if the manufacturer did the legwork
> > but they only do FCC and CE.
> >
> > On 9 August 2017 at 16:33, Russell Hurren
> > <russell(a)zeropointnetworks.com>
> > wrote:
> >
> > > I've just had a client call me and ask for a WiFi repeater to go in
> > > the house next to their motel. There's already CAT3 running between
> > > the buildings, so something like that would be a good option for me.
> > > I'd be willing to order a pair and give it a try, but I'm not sure
> > > about the legality - I presume it'd need an A-Tick approval?
> > >
> > > I've got a CRS125 in the main building and I could put a hAP ac in
> > > the house and it'd be a nice clean option, compared to using
> > > something like a Planet VC-231.
> > >
> > > -----Original Message-----
> > > From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf
> > > Of Jason Hecker (Up & Running Tech)
> > > Sent: Wednesday, 26 July 2017 8:37
> > > To: MikroTik Australia Public List <public(a)talk.mikrotik.com.au>
> > > Subject: Re: [MT-AU Public] xDSL SFPs
> > >
> > > That said, the http://www.proscend.com/en-gb/product/sfp/180cr.html
> > > looks interesting for linking buildings that have old CAT3 cabling
> > > in between. I reckon I could have used that sort of thing in a few
> > > places instead of wireless. Has anyone tried these sort of VDSL2
> > bridges?
> > >
> > > On 26 July 2017 at 10:20, Philip Loenneker <Philip.Loenneker@tasmanet.
> > > com.au
> > > > wrote:
> > >
> > > > If anyone would care to donate a unit, I have a service I can test
> > > > it
> > on.
> > > > And as an RSP, we have direct access to the NBN portal to request
> > > > reactivation if it gets blocked :)
> > > >
> > > > -----Original Message-----
> > > > From: Public [mailto:public-bounces@talk.mikrotik.com.au] On
> > > > Behalf Of Jason Hecker (Up & Running Tech)
> > > > Sent: Wednesday, 26 July 2017 10:17 AM
> > > > To: MikroTik Australia Public List <public(a)talk.mikrotik.com.au>
> > > > Subject: Re: [MT-AU Public] xDSL SFPs
> > > >
> > > > I think we're all pretty excited about the prospects of those
> > > > VDSL2 and G.Fast SFP modules (I am getting FTTC so G.Fast is
> > > > probably on the cards one day). I guess you can be the guinea pig
> > > > and be the one to risk explaining to your ISP why your port should
> be unlocked.
> > > > ;)
> > > >
> > > > On 26 July 2017 at 10:09, Damien Gardner Jnr <rendrag(a)rendrag.net>
> > > wrote:
> > > >
> > > > > If you plug in a modem which does not support G.vector, the port
> > > > > will get shut down within ~10 minutes, and requires a support
> > > > > request from your
> > > > RSP
> > > > > to NBNco to have the port re-enabled. They don't specifically
> > > > > detect
> > > > modem
> > > > > model and shut down if they don't know the model though, as far
> > > > > as I
> > > > know.
> > > > >
> > > > > IPOE on ADSL is an interesting one, that'd make setup very easy!
> > > > >
> > > > > On 26 July 2017 at 10:05, Jason Hecker (Up & Running Tech) <
> > > > > jason(a)upandrunningtech.com.au> wrote:
> > > > >
> > > > >> Be careful, I remember reading that modems not tested and
> > > > >> authorised for NBN use can cause the port to be locked. Until
> > > > >> someone goes to the expense of having them tested and approved
> > > > >> for use in Australia (cough .. Mike?) you may not get much joy.
> > > > >> They might work on a bog standard ADSL line.
> > > > >>
> > > > >> Speaking of which, I might be late to the party but I noticed
> > > > >> that
> > > > Telstra
> > > > >> ADSL now supports IPoE as well as PPPoE/A. I reset an old
> > > > >> cheapie/dodgy TPLink modem the other day for someone and
> > > > >> without doing anything the PC connected did a DHCP request and
> > > > >> got a public IP/DNS! When I set the modem up to do IPoE it
> > > > >> picked all that up as well but for some reason wouldn't NAT or
> > > > >> proxy the DNS. Wrote the modem off and we proceeded to order an
> NBN service.
> > > > >>
> > > > >> On 26 July 2017 at 09:57, Damien Gardner Jnr
> > > > >> <rendrag(a)rendrag.net>
> > > > wrote:
> > > > >>
> > > > >> > Anyone else ordered one of the 180-T's yet? innet24.de are
> > > > >> > now
> > > > selling
> > > > >> > them, but are waiting on a firmware update (due out next
> > > > >> > week) before they're shipping more units. Looking forward to
> > > > >> > getting one and
> > > > seeing
> > > > >> how
> > > > >> > they go on NBN, if I can remove one device from the network
> > > > >> > at home,
> > > > >> I'll
> > > > >> > be very happy!
> > > > >> >
> > > > >> > On 19 May 2017 at 08:08, Thomas Jackson
> > > > >> > <thomas(a)thomax.com.au>
> > > wrote:
> > > > >> >
> > > > >> > > Thanks for the responses everyone
> > > > >> > >
> > > > >> > > Looks like we're using the double-sided tape again this
> > > > >> > > time around
> > > > :)
> > > > >> > >
> > > > >> > >
> > > > >> > >
> > > > >> > > Sent from mobile
> > > > >> > >
> > > > >> > > Thomas Jackson
> > > > >> > > Managing Director
> > > > >> > > +61 2 8378 5555
> > > > >> > >
> > > > >> > > > On 18 May 2017, at 12:54 pm, Mike Everest
> > > > >> > > > <mike(a)duxtel.com>
> > > > wrote:
> > > > >> > > >
> > > > >> > > > Hi Everyone,
> > > > >> > > >
> > > > >> > > > I thought I'd chip in some commentary here since there is
> > > > obviously
> > > > >> > > plenty
> > > > >> > > > of interest :-}
> > > > >> > > >
> > > > >> > > > There are at least two products around that implement
> > > > >> > > > some form of
> > > > >> vDSL
> > > > >> > > in
> > > > >> > > > an SFP module, but there are lots of hurdles preventing
> > > > >> > > > release to
> > > > >> AU
> > > > >> > > market
> > > > >> > > > which are partly commercial (vendor requests significant
> > > > >> > > > - circi
> > > > >> > USD100K
> > > > >> > > -
> > > > >> > > > commitment prior to even proving viable operation on any
> > > > >> > > > given
> > > > >> network)
> > > > >> > > and
> > > > >> > > > partly technical (vDSL definition is somewhat 'loose' in
> > > > >> implementation
> > > > >> > > such
> > > > >> > > > that there is no guarantee that something that works well
> > > > >> > > > with one
> > > > >> > vendor
> > > > >> > > > DSLAM will also work with every other)
> > > > >> > > >
> > > > >> > > > At DuxTel, we've been trying to work out a solution for
> > > > >> > > > many
> > > > months,
> > > > >> > and
> > > > >> > > > although we are closing on a potential outcome, there is
> > > > >> > > > no firm
> > > > >> date
> > > > >> > for
> > > > >> > > > market readiness.
> > > > >> > > >
> > > > >> > > > One thing that we know of thus far:
> > > > >> > > > - devices are real, and actually exist ;)
> > > > >> > > > - devices work with MikroTik RouterOS to the extent that
> > > > >> > > > they are
> > > > >> > > recognised
> > > > >> > > > by SFP drivers and 'inserted module' parameters are
> > > > >> > > > reported
> > > > >> correctly
> > > > >> > > > - MikroTik are 'on board' to develop further support to
> > > > >> > > > implement
> > > > >> some
> > > > >> > > form
> > > > >> > > > of configuration interface for routerOS and this type of
> > > > >> > > > device
> > > > >> > > >
> > > > >> > > > Here is what we don't have yet:
> > > > >> > > > - commercial agreement with manufacturing vendor/s to
> > > > >> > > > support
> > > > >> > > development of
> > > > >> > > > solution to work with any given vDSL service (read: NBN)
> > > > >> > > > - compliance testing documentation to support RCM
> > > > >> > > > eligbility for
> > > > AU
> > > > >> > > > environment
> > > > >> > > >
> > > > >> > > > What needs to happen before they are made available to
> > > > >> > > > the AU
> > > > >> market:
> > > > >> > > > - compliance testing and certification
> > > > >> > > > - testing (and probably some driver/firmware development)
> > > > >> > > > to work
> > > > >> with
> > > > >> > > NBNCo
> > > > >> > > > DSLAMs and other DSLAM vendors
> > > > >> > > >
> > > > >> > > > The big hurdle to the above is in coming to some
> > > > >> > > > commercial
> > > > >> agreement
> > > > >> > > with
> > > > >> > > > one or more vendors that satisfies their need to cover
> > > > >> > > > costs of
> > > > >> final
> > > > >> > > stages
> > > > >> > > > of development and compliance testing.
> > > > >> > > >
> > > > >> > > > My assessment of where this is all at is that the
> > > > >> > > > manufacturer/s
> > > > >> have
> > > > >> > > > developed some 'proof of concept' hardware that seems to
> > > > implement a
> > > > >> > > general
> > > > >> > > > form of vDSL (with ADSL fallback) BUT (and that's a big
> > > > >> > > > BUT) there
> > > > >> is a
> > > > >> > > lot
> > > > >> > > > of technical work to be done to deliver sufficient
> > > > >> > > > confidence that
> > > > >> they
> > > > >> > > will
> > > > >> > > > work reliably over any particular or general vDSL network.
> > > > >> > > > That
> > > > is
> > > > >> not
> > > > >> > > even
> > > > >> > > > beginning to consider whether they are likely to meet any
> > > > particular
> > > > >> > > > regulatory compliance requirements for AU or any other
> > > > jurisdiction
> > > > >> ;)
> > > > >> > > >
> > > > >> > > > So short story is: they are coming, perhaps, but probably
> > > > >> > > > not any
> > > > >> time
> > > > >> > > soon
> > > > >> > > > :-J
> > > > >> > > >
> > > > >> > > > Questions (on or off list) are welcome!
> > > > >> > > >
> > > > >> > > > Cheers, Mike.
> > > > >> > > >
> > > > >> > > >
> > > > >> > > > _______________________________________________
> > > > >> > > > Public mailing list
> > > > >> > > > Public(a)talk.mikrotik.com.au
> > > > >> > > > http://talk.mikrotik.com.au/mailman/listinfo/public_talk.
> > > > >> > mikrotik.com.au
> > > > >> > >
> > > > >> > > _______________________________________________
> > > > >> > > Public mailing list
> > > > >> > > Public(a)talk.mikrotik.com.au
> > > > >> > > http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mi
> > > > >> > > k
> > > > >> rotik.com.au
> > > > >> > >
> > > > >> >
> > > > >> >
> > > > >> >
> > > > >> > --
> > > > >> >
> > > > >> > Damien Gardner Jnr
> > > > >> > VK2TDG. Dip EE. GradIEAust
> > > > >> > rendrag(a)rendrag.net - http://www.rendrag.net/
> > > > >> > --
> > > > >> > We rode on the winds of the rising storm, We ran to the
> > > > >> > sounds of thunder.
> > > > >> > We danced among the lightning bolts, and tore the world
> > > > >> > asunder _______________________________________________
> > > > >> > Public mailing list
> > > > >> > Public(a)talk.mikrotik.com.au
> > > > >> > http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mik
> > > > >> rotik.com.au
> > > > >> >
> > > > >>
> > > > >>
> > > > >>
> > > > >> --
> > > > >> <https://www.upandrunningtech.com.au>
> > > > >> _______________________________________________
> > > > >> Public mailing list
> > > > >> Public(a)talk.mikrotik.com.au
> > > > >> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.
> > > > mikrotik.com.au
> > > > >>
> > > > >
> > > > >
> > > > >
> > > > > --
> > > > >
> > > > > Damien Gardner Jnr
> > > > > VK2TDG. Dip EE. GradIEAust
> > > > > rendrag(a)rendrag.net - http://www.rendrag.net/
> > > > > --
> > > > > We rode on the winds of the rising storm, We ran to the sounds
> > > > > of thunder.
> > > > > We danced among the lightning bolts, and tore the world asunder
> > > > >
> > > >
> > > >
> > > >
> > > > --
> > > > <https://www.upandrunningtech.com.au>
> > > > _______________________________________________
> > > > Public mailing list
> > > > Public(a)talk.mikrotik.com.au
> > > > http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mik
> rotik.com.
> > > > au
> > > >
> > >
> > >
> > >
> > > --
> > > <https://www.upandrunningtech.com.au>
> > > _______________________________________________
> > > Public mailing list
> > > Public(a)talk.mikrotik.com.au
> > > http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
> > > au
> > >
> > > _______________________________________________
> > > Public mailing list
> > > Public(a)talk.mikrotik.com.au
> > > http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
> > > au
> > >
> >
> >
> >
> > --
> > <https://www.upandrunningtech.com.au>
> > _______________________________________________
> > Public mailing list
> > Public(a)talk.mikrotik.com.au
> > http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
> > au
> >
> >
>
>
> --
> <https://www.upandrunningtech.com.au>
> _______________________________________________
> Public mailing list
> Public(a)talk.mikrotik.com.au
> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
>
>
--
<https://www.upandrunningtech.com.au>
--
<https://www.upandrunningtech.com.au>
8
19
Hi all, just wondering if anybody can recommend any tools for monitoring port flaps or OSPF status changes on Mikrotik devices ?
We use a host of monitoring products but the SNMP support within RouterOS is limited/non- existent for these items, and other monitoring tools seem to be unable to pickup some slight issues.
Thanks
Paul
3
2
Thanks for the good advice here everyone.
Something else so add. I also want to setup a HAP and plugin a USB 4G modem but for a different purpose, to use it in areas where no ADSL/Cable is available.
The 320U does not support the 700MHz band which is crucial for me and something you should know about too in case you’re not aware….
With a decent antenna on the roof, 700MHz can reach up to 70km from a cell tower so it’s perfect for rural areas. I’ve set this up with a Dovado router and a Netgear Aircard II previously but want to use MK gear.
Another consideration is indoor penetration. 700Mz is much better at getting thought walls much like 3G at 850Mz.
See here for more: https://www.telcoantennas.com.au/site/telstra-4g-explained <https://www.telcoantennas.com.au/site/telstra-4g-explained>
Does anyone know of a USB 4G 700MHz Mikrotik compatible modem?
MAC, PC, Smartphone & Multimedia
Consulting, Training, Support & Fix-it
screamSaver
When You Just Want IT to Work"
mobile 0412 067 226 email matt(a)screamsaver.net <mailto:matt@screamsaver.net> web www.screamsaver.net <http://www.screamsaver.net/>
On 23 Nov 2017, at 18:34, public-request(a)talk.mikrotik.com.au wrote:
Send Public mailing list submissions to
public(a)talk.mikrotik.com.au
To subscribe or unsubscribe via the World Wide Web, visit
http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
or, via email, send a message with subject or body 'help' to
public-request(a)talk.mikrotik.com.au
You can reach the person managing the list at
public-owner(a)talk.mikrotik.com.au
When replying, please edit your Subject line so it is more specific
than "Re: Contents of Public digest..."
Today's Topics:
1. Re: 4G WAN failover question (Ben Jackson - ELOGIK)
2. Re: 4G WAN failover question (Paul Julian)
3. Re: 4G WAN failover question (Jeremy Hall)
----------------------------------------------------------------------
Message: 1
Date: Thu, 23 Nov 2017 17:44:32 +1100
From: Ben Jackson - ELOGIK <ben(a)elogik.net>
To: MikroTik Australia Public List <public(a)talk.mikrotik.com.au>
Subject: Re: [MT-AU Public] 4G WAN failover question
Message-ID:
<CACv=4uqwcspOtPd=Zr-gKztswU2SX=nfTJJCXimn_6Kr86tkJw(a)mail.gmail.com>
Content-Type: text/plain; charset="UTF-8"
Paul - where do you get your 320U's from? Ebay?
*BEN JACKSON*
Director
*M *0404 924745
*E* ben(a)elogik.com.au
*W* elogik.com.au <http://www.elogik.com.au/>
<http://www.elogik.com.au>
On Thu, Nov 23, 2017 at 5:42 PM, Paul Julian <paul(a)oxygennetworks.com.au>
wrote:
> No problem, good luck.
>
> Regards
> Paul
>
> -----Original Message-----
> From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of
> Ben Jackson - ELOGIK
> Sent: Thursday, 23 November 2017 5:38 PM
> To: MikroTik Australia Public List
> Subject: Re: [MT-AU Public] 4G WAN failover question
>
> Great info Paul - thanks for this. I think with all this in mind I'll be
> able to tailor a solution
>
> Thanks again for everyone's input.
>
> *BEN JACKSON*
> Director
>
> *M *0404 924745
> *E* ben(a)elogik.com.au
> *W* elogik.com.au <http://www.elogik.com.au/> <http://www.elogik.com.au>
>
>
> On Thu, Nov 23, 2017 at 1:53 PM, Paul Julian <paul(a)oxygennetworks.com.au>
> wrote:
>
>> Hi Ben,
>>
>> We use the Telstra Sierra Wireless 320U modems in our Mikrotik hAP
>> devices, the Mikrotik creates an LTE interface once the modem is
>> inserted into the USB port, you set the APN within the LTE interface.
>> Once that's connected you then configure a DHCP client on the Mikrotik
>> on the LTE interface and you get a public IP.
>>
>> Some caveats:
>> - You do need to change the mode of the modem, this can be done with
>> the Netgear utility easily, they are a netgear unit basically.
>> - You need to use a 4G SIM from Telstra, prepaid or postpaid should
>> work, however if you want the APN with the public IP you need postpaid
>> and need to request that the SIM be setup with the telstra.extranet
>> APN
>>
>> Apart from that it's pretty easy.
>>
>> We occasionally have the modem drop, we have a script on the Mikrotik
>> which checks connectivity and if it drops it does a USB power cycle
>> which brings it back up most of the time.
>>
>> It's really not hard, and it works well.
>>
>> If you want to go with Optus but without a public IP you can get the
>> $19 dongle from Office Works, it works in the Mikrotik without any
>> real changes, but no public IP, fine if you can VPN out to something
>> to use to get back in.
>>
>> Regards
>> Paul
>>
>>
>> -----Original Message-----
>> From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of
>> Ben Jackson - ELOGIK
>> Sent: Thursday, 23 November 2017 11:10 AM
>> To: Jason Hecker; MikroTik Australia Public List
>> Subject: Re: [MT-AU Public] 4G WAN failover question
>>
>> Thanks for the pointers everyone. There seem to be a number of
>> factors at play here:
>>
>> 1) Most of the LTE USB modems you can purchase have some kind of
>> "router on a stick" built in which provides a firewalled, DHCP
>> assigned private IP on the LAN side in the normal ranges of
>> 192.168.x.x or 10.x.x.x. In Huawei's case this is known as "HiLink mode".
>> 2) In addition to this, depending on which provider they are bought
>> from, these modems / dongles are flashed with an ISP-specific firmware
>> which further locks down the device to stop certain features being
>> exposed to the device's web-interface. This makes it tricky to change
>> things such as the APN settings.
>> 3) The above types of device (i've been mainly concerned with the
>> Huawei
>> E3372 since that's the one my router has support for) can apparently
>> be re-flashed with custom firmware which allows HiLink mode to be
>> switched off (see here:
>> http://www.0xf8.org/2017/01/flashing-a-huawei-e3372h-4g-
>> lte-stick-from-hilink-to-stick-mode/)
>> this will apparently allow the "public" IP to be assigned directly to
>> the device connected to the USB port and avoids the pesky double NAT
> situation.
>> 4) The reason I say "public" in quotes above is because even if you
>> manage to pass this address through, quite often the address itself is
>> not a true public IP as it is behind carrier NAT and you are back to
> square 1.
>>
>> For those interested, here are the options I'm exploring:
>>
>> 1) Getting a sierra 320U unlocked from ebay which can be used in
>> "stick mode" without NAT or DHCP enabled and purchasing a SIM plan
>> from either M2MOne or URL networks which has a "true" public IP (with
>> all the public health and DDOS warnings this entails!)
>> 2) Buying an LTE router such as:
>>
>> Dovado Tiny
>> MikroTik SXT LTE
>> Netgear (I know!) LB1111
>> TP-Link MR6400
>>
>> and then using the same sim card as above. From the research I've
>> done, these devices have a "passthrough" or bridge mode which will
>> present the LTE public IP directly to my main router, albeit via an
>> RJ45 / ethernet connection.
>>
>> Ben
>>
>> *BEN JACKSON*
>> Director
>>
>> *M *0404 924745
>> *E* ben(a)elogik.com.au
>> *W* elogik.com.au <http://www.elogik.com.au/>
>> <http://www.elogik.com.au>
>>
>>
>> On Wed, Nov 22, 2017 at 6:15 PM, Jason Hecker (Up & Running Tech) <
>> jason(a)upandrunningtech.com.au> wrote:
>>
>>> Oh I see, OK, sounds like you need something that will do a PPP
>>> session which some 4G cards will let you do if you put them into
>>> serial mode like the Telit LE910 (which I have tried) or the Sierra
>> modules.
>>>
>>> If you end up with a static or dynamic public IP you can cname the
>>> dynamic DNS Mikrotik provides in the router's ip->cloud settings and
>>> set the timeout to 60, so you could get at it like
>>> bighonchoclient1.elogik.net for example.
>>>
>>> I kicked the idea around but never tried buying a cheap VPS with a
>>> static IP and having the 4G based Mikrotik VPN into it, then on the
>>> VPS port forward any ports to services behind the 4G device.
>>>
>>> On 22 November 2017 at 15:59, Ben Jackson - ELOGIK <ben(a)elogik.net>
>> wrote:
>>>
>>>> Hi Jason,
>>>>
>>>> OK, I didn't phrase my question very well, what I need is a dongle
>>>> or
>>> card
>>>> that doesn't provide an extra layer of NAT (as many do) and run an
>>> internal
>>>> DHCP sever so that the routers cellular interface ends up with an
>>>> IP address like 192.168.x.x but instead passes the public IP
> directly.
>>>> This
>>> is
>>>> so I don't end up with a double NAT situation (kind of the
>>>> equivalent of bridge mode for a DSL modem) and I can access
>>>> resources (like security systems etc) behind the public IP by
>>>> configuring the main firewall /
>>> router
>>>> accordingly.
>>>>
>>>> Ben
>>>>
>>>> *BEN JACKSON*
>>>> Director
>>>>
>>>> *M *0404 924745
>>>> *E* ben(a)elogik.com.au
>>>> *W* elogik.com.au <http://www.elogik.com.au/>
>>>> <http://www.elogik.com.au>
>>>>
>>>>
>>>> On Wed, Nov 22, 2017 at 2:24 PM, Jason Hecker (Up & Running Tech)
>>>> < jason(a)upandrunningtech.com.au> wrote:
>>>>
>>>>> What if you had those routers phone home to a VPN server in your
>>>>> office over 4G? They'd always be in easy reach on private subnet
>>>>> on your LAN
>>> and
>>>>> you wouldn't need to worry about public or static IPs for your 4G
>>> widget.
>>>>>
>>>>> I noticed Duxtel configured devices I have bought have a PPTP
>>>>> client set up so if you activate it then Duxtel can peer into the
>>>>> device and assist
>>> with
>>>>> any issues.
>>>>>
>>>>> On 22 November 2017 at 13:46, Ben Jackson - ELOGIK
>>>>> <ben(a)elogik.net>
>>>>> wrote:
>>>>>
>>>>>> Does anyone have any advice on a) a decent 4g service that
>>>>>> provides a publicly accessible IP address that ports can be
>>>>>> forwarded through as
>>>>> well
>>>>>> as how to get hold of an unlocked USB dongle which will support
>>>>>> the
>>> SIM
>>>>> /
>>>>>> service?
>>>>>>
>>>>>> Or even a provider that provides this on one of their business
>> plans?
>>>>>>
>>>>>> If it can be a prepaid plan even better.
>>>>>>
>>>>>> I'm looking to use said device as 4G failover on a meraki mx64
>>> security
>>>>>> appliance and calling the usual suspects (Optus, telstra) is
>>>>>> giving
>>> me a
>>>>>> headache.
>>>>>>
>>>>>> Any advice on what others have done in this scenario would be
>>>>>> most appreciated.
>>>>>>
>>>>>> Best regards,
>>>>>>
>>>>>> Ben Jackson
>>>>>> eLogik
>>>>>>
>>>>>> (Sent from my mobile device)
>>>>>> _______________________________________________
>>>>>> Public mailing list
>>>>>> Public(a)talk.mikrotik.com.au
>>>>>> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mik
>>>>> rotik.com.au
>>>>>>
>>>>>
>>>>>
>>>>>
>>>>> --
>>>>> <https://www.upandrunningtech.com.au>
>>>>> _______________________________________________
>>>>> Public mailing list
>>>>> Public(a)talk.mikrotik.com.au
>>>>> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.
>>> mikrotik.com.au
>>>>>
>>>>
>>>>
>>>
>>>
>>> --
>>> <https://www.upandrunningtech.com.au>
>>> _______________________________________________
>>> Public mailing list
>>> Public(a)talk.mikrotik.com.au
>>> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
>>> au
>>>
>> _______________________________________________
>> Public mailing list
>> Public(a)talk.mikrotik.com.au
>> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
>> au
>>
>>
>> _______________________________________________
>> Public mailing list
>> Public(a)talk.mikrotik.com.au
>> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
>> au
>>
> _______________________________________________
> Public mailing list
> Public(a)talk.mikrotik.com.au
> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
>
>
> _______________________________________________
> Public mailing list
> Public(a)talk.mikrotik.com.au
> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
>
------------------------------
Message: 2
Date: Thu, 23 Nov 2017 17:48:19 +1100
From: Paul Julian <paul(a)oxygennetworks.com.au>
To: 'MikroTik Australia Public List' <public(a)talk.mikrotik.com.au>
Subject: Re: [MT-AU Public] 4G WAN failover question
Message-ID:
<f278f2ea-be1f-4edb-b9c2-8a63078f68ad(a)oxygennetworks.com.au>
Content-Type: text/plain; charset="us-ascii"
Yep, should be able to get them for around $40-$50
Regards
Paul
-----Original Message-----
From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Ben Jackson - ELOGIK
Sent: Thursday, 23 November 2017 5:45 PM
To: MikroTik Australia Public List
Subject: Re: [MT-AU Public] 4G WAN failover question
Paul - where do you get your 320U's from? Ebay?
*BEN JACKSON*
Director
*M *0404 924745
*E* ben(a)elogik.com.au
*W* elogik.com.au <http://www.elogik.com.au/> <http://www.elogik.com.au>
On Thu, Nov 23, 2017 at 5:42 PM, Paul Julian <paul(a)oxygennetworks.com.au>
wrote:
> No problem, good luck.
>
> Regards
> Paul
>
> -----Original Message-----
> From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of
> Ben Jackson - ELOGIK
> Sent: Thursday, 23 November 2017 5:38 PM
> To: MikroTik Australia Public List
> Subject: Re: [MT-AU Public] 4G WAN failover question
>
> Great info Paul - thanks for this. I think with all this in mind I'll
> be able to tailor a solution
>
> Thanks again for everyone's input.
>
> *BEN JACKSON*
> Director
>
> *M *0404 924745
> *E* ben(a)elogik.com.au
> *W* elogik.com.au <http://www.elogik.com.au/>
> <http://www.elogik.com.au>
>
>
> On Thu, Nov 23, 2017 at 1:53 PM, Paul Julian
> <paul(a)oxygennetworks.com.au>
> wrote:
>
>> Hi Ben,
>>
>> We use the Telstra Sierra Wireless 320U modems in our Mikrotik hAP
>> devices, the Mikrotik creates an LTE interface once the modem is
>> inserted into the USB port, you set the APN within the LTE interface.
>> Once that's connected you then configure a DHCP client on the
>> Mikrotik on the LTE interface and you get a public IP.
>>
>> Some caveats:
>> - You do need to change the mode of the modem, this can be done with
>> the Netgear utility easily, they are a netgear unit basically.
>> - You need to use a 4G SIM from Telstra, prepaid or postpaid should
>> work, however if you want the APN with the public IP you need
>> postpaid and need to request that the SIM be setup with the
>> telstra.extranet APN
>>
>> Apart from that it's pretty easy.
>>
>> We occasionally have the modem drop, we have a script on the
>> Mikrotik which checks connectivity and if it drops it does a USB
>> power cycle which brings it back up most of the time.
>>
>> It's really not hard, and it works well.
>>
>> If you want to go with Optus but without a public IP you can get the
>> $19 dongle from Office Works, it works in the Mikrotik without any
>> real changes, but no public IP, fine if you can VPN out to something
>> to use to get back in.
>>
>> Regards
>> Paul
>>
>>
>> -----Original Message-----
>> From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf
>> Of Ben Jackson - ELOGIK
>> Sent: Thursday, 23 November 2017 11:10 AM
>> To: Jason Hecker; MikroTik Australia Public List
>> Subject: Re: [MT-AU Public] 4G WAN failover question
>>
>> Thanks for the pointers everyone. There seem to be a number of
>> factors at play here:
>>
>> 1) Most of the LTE USB modems you can purchase have some kind of
>> "router on a stick" built in which provides a firewalled, DHCP
>> assigned private IP on the LAN side in the normal ranges of
>> 192.168.x.x or 10.x.x.x. In Huawei's case this is known as "HiLink mode".
>> 2) In addition to this, depending on which provider they are bought
>> from, these modems / dongles are flashed with an ISP-specific
>> firmware which further locks down the device to stop certain
>> features being exposed to the device's web-interface. This makes it
>> tricky to change things such as the APN settings.
>> 3) The above types of device (i've been mainly concerned with the
>> Huawei
>> E3372 since that's the one my router has support for) can apparently
>> be re-flashed with custom firmware which allows HiLink mode to be
>> switched off (see here:
>> http://www.0xf8.org/2017/01/flashing-a-huawei-e3372h-4g-
>> lte-stick-from-hilink-to-stick-mode/)
>> this will apparently allow the "public" IP to be assigned directly
>> to the device connected to the USB port and avoids the pesky double
>> NAT
> situation.
>> 4) The reason I say "public" in quotes above is because even if you
>> manage to pass this address through, quite often the address itself
>> is not a true public IP as it is behind carrier NAT and you are back
>> to
> square 1.
>>
>> For those interested, here are the options I'm exploring:
>>
>> 1) Getting a sierra 320U unlocked from ebay which can be used in
>> "stick mode" without NAT or DHCP enabled and purchasing a SIM plan
>> from either M2MOne or URL networks which has a "true" public IP
>> (with all the public health and DDOS warnings this entails!)
>> 2) Buying an LTE router such as:
>>
>> Dovado Tiny
>> MikroTik SXT LTE
>> Netgear (I know!) LB1111
>> TP-Link MR6400
>>
>> and then using the same sim card as above. From the research I've
>> done, these devices have a "passthrough" or bridge mode which will
>> present the LTE public IP directly to my main router, albeit via an
>> RJ45 / ethernet connection.
>>
>> Ben
>>
>> *BEN JACKSON*
>> Director
>>
>> *M *0404 924745
>> *E* ben(a)elogik.com.au
>> *W* elogik.com.au <http://www.elogik.com.au/>
>> <http://www.elogik.com.au>
>>
>>
>> On Wed, Nov 22, 2017 at 6:15 PM, Jason Hecker (Up & Running Tech) <
>> jason(a)upandrunningtech.com.au> wrote:
>>
>>> Oh I see, OK, sounds like you need something that will do a PPP
>>> session which some 4G cards will let you do if you put them into
>>> serial mode like the Telit LE910 (which I have tried) or the
>>> Sierra
>> modules.
>>>
>>> If you end up with a static or dynamic public IP you can cname the
>>> dynamic DNS Mikrotik provides in the router's ip->cloud settings
>>> and set the timeout to 60, so you could get at it like
>>> bighonchoclient1.elogik.net for example.
>>>
>>> I kicked the idea around but never tried buying a cheap VPS with a
>>> static IP and having the 4G based Mikrotik VPN into it, then on
>>> the VPS port forward any ports to services behind the 4G device.
>>>
>>> On 22 November 2017 at 15:59, Ben Jackson - ELOGIK
>>> <ben(a)elogik.net>
>> wrote:
>>>
>>>> Hi Jason,
>>>>
>>>> OK, I didn't phrase my question very well, what I need is a
>>>> dongle or
>>> card
>>>> that doesn't provide an extra layer of NAT (as many do) and run
>>>> an
>>> internal
>>>> DHCP sever so that the routers cellular interface ends up with
>>>> an IP address like 192.168.x.x but instead passes the public IP
> directly.
>>>> This
>>> is
>>>> so I don't end up with a double NAT situation (kind of the
>>>> equivalent of bridge mode for a DSL modem) and I can access
>>>> resources (like security systems etc) behind the public IP by
>>>> configuring the main firewall /
>>> router
>>>> accordingly.
>>>>
>>>> Ben
>>>>
>>>> *BEN JACKSON*
>>>> Director
>>>>
>>>> *M *0404 924745
>>>> *E* ben(a)elogik.com.au
>>>> *W* elogik.com.au <http://www.elogik.com.au/>
>>>> <http://www.elogik.com.au>
>>>>
>>>>
>>>> On Wed, Nov 22, 2017 at 2:24 PM, Jason Hecker (Up & Running
>>>> Tech) < jason(a)upandrunningtech.com.au> wrote:
>>>>
>>>>> What if you had those routers phone home to a VPN server in
>>>>> your office over 4G? They'd always be in easy reach on private
>>>>> subnet on your LAN
>>> and
>>>>> you wouldn't need to worry about public or static IPs for your
>>>>> 4G
>>> widget.
>>>>>
>>>>> I noticed Duxtel configured devices I have bought have a PPTP
>>>>> client set up so if you activate it then Duxtel can peer into
>>>>> the device and assist
>>> with
>>>>> any issues.
>>>>>
>>>>> On 22 November 2017 at 13:46, Ben Jackson - ELOGIK
>>>>> <ben(a)elogik.net>
>>>>> wrote:
>>>>>
>>>>>> Does anyone have any advice on a) a decent 4g service that
>>>>>> provides a publicly accessible IP address that ports can be
>>>>>> forwarded through as
>>>>> well
>>>>>> as how to get hold of an unlocked USB dongle which will
>>>>>> support the
>>> SIM
>>>>> /
>>>>>> service?
>>>>>>
>>>>>> Or even a provider that provides this on one of their
>>>>>> business
>> plans?
>>>>>>
>>>>>> If it can be a prepaid plan even better.
>>>>>>
>>>>>> I'm looking to use said device as 4G failover on a meraki
>>>>>> mx64
>>> security
>>>>>> appliance and calling the usual suspects (Optus, telstra) is
>>>>>> giving
>>> me a
>>>>>> headache.
>>>>>>
>>>>>> Any advice on what others have done in this scenario would be
>>>>>> most appreciated.
>>>>>>
>>>>>> Best regards,
>>>>>>
>>>>>> Ben Jackson
>>>>>> eLogik
>>>>>>
>>>>>> (Sent from my mobile device)
>>>>>> _______________________________________________
>>>>>> Public mailing list
>>>>>> Public(a)talk.mikrotik.com.au
>>>>>> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mik
>>>>> rotik.com.au
>>>>>>
>>>>>
>>>>>
>>>>>
>>>>> --
>>>>> <https://www.upandrunningtech.com.au>
>>>>> _______________________________________________
>>>>> Public mailing list
>>>>> Public(a)talk.mikrotik.com.au
>>>>> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.
>>> mikrotik.com.au
>>>>>
>>>>
>>>>
>>>
>>>
>>> --
>>> <https://www.upandrunningtech.com.au>
>>> _______________________________________________
>>> Public mailing list
>>> Public(a)talk.mikrotik.com.au
>>> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
>>> au
>>>
>> _______________________________________________
>> Public mailing list
>> Public(a)talk.mikrotik.com.au
>> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
>> au
>>
>>
>> _______________________________________________
>> Public mailing list
>> Public(a)talk.mikrotik.com.au
>> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
>> au
>>
> _______________________________________________
> Public mailing list
> Public(a)talk.mikrotik.com.au
> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
> au
>
>
> _______________________________________________
> Public mailing list
> Public(a)talk.mikrotik.com.au
> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
> au
>
_______________________________________________
Public mailing list
Public(a)talk.mikrotik.com.au
http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
------------------------------
Message: 3
Date: Thu, 23 Nov 2017 15:34:00 +0800
From: Jeremy Hall <jeremy(a)jeremyhall.com.au>
To: public(a)talk.mikrotik.com.au
Subject: Re: [MT-AU Public] 4G WAN failover question
Message-ID:
<CAC2o=79EoV30+kd+QotGW_gd082Pr0MytqZe=WwA7btNcUi=gA(a)mail.gmail.com>
Content-Type: text/plain; charset="UTF-8"
I have had pretty good luck using a mikrotik router with a miniPCIe
interface (eg. RB911) and a 3G/4G card such as the ones Sierra Wireless
make. There is a list of compatible cards in the mikrotik wiki somewhere.
It would be a neat solution, no messy USB dongles flapping around. Duxtel
have all the kit of course.
I also highly recommend using m2mone. They can set you up with whatever you
need and it's painless and very cost effective.
On 23 Nov. 2017 2:42 pm, <public-request(a)talk.mikrotik.com.au> wrote:
Send Public mailing list submissions to
public(a)talk.mikrotik.com.au
To subscribe or unsubscribe via the World Wide Web, visit
http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mik
rotik.com.au
or, via email, send a message with subject or body 'help' to
public-request(a)talk.mikrotik.com.au
You can reach the person managing the list at
public-owner(a)talk.mikrotik.com.au
When replying, please edit your Subject line so it is more specific
than "Re: Contents of Public digest..."
Today's Topics:
1. Re: 4G WAN failover question (Paul Julian)
2. Re: 4G WAN failover question (Ben Jackson - ELOGIK)
3. Re: 4G WAN failover question (Paul Julian)
---------- Forwarded message ----------
From: Paul Julian <paul(a)oxygennetworks.com.au>
To: "'MikroTik Australia Public List'" <public(a)talk.mikrotik.com.au>
Cc:
Bcc:
Date: Thu, 23 Nov 2017 13:53:31 +1100
Subject: Re: [MT-AU Public] 4G WAN failover question
Hi Ben,
We use the Telstra Sierra Wireless 320U modems in our Mikrotik hAP devices,
the Mikrotik creates an LTE interface once the modem is inserted into the
USB port, you set the APN within the LTE interface.
Once that's connected you then configure a DHCP client on the Mikrotik on
the LTE interface and you get a public IP.
Some caveats:
- You do need to change the mode of the modem, this can be done with the
Netgear utility easily, they are a netgear unit basically.
- You need to use a 4G SIM from Telstra, prepaid or postpaid should work,
however if you want the APN with the public IP you need postpaid and need
to request that the SIM be setup with the telstra.extranet APN
Apart from that it's pretty easy.
We occasionally have the modem drop, we have a script on the Mikrotik which
checks connectivity and if it drops it does a USB power cycle which brings
it back up most of the time.
It's really not hard, and it works well.
If you want to go with Optus but without a public IP you can get the $19
dongle from Office Works, it works in the Mikrotik without any real
changes, but no public IP, fine if you can VPN out to something to use to
get back in.
Regards
Paul
-----Original Message-----
From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Ben
Jackson - ELOGIK
Sent: Thursday, 23 November 2017 11:10 AM
To: Jason Hecker; MikroTik Australia Public List
Subject: Re: [MT-AU Public] 4G WAN failover question
Thanks for the pointers everyone. There seem to be a number of factors at
play here:
1) Most of the LTE USB modems you can purchase have some kind of "router on
a stick" built in which provides a firewalled, DHCP assigned private IP on
the LAN side in the normal ranges of 192.168.x.x or 10.x.x.x. In Huawei's
case this is known as "HiLink mode".
2) In addition to this, depending on which provider they are bought from,
these modems / dongles are flashed with an ISP-specific firmware which
further locks down the device to stop certain features being exposed to
the device's web-interface. This makes it tricky to change things such as
the APN settings.
3) The above types of device (i've been mainly concerned with the Huawei
E3372 since that's the one my router has support for) can apparently be
re-flashed with custom firmware which allows HiLink mode to be switched off
(see here:
http://www.0xf8.org/2017/01/flashing-a-huawei-e3372h-4g-lte-
stick-from-hilink-to-stick-mode/)
this will apparently allow the "public" IP to be assigned directly to the
device connected to the USB port and avoids the pesky double NAT situation.
4) The reason I say "public" in quotes above is because even if you manage
to pass this address through, quite often the address itself is not a true
public IP as it is behind carrier NAT and you are back to square 1.
For those interested, here are the options I'm exploring:
1) Getting a sierra 320U unlocked from ebay which can be used in "stick
mode" without NAT or DHCP enabled and purchasing a SIM plan from either
M2MOne or URL networks which has a "true" public IP (with all the public
health and DDOS warnings this entails!)
2) Buying an LTE router such as:
Dovado Tiny
MikroTik SXT LTE
Netgear (I know!) LB1111
TP-Link MR6400
and then using the same sim card as above. From the research I've done,
these devices have a "passthrough" or bridge mode which will present the
LTE public IP directly to my main router, albeit via an RJ45 / ethernet
connection.
Ben
*BEN JACKSON*
Director
*M *0404 924745
*E* ben(a)elogik.com.au
*W* elogik.com.au <http://www.elogik.com.au/> <http://www.elogik.com.au>
On Wed, Nov 22, 2017 at 6:15 PM, Jason Hecker (Up & Running Tech) <
jason(a)upandrunningtech.com.au> wrote:
> Oh I see, OK, sounds like you need something that will do a PPP
> session which some 4G cards will let you do if you put them into
> serial mode like the Telit LE910 (which I have tried) or the Sierra
modules.
>
> If you end up with a static or dynamic public IP you can cname the
> dynamic DNS Mikrotik provides in the router's ip->cloud settings and
> set the timeout to 60, so you could get at it like
> bighonchoclient1.elogik.net for example.
>
> I kicked the idea around but never tried buying a cheap VPS with a
> static IP and having the 4G based Mikrotik VPN into it, then on the
> VPS port forward any ports to services behind the 4G device.
>
> On 22 November 2017 at 15:59, Ben Jackson - ELOGIK <ben(a)elogik.net> wrote:
>
>> Hi Jason,
>>
>> OK, I didn't phrase my question very well, what I need is a dongle
>> or
> card
>> that doesn't provide an extra layer of NAT (as many do) and run an
> internal
>> DHCP sever so that the routers cellular interface ends up with an IP
>> address like 192.168.x.x but instead passes the public IP directly.
>> This
> is
>> so I don't end up with a double NAT situation (kind of the
>> equivalent of bridge mode for a DSL modem) and I can access
>> resources (like security systems etc) behind the public IP by
>> configuring the main firewall /
> router
>> accordingly.
>>
>> Ben
>>
>> *BEN JACKSON*
>> Director
>>
>> *M *0404 924745
>> *E* ben(a)elogik.com.au
>> *W* elogik.com.au <http://www.elogik.com.au/>
>> <http://www.elogik.com.au>
>>
>>
>> On Wed, Nov 22, 2017 at 2:24 PM, Jason Hecker (Up & Running Tech) <
>> jason(a)upandrunningtech.com.au> wrote:
>>
>>> What if you had those routers phone home to a VPN server in your
>>> office over 4G? They'd always be in easy reach on private subnet
>>> on your LAN
> and
>>> you wouldn't need to worry about public or static IPs for your 4G
> widget.
>>>
>>> I noticed Duxtel configured devices I have bought have a PPTP
>>> client set up so if you activate it then Duxtel can peer into the
>>> device and assist
> with
>>> any issues.
>>>
>>> On 22 November 2017 at 13:46, Ben Jackson - ELOGIK <ben(a)elogik.net>
>>> wrote:
>>>
>>>> Does anyone have any advice on a) a decent 4g service that
>>>> provides a publicly accessible IP address that ports can be
>>>> forwarded through as
>>> well
>>>> as how to get hold of an unlocked USB dongle which will support
>>>> the
> SIM
>>> /
>>>> service?
>>>>
>>>> Or even a provider that provides this on one of their business plans?
>>>>
>>>> If it can be a prepaid plan even better.
>>>>
>>>> I'm looking to use said device as 4G failover on a meraki mx64
> security
>>>> appliance and calling the usual suspects (Optus, telstra) is
>>>> giving
> me a
>>>> headache.
>>>>
>>>> Any advice on what others have done in this scenario would be
>>>> most appreciated.
>>>>
>>>> Best regards,
>>>>
>>>> Ben Jackson
>>>> eLogik
>>>>
>>>> (Sent from my mobile device)
>>>> _______________________________________________
>>>> Public mailing list
>>>> Public(a)talk.mikrotik.com.au
>>>> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mik
>>> rotik.com.au
>>>>
>>>
>>>
>>>
>>> --
>>> <https://www.upandrunningtech.com.au>
>>> _______________________________________________
>>> Public mailing list
>>> Public(a)talk.mikrotik.com.au
>>> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.
> mikrotik.com.au
>>>
>>
>>
>
>
> --
> <https://www.upandrunningtech.com.au>
> _______________________________________________
> Public mailing list
> Public(a)talk.mikrotik.com.au
> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
> au
>
_______________________________________________
Public mailing list
Public(a)talk.mikrotik.com.au
http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
---------- Forwarded message ----------
From: Ben Jackson - ELOGIK <ben(a)elogik.net>
To: MikroTik Australia Public List <public(a)talk.mikrotik.com.au>
Cc:
Bcc:
Date: Thu, 23 Nov 2017 17:38:16 +1100
Subject: Re: [MT-AU Public] 4G WAN failover question
Great info Paul - thanks for this. I think with all this in mind I'll be
able to tailor a solution
Thanks again for everyone's input.
*BEN JACKSON*
Director
*M *0404 924745
*E* ben(a)elogik.com.au
*W* elogik.com.au <http://www.elogik.com.au/>
<http://www.elogik.com.au>
On Thu, Nov 23, 2017 at 1:53 PM, Paul Julian <paul(a)oxygennetworks.com.au>
wrote:
> Hi Ben,
>
> We use the Telstra Sierra Wireless 320U modems in our Mikrotik hAP
> devices, the Mikrotik creates an LTE interface once the modem is inserted
> into the USB port, you set the APN within the LTE interface.
> Once that's connected you then configure a DHCP client on the Mikrotik on
> the LTE interface and you get a public IP.
>
> Some caveats:
> - You do need to change the mode of the modem, this can be done with the
> Netgear utility easily, they are a netgear unit basically.
> - You need to use a 4G SIM from Telstra, prepaid or postpaid should work,
> however if you want the APN with the public IP you need postpaid and need
> to request that the SIM be setup with the telstra.extranet APN
>
> Apart from that it's pretty easy.
>
> We occasionally have the modem drop, we have a script on the Mikrotik
> which checks connectivity and if it drops it does a USB power cycle which
> brings it back up most of the time.
>
> It's really not hard, and it works well.
>
> If you want to go with Optus but without a public IP you can get the $19
> dongle from Office Works, it works in the Mikrotik without any real
> changes, but no public IP, fine if you can VPN out to something to use to
> get back in.
>
> Regards
> Paul
>
>
> -----Original Message-----
> From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of
> Ben Jackson - ELOGIK
> Sent: Thursday, 23 November 2017 11:10 AM
> To: Jason Hecker; MikroTik Australia Public List
> Subject: Re: [MT-AU Public] 4G WAN failover question
>
> Thanks for the pointers everyone. There seem to be a number of factors at
> play here:
>
> 1) Most of the LTE USB modems you can purchase have some kind of "router
> on a stick" built in which provides a firewalled, DHCP assigned private IP
> on the LAN side in the normal ranges of 192.168.x.x or 10.x.x.x. In
> Huawei's case this is known as "HiLink mode".
> 2) In addition to this, depending on which provider they are bought from,
> these modems / dongles are flashed with an ISP-specific firmware which
> further locks down the device to stop certain features being exposed to
> the device's web-interface. This makes it tricky to change things such as
> the APN settings.
> 3) The above types of device (i've been mainly concerned with the Huawei
> E3372 since that's the one my router has support for) can apparently be
> re-flashed with custom firmware which allows HiLink mode to be switched
off
> (see here:
> http://www.0xf8.org/2017/01/flashing-a-huawei-e3372h-4g-
> lte-stick-from-hilink-to-stick-mode/)
> this will apparently allow the "public" IP to be assigned directly to the
> device connected to the USB port and avoids the pesky double NAT
situation.
> 4) The reason I say "public" in quotes above is because even if you manage
> to pass this address through, quite often the address itself is not a true
> public IP as it is behind carrier NAT and you are back to square 1.
>
> For those interested, here are the options I'm exploring:
>
> 1) Getting a sierra 320U unlocked from ebay which can be used in "stick
> mode" without NAT or DHCP enabled and purchasing a SIM plan from either
> M2MOne or URL networks which has a "true" public IP (with all the public
> health and DDOS warnings this entails!)
> 2) Buying an LTE router such as:
>
> Dovado Tiny
> MikroTik SXT LTE
> Netgear (I know!) LB1111
> TP-Link MR6400
>
> and then using the same sim card as above. From the research I've done,
> these devices have a "passthrough" or bridge mode which will present the
> LTE public IP directly to my main router, albeit via an RJ45 / ethernet
> connection.
>
> Ben
>
> *BEN JACKSON*
> Director
>
> *M *0404 924745
> *E* ben(a)elogik.com.au
> *W* elogik.com.au <http://www.elogik.com.au/> <http://www.elogik.com.au>
>
>
> On Wed, Nov 22, 2017 at 6:15 PM, Jason Hecker (Up & Running Tech) <
> jason(a)upandrunningtech.com.au> wrote:
>
>> Oh I see, OK, sounds like you need something that will do a PPP
>> session which some 4G cards will let you do if you put them into
>> serial mode like the Telit LE910 (which I have tried) or the Sierra
> modules.
>>
>> If you end up with a static or dynamic public IP you can cname the
>> dynamic DNS Mikrotik provides in the router's ip->cloud settings and
>> set the timeout to 60, so you could get at it like
>> bighonchoclient1.elogik.net for example.
>>
>> I kicked the idea around but never tried buying a cheap VPS with a
>> static IP and having the 4G based Mikrotik VPN into it, then on the
>> VPS port forward any ports to services behind the 4G device.
>>
>> On 22 November 2017 at 15:59, Ben Jackson - ELOGIK <ben(a)elogik.net>
> wrote:
>>
>>> Hi Jason,
>>>
>>> OK, I didn't phrase my question very well, what I need is a dongle
>>> or
>> card
>>> that doesn't provide an extra layer of NAT (as many do) and run an
>> internal
>>> DHCP sever so that the routers cellular interface ends up with an IP
>>> address like 192.168.x.x but instead passes the public IP directly.
>>> This
>> is
>>> so I don't end up with a double NAT situation (kind of the
>>> equivalent of bridge mode for a DSL modem) and I can access
>>> resources (like security systems etc) behind the public IP by
>>> configuring the main firewall /
>> router
>>> accordingly.
>>>
>>> Ben
>>>
>>> *BEN JACKSON*
>>> Director
>>>
>>> *M *0404 924745
>>> *E* ben(a)elogik.com.au
>>> *W* elogik.com.au <http://www.elogik.com.au/>
>>> <http://www.elogik.com.au>
>>>
>>>
>>> On Wed, Nov 22, 2017 at 2:24 PM, Jason Hecker (Up & Running Tech) <
>>> jason(a)upandrunningtech.com.au> wrote:
>>>
>>>> What if you had those routers phone home to a VPN server in your
>>>> office over 4G? They'd always be in easy reach on private subnet
>>>> on your LAN
>> and
>>>> you wouldn't need to worry about public or static IPs for your 4G
>> widget.
>>>>
>>>> I noticed Duxtel configured devices I have bought have a PPTP
>>>> client set up so if you activate it then Duxtel can peer into the
>>>> device and assist
>> with
>>>> any issues.
>>>>
>>>> On 22 November 2017 at 13:46, Ben Jackson - ELOGIK <ben(a)elogik.net>
>>>> wrote:
>>>>
>>>>> Does anyone have any advice on a) a decent 4g service that
>>>>> provides a publicly accessible IP address that ports can be
>>>>> forwarded through as
>>>> well
>>>>> as how to get hold of an unlocked USB dongle which will support
>>>>> the
>> SIM
>>>> /
>>>>> service?
>>>>>
>>>>> Or even a provider that provides this on one of their business
> plans?
>>>>>
>>>>> If it can be a prepaid plan even better.
>>>>>
>>>>> I'm looking to use said device as 4G failover on a meraki mx64
>> security
>>>>> appliance and calling the usual suspects (Optus, telstra) is
>>>>> giving
>> me a
>>>>> headache.
>>>>>
>>>>> Any advice on what others have done in this scenario would be
>>>>> most appreciated.
>>>>>
>>>>> Best regards,
>>>>>
>>>>> Ben Jackson
>>>>> eLogik
>>>>>
>>>>> (Sent from my mobile device)
>>>>> _______________________________________________
>>>>> Public mailing list
>>>>> Public(a)talk.mikrotik.com.au
>>>>> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mik
>>>> rotik.com.au
>>>>>
>>>>
>>>>
>>>>
>>>> --
>>>> <https://www.upandrunningtech.com.au>
>>>> _______________________________________________
>>>> Public mailing list
>>>> Public(a)talk.mikrotik.com.au
>>>> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.
>> mikrotik.com.au
>>>>
>>>
>>>
>>
>>
>> --
>> <https://www.upandrunningtech.com.au>
>> _______________________________________________
>> Public mailing list
>> Public(a)talk.mikrotik.com.au
>> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
>> au
>>
> _______________________________________________
> Public mailing list
> Public(a)talk.mikrotik.com.au
> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
>
>
> _______________________________________________
> Public mailing list
> Public(a)talk.mikrotik.com.au
> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
>
---------- Forwarded message ----------
From: Paul Julian <paul(a)oxygennetworks.com.au>
To: "'MikroTik Australia Public List'" <public(a)talk.mikrotik.com.au>
Cc:
Bcc:
Date: Thu, 23 Nov 2017 17:42:31 +1100
Subject: Re: [MT-AU Public] 4G WAN failover question
No problem, good luck.
Regards
Paul
-----Original Message-----
From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Ben
Jackson - ELOGIK
Sent: Thursday, 23 November 2017 5:38 PM
To: MikroTik Australia Public List
Subject: Re: [MT-AU Public] 4G WAN failover question
Great info Paul - thanks for this. I think with all this in mind I'll be
able to tailor a solution
Thanks again for everyone's input.
*BEN JACKSON*
Director
*M *0404 924745
*E* ben(a)elogik.com.au
*W* elogik.com.au <http://www.elogik.com.au/> <http://www.elogik.com.au>
On Thu, Nov 23, 2017 at 1:53 PM, Paul Julian <paul(a)oxygennetworks.com.au>
wrote:
> Hi Ben,
>
> We use the Telstra Sierra Wireless 320U modems in our Mikrotik hAP
> devices, the Mikrotik creates an LTE interface once the modem is
> inserted into the USB port, you set the APN within the LTE interface.
> Once that's connected you then configure a DHCP client on the Mikrotik
> on the LTE interface and you get a public IP.
>
> Some caveats:
> - You do need to change the mode of the modem, this can be done with
> the Netgear utility easily, they are a netgear unit basically.
> - You need to use a 4G SIM from Telstra, prepaid or postpaid should
> work, however if you want the APN with the public IP you need postpaid
> and need to request that the SIM be setup with the telstra.extranet
> APN
>
> Apart from that it's pretty easy.
>
> We occasionally have the modem drop, we have a script on the Mikrotik
> which checks connectivity and if it drops it does a USB power cycle
> which brings it back up most of the time.
>
> It's really not hard, and it works well.
>
> If you want to go with Optus but without a public IP you can get the
> $19 dongle from Office Works, it works in the Mikrotik without any
> real changes, but no public IP, fine if you can VPN out to something
> to use to get back in.
>
> Regards
> Paul
>
>
> -----Original Message-----
> From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of
> Ben Jackson - ELOGIK
> Sent: Thursday, 23 November 2017 11:10 AM
> To: Jason Hecker; MikroTik Australia Public List
> Subject: Re: [MT-AU Public] 4G WAN failover question
>
> Thanks for the pointers everyone. There seem to be a number of
> factors at play here:
>
> 1) Most of the LTE USB modems you can purchase have some kind of
> "router on a stick" built in which provides a firewalled, DHCP
> assigned private IP on the LAN side in the normal ranges of
> 192.168.x.x or 10.x.x.x. In Huawei's case this is known as "HiLink mode".
> 2) In addition to this, depending on which provider they are bought
> from, these modems / dongles are flashed with an ISP-specific firmware
> which further locks down the device to stop certain features being
> exposed to the device's web-interface. This makes it tricky to change
> things such as the APN settings.
> 3) The above types of device (i've been mainly concerned with the
> Huawei
> E3372 since that's the one my router has support for) can apparently
> be re-flashed with custom firmware which allows HiLink mode to be
> switched off (see here:
> http://www.0xf8.org/2017/01/flashing-a-huawei-e3372h-4g-
> lte-stick-from-hilink-to-stick-mode/)
> this will apparently allow the "public" IP to be assigned directly to
> the device connected to the USB port and avoids the pesky double NAT
situation.
> 4) The reason I say "public" in quotes above is because even if you
> manage to pass this address through, quite often the address itself is
> not a true public IP as it is behind carrier NAT and you are back to
square 1.
>
> For those interested, here are the options I'm exploring:
>
> 1) Getting a sierra 320U unlocked from ebay which can be used in
> "stick mode" without NAT or DHCP enabled and purchasing a SIM plan
> from either M2MOne or URL networks which has a "true" public IP (with
> all the public health and DDOS warnings this entails!)
> 2) Buying an LTE router such as:
>
> Dovado Tiny
> MikroTik SXT LTE
> Netgear (I know!) LB1111
> TP-Link MR6400
>
> and then using the same sim card as above. From the research I've
> done, these devices have a "passthrough" or bridge mode which will
> present the LTE public IP directly to my main router, albeit via an
> RJ45 / ethernet connection.
>
> Ben
>
> *BEN JACKSON*
> Director
>
> *M *0404 924745
> *E* ben(a)elogik.com.au
> *W* elogik.com.au <http://www.elogik.com.au/>
> <http://www.elogik.com.au>
>
>
> On Wed, Nov 22, 2017 at 6:15 PM, Jason Hecker (Up & Running Tech) <
> jason(a)upandrunningtech.com.au> wrote:
>
>> Oh I see, OK, sounds like you need something that will do a PPP
>> session which some 4G cards will let you do if you put them into
>> serial mode like the Telit LE910 (which I have tried) or the Sierra
> modules.
>>
>> If you end up with a static or dynamic public IP you can cname the
>> dynamic DNS Mikrotik provides in the router's ip->cloud settings and
>> set the timeout to 60, so you could get at it like
>> bighonchoclient1.elogik.net for example.
>>
>> I kicked the idea around but never tried buying a cheap VPS with a
>> static IP and having the 4G based Mikrotik VPN into it, then on the
>> VPS port forward any ports to services behind the 4G device.
>>
>> On 22 November 2017 at 15:59, Ben Jackson - ELOGIK <ben(a)elogik.net>
> wrote:
>>
>>> Hi Jason,
>>>
>>> OK, I didn't phrase my question very well, what I need is a dongle
>>> or
>> card
>>> that doesn't provide an extra layer of NAT (as many do) and run an
>> internal
>>> DHCP sever so that the routers cellular interface ends up with an
>>> IP address like 192.168.x.x but instead passes the public IP directly.
>>> This
>> is
>>> so I don't end up with a double NAT situation (kind of the
>>> equivalent of bridge mode for a DSL modem) and I can access
>>> resources (like security systems etc) behind the public IP by
>>> configuring the main firewall /
>> router
>>> accordingly.
>>>
>>> Ben
>>>
>>> *BEN JACKSON*
>>> Director
>>>
>>> *M *0404 924745
>>> *E* ben(a)elogik.com.au
>>> *W* elogik.com.au <http://www.elogik.com.au/>
>>> <http://www.elogik.com.au>
>>>
>>>
>>> On Wed, Nov 22, 2017 at 2:24 PM, Jason Hecker (Up & Running Tech)
>>> < jason(a)upandrunningtech.com.au> wrote:
>>>
>>>> What if you had those routers phone home to a VPN server in your
>>>> office over 4G? They'd always be in easy reach on private subnet
>>>> on your LAN
>> and
>>>> you wouldn't need to worry about public or static IPs for your 4G
>> widget.
>>>>
>>>> I noticed Duxtel configured devices I have bought have a PPTP
>>>> client set up so if you activate it then Duxtel can peer into the
>>>> device and assist
>> with
>>>> any issues.
>>>>
>>>> On 22 November 2017 at 13:46, Ben Jackson - ELOGIK
>>>> <ben(a)elogik.net>
>>>> wrote:
>>>>
>>>>> Does anyone have any advice on a) a decent 4g service that
>>>>> provides a publicly accessible IP address that ports can be
>>>>> forwarded through as
>>>> well
>>>>> as how to get hold of an unlocked USB dongle which will support
>>>>> the
>> SIM
>>>> /
>>>>> service?
>>>>>
>>>>> Or even a provider that provides this on one of their business
> plans?
>>>>>
>>>>> If it can be a prepaid plan even better.
>>>>>
>>>>> I'm looking to use said device as 4G failover on a meraki mx64
>> security
>>>>> appliance and calling the usual suspects (Optus, telstra) is
>>>>> giving
>> me a
>>>>> headache.
>>>>>
>>>>> Any advice on what others have done in this scenario would be
>>>>> most appreciated.
>>>>>
>>>>> Best regards,
>>>>>
>>>>> Ben Jackson
>>>>> eLogik
>>>>>
>>>>> (Sent from my mobile device)
>>>>> _______________________________________________
>>>>> Public mailing list
>>>>> Public(a)talk.mikrotik.com.au
>>>>> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mik
>>>> rotik.com.au
>>>>>
>>>>
>>>>
>>>>
>>>> --
>>>> <https://www.upandrunningtech.com.au>
>>>> _______________________________________________
>>>> Public mailing list
>>>> Public(a)talk.mikrotik.com.au
>>>> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.
>> mikrotik.com.au
>>>>
>>>
>>>
>>
>>
>> --
>> <https://www.upandrunningtech.com.au>
>> _______________________________________________
>> Public mailing list
>> Public(a)talk.mikrotik.com.au
>> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
>> au
>>
> _______________________________________________
> Public mailing list
> Public(a)talk.mikrotik.com.au
> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
> au
>
>
> _______________________________________________
> Public mailing list
> Public(a)talk.mikrotik.com.au
> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
> au
>
_______________________________________________
Public mailing list
Public(a)talk.mikrotik.com.au
http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
_______________________________________________
Public mailing list
Public(a)talk.mikrotik.com.au
http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
------------------------------
Subject: Digest Footer
_______________________________________________
Public mailing list
Public(a)talk.mikrotik.com.au
http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
------------------------------
End of Public Digest, Vol 45, Issue 6
*************************************
1
0
I have had pretty good luck using a mikrotik router with a miniPCIe
interface (eg. RB911) and a 3G/4G card such as the ones Sierra Wireless
make. There is a list of compatible cards in the mikrotik wiki somewhere.
It would be a neat solution, no messy USB dongles flapping around. Duxtel
have all the kit of course.
I also highly recommend using m2mone. They can set you up with whatever you
need and it's painless and very cost effective.
On 23 Nov. 2017 2:42 pm, <public-request(a)talk.mikrotik.com.au> wrote:
Send Public mailing list submissions to
public(a)talk.mikrotik.com.au
To subscribe or unsubscribe via the World Wide Web, visit
http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mik
rotik.com.au
or, via email, send a message with subject or body 'help' to
public-request(a)talk.mikrotik.com.au
You can reach the person managing the list at
public-owner(a)talk.mikrotik.com.au
When replying, please edit your Subject line so it is more specific
than "Re: Contents of Public digest..."
Today's Topics:
1. Re: 4G WAN failover question (Paul Julian)
2. Re: 4G WAN failover question (Ben Jackson - ELOGIK)
3. Re: 4G WAN failover question (Paul Julian)
---------- Forwarded message ----------
From: Paul Julian <paul(a)oxygennetworks.com.au>
To: "'MikroTik Australia Public List'" <public(a)talk.mikrotik.com.au>
Cc:
Bcc:
Date: Thu, 23 Nov 2017 13:53:31 +1100
Subject: Re: [MT-AU Public] 4G WAN failover question
Hi Ben,
We use the Telstra Sierra Wireless 320U modems in our Mikrotik hAP devices,
the Mikrotik creates an LTE interface once the modem is inserted into the
USB port, you set the APN within the LTE interface.
Once that's connected you then configure a DHCP client on the Mikrotik on
the LTE interface and you get a public IP.
Some caveats:
- You do need to change the mode of the modem, this can be done with the
Netgear utility easily, they are a netgear unit basically.
- You need to use a 4G SIM from Telstra, prepaid or postpaid should work,
however if you want the APN with the public IP you need postpaid and need
to request that the SIM be setup with the telstra.extranet APN
Apart from that it's pretty easy.
We occasionally have the modem drop, we have a script on the Mikrotik which
checks connectivity and if it drops it does a USB power cycle which brings
it back up most of the time.
It's really not hard, and it works well.
If you want to go with Optus but without a public IP you can get the $19
dongle from Office Works, it works in the Mikrotik without any real
changes, but no public IP, fine if you can VPN out to something to use to
get back in.
Regards
Paul
-----Original Message-----
From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Ben
Jackson - ELOGIK
Sent: Thursday, 23 November 2017 11:10 AM
To: Jason Hecker; MikroTik Australia Public List
Subject: Re: [MT-AU Public] 4G WAN failover question
Thanks for the pointers everyone. There seem to be a number of factors at
play here:
1) Most of the LTE USB modems you can purchase have some kind of "router on
a stick" built in which provides a firewalled, DHCP assigned private IP on
the LAN side in the normal ranges of 192.168.x.x or 10.x.x.x. In Huawei's
case this is known as "HiLink mode".
2) In addition to this, depending on which provider they are bought from,
these modems / dongles are flashed with an ISP-specific firmware which
further locks down the device to stop certain features being exposed to
the device's web-interface. This makes it tricky to change things such as
the APN settings.
3) The above types of device (i've been mainly concerned with the Huawei
E3372 since that's the one my router has support for) can apparently be
re-flashed with custom firmware which allows HiLink mode to be switched off
(see here:
http://www.0xf8.org/2017/01/flashing-a-huawei-e3372h-4g-lte-
stick-from-hilink-to-stick-mode/)
this will apparently allow the "public" IP to be assigned directly to the
device connected to the USB port and avoids the pesky double NAT situation.
4) The reason I say "public" in quotes above is because even if you manage
to pass this address through, quite often the address itself is not a true
public IP as it is behind carrier NAT and you are back to square 1.
For those interested, here are the options I'm exploring:
1) Getting a sierra 320U unlocked from ebay which can be used in "stick
mode" without NAT or DHCP enabled and purchasing a SIM plan from either
M2MOne or URL networks which has a "true" public IP (with all the public
health and DDOS warnings this entails!)
2) Buying an LTE router such as:
Dovado Tiny
MikroTik SXT LTE
Netgear (I know!) LB1111
TP-Link MR6400
and then using the same sim card as above. From the research I've done,
these devices have a "passthrough" or bridge mode which will present the
LTE public IP directly to my main router, albeit via an RJ45 / ethernet
connection.
Ben
*BEN JACKSON*
Director
*M *0404 924745
*E* ben(a)elogik.com.au
*W* elogik.com.au <http://www.elogik.com.au/> <http://www.elogik.com.au>
On Wed, Nov 22, 2017 at 6:15 PM, Jason Hecker (Up & Running Tech) <
jason(a)upandrunningtech.com.au> wrote:
> Oh I see, OK, sounds like you need something that will do a PPP
> session which some 4G cards will let you do if you put them into
> serial mode like the Telit LE910 (which I have tried) or the Sierra
modules.
>
> If you end up with a static or dynamic public IP you can cname the
> dynamic DNS Mikrotik provides in the router's ip->cloud settings and
> set the timeout to 60, so you could get at it like
> bighonchoclient1.elogik.net for example.
>
> I kicked the idea around but never tried buying a cheap VPS with a
> static IP and having the 4G based Mikrotik VPN into it, then on the
> VPS port forward any ports to services behind the 4G device.
>
> On 22 November 2017 at 15:59, Ben Jackson - ELOGIK <ben(a)elogik.net> wrote:
>
> > Hi Jason,
> >
> > OK, I didn't phrase my question very well, what I need is a dongle
> > or
> card
> > that doesn't provide an extra layer of NAT (as many do) and run an
> internal
> > DHCP sever so that the routers cellular interface ends up with an IP
> > address like 192.168.x.x but instead passes the public IP directly.
> > This
> is
> > so I don't end up with a double NAT situation (kind of the
> > equivalent of bridge mode for a DSL modem) and I can access
> > resources (like security systems etc) behind the public IP by
> > configuring the main firewall /
> router
> > accordingly.
> >
> > Ben
> >
> > *BEN JACKSON*
> > Director
> >
> > *M *0404 924745
> > *E* ben(a)elogik.com.au
> > *W* elogik.com.au <http://www.elogik.com.au/>
> > <http://www.elogik.com.au>
> >
> >
> > On Wed, Nov 22, 2017 at 2:24 PM, Jason Hecker (Up & Running Tech) <
> > jason(a)upandrunningtech.com.au> wrote:
> >
> >> What if you had those routers phone home to a VPN server in your
> >> office over 4G? They'd always be in easy reach on private subnet
> >> on your LAN
> and
> >> you wouldn't need to worry about public or static IPs for your 4G
> widget.
> >>
> >> I noticed Duxtel configured devices I have bought have a PPTP
> >> client set up so if you activate it then Duxtel can peer into the
> >> device and assist
> with
> >> any issues.
> >>
> >> On 22 November 2017 at 13:46, Ben Jackson - ELOGIK <ben(a)elogik.net>
> >> wrote:
> >>
> >> > Does anyone have any advice on a) a decent 4g service that
> >> > provides a publicly accessible IP address that ports can be
> >> > forwarded through as
> >> well
> >> > as how to get hold of an unlocked USB dongle which will support
> >> > the
> SIM
> >> /
> >> > service?
> >> >
> >> > Or even a provider that provides this on one of their business plans?
> >> >
> >> > If it can be a prepaid plan even better.
> >> >
> >> > I'm looking to use said device as 4G failover on a meraki mx64
> security
> >> > appliance and calling the usual suspects (Optus, telstra) is
> >> > giving
> me a
> >> > headache.
> >> >
> >> > Any advice on what others have done in this scenario would be
> >> > most appreciated.
> >> >
> >> > Best regards,
> >> >
> >> > Ben Jackson
> >> > eLogik
> >> >
> >> > (Sent from my mobile device)
> >> > _______________________________________________
> >> > Public mailing list
> >> > Public(a)talk.mikrotik.com.au
> >> > http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mik
> >> rotik.com.au
> >> >
> >>
> >>
> >>
> >> --
> >> <https://www.upandrunningtech.com.au>
> >> _______________________________________________
> >> Public mailing list
> >> Public(a)talk.mikrotik.com.au
> >> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.
> mikrotik.com.au
> >>
> >
> >
>
>
> --
> <https://www.upandrunningtech.com.au>
> _______________________________________________
> Public mailing list
> Public(a)talk.mikrotik.com.au
> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
> au
>
_______________________________________________
Public mailing list
Public(a)talk.mikrotik.com.au
http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
---------- Forwarded message ----------
From: Ben Jackson - ELOGIK <ben(a)elogik.net>
To: MikroTik Australia Public List <public(a)talk.mikrotik.com.au>
Cc:
Bcc:
Date: Thu, 23 Nov 2017 17:38:16 +1100
Subject: Re: [MT-AU Public] 4G WAN failover question
Great info Paul - thanks for this. I think with all this in mind I'll be
able to tailor a solution
Thanks again for everyone's input.
*BEN JACKSON*
Director
*M *0404 924745
*E* ben(a)elogik.com.au
*W* elogik.com.au <http://www.elogik.com.au/>
<http://www.elogik.com.au>
On Thu, Nov 23, 2017 at 1:53 PM, Paul Julian <paul(a)oxygennetworks.com.au>
wrote:
> Hi Ben,
>
> We use the Telstra Sierra Wireless 320U modems in our Mikrotik hAP
> devices, the Mikrotik creates an LTE interface once the modem is inserted
> into the USB port, you set the APN within the LTE interface.
> Once that's connected you then configure a DHCP client on the Mikrotik on
> the LTE interface and you get a public IP.
>
> Some caveats:
> - You do need to change the mode of the modem, this can be done with the
> Netgear utility easily, they are a netgear unit basically.
> - You need to use a 4G SIM from Telstra, prepaid or postpaid should work,
> however if you want the APN with the public IP you need postpaid and need
> to request that the SIM be setup with the telstra.extranet APN
>
> Apart from that it's pretty easy.
>
> We occasionally have the modem drop, we have a script on the Mikrotik
> which checks connectivity and if it drops it does a USB power cycle which
> brings it back up most of the time.
>
> It's really not hard, and it works well.
>
> If you want to go with Optus but without a public IP you can get the $19
> dongle from Office Works, it works in the Mikrotik without any real
> changes, but no public IP, fine if you can VPN out to something to use to
> get back in.
>
> Regards
> Paul
>
>
> -----Original Message-----
> From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of
> Ben Jackson - ELOGIK
> Sent: Thursday, 23 November 2017 11:10 AM
> To: Jason Hecker; MikroTik Australia Public List
> Subject: Re: [MT-AU Public] 4G WAN failover question
>
> Thanks for the pointers everyone. There seem to be a number of factors at
> play here:
>
> 1) Most of the LTE USB modems you can purchase have some kind of "router
> on a stick" built in which provides a firewalled, DHCP assigned private IP
> on the LAN side in the normal ranges of 192.168.x.x or 10.x.x.x. In
> Huawei's case this is known as "HiLink mode".
> 2) In addition to this, depending on which provider they are bought from,
> these modems / dongles are flashed with an ISP-specific firmware which
> further locks down the device to stop certain features being exposed to
> the device's web-interface. This makes it tricky to change things such as
> the APN settings.
> 3) The above types of device (i've been mainly concerned with the Huawei
> E3372 since that's the one my router has support for) can apparently be
> re-flashed with custom firmware which allows HiLink mode to be switched
off
> (see here:
> http://www.0xf8.org/2017/01/flashing-a-huawei-e3372h-4g-
> lte-stick-from-hilink-to-stick-mode/)
> this will apparently allow the "public" IP to be assigned directly to the
> device connected to the USB port and avoids the pesky double NAT
situation.
> 4) The reason I say "public" in quotes above is because even if you manage
> to pass this address through, quite often the address itself is not a true
> public IP as it is behind carrier NAT and you are back to square 1.
>
> For those interested, here are the options I'm exploring:
>
> 1) Getting a sierra 320U unlocked from ebay which can be used in "stick
> mode" without NAT or DHCP enabled and purchasing a SIM plan from either
> M2MOne or URL networks which has a "true" public IP (with all the public
> health and DDOS warnings this entails!)
> 2) Buying an LTE router such as:
>
> Dovado Tiny
> MikroTik SXT LTE
> Netgear (I know!) LB1111
> TP-Link MR6400
>
> and then using the same sim card as above. From the research I've done,
> these devices have a "passthrough" or bridge mode which will present the
> LTE public IP directly to my main router, albeit via an RJ45 / ethernet
> connection.
>
> Ben
>
> *BEN JACKSON*
> Director
>
> *M *0404 924745
> *E* ben(a)elogik.com.au
> *W* elogik.com.au <http://www.elogik.com.au/> <http://www.elogik.com.au>
>
>
> On Wed, Nov 22, 2017 at 6:15 PM, Jason Hecker (Up & Running Tech) <
> jason(a)upandrunningtech.com.au> wrote:
>
> > Oh I see, OK, sounds like you need something that will do a PPP
> > session which some 4G cards will let you do if you put them into
> > serial mode like the Telit LE910 (which I have tried) or the Sierra
> modules.
> >
> > If you end up with a static or dynamic public IP you can cname the
> > dynamic DNS Mikrotik provides in the router's ip->cloud settings and
> > set the timeout to 60, so you could get at it like
> > bighonchoclient1.elogik.net for example.
> >
> > I kicked the idea around but never tried buying a cheap VPS with a
> > static IP and having the 4G based Mikrotik VPN into it, then on the
> > VPS port forward any ports to services behind the 4G device.
> >
> > On 22 November 2017 at 15:59, Ben Jackson - ELOGIK <ben(a)elogik.net>
> wrote:
> >
> > > Hi Jason,
> > >
> > > OK, I didn't phrase my question very well, what I need is a dongle
> > > or
> > card
> > > that doesn't provide an extra layer of NAT (as many do) and run an
> > internal
> > > DHCP sever so that the routers cellular interface ends up with an IP
> > > address like 192.168.x.x but instead passes the public IP directly.
> > > This
> > is
> > > so I don't end up with a double NAT situation (kind of the
> > > equivalent of bridge mode for a DSL modem) and I can access
> > > resources (like security systems etc) behind the public IP by
> > > configuring the main firewall /
> > router
> > > accordingly.
> > >
> > > Ben
> > >
> > > *BEN JACKSON*
> > > Director
> > >
> > > *M *0404 924745
> > > *E* ben(a)elogik.com.au
> > > *W* elogik.com.au <http://www.elogik.com.au/>
> > > <http://www.elogik.com.au>
> > >
> > >
> > > On Wed, Nov 22, 2017 at 2:24 PM, Jason Hecker (Up & Running Tech) <
> > > jason(a)upandrunningtech.com.au> wrote:
> > >
> > >> What if you had those routers phone home to a VPN server in your
> > >> office over 4G? They'd always be in easy reach on private subnet
> > >> on your LAN
> > and
> > >> you wouldn't need to worry about public or static IPs for your 4G
> > widget.
> > >>
> > >> I noticed Duxtel configured devices I have bought have a PPTP
> > >> client set up so if you activate it then Duxtel can peer into the
> > >> device and assist
> > with
> > >> any issues.
> > >>
> > >> On 22 November 2017 at 13:46, Ben Jackson - ELOGIK <ben(a)elogik.net>
> > >> wrote:
> > >>
> > >> > Does anyone have any advice on a) a decent 4g service that
> > >> > provides a publicly accessible IP address that ports can be
> > >> > forwarded through as
> > >> well
> > >> > as how to get hold of an unlocked USB dongle which will support
> > >> > the
> > SIM
> > >> /
> > >> > service?
> > >> >
> > >> > Or even a provider that provides this on one of their business
> plans?
> > >> >
> > >> > If it can be a prepaid plan even better.
> > >> >
> > >> > I'm looking to use said device as 4G failover on a meraki mx64
> > security
> > >> > appliance and calling the usual suspects (Optus, telstra) is
> > >> > giving
> > me a
> > >> > headache.
> > >> >
> > >> > Any advice on what others have done in this scenario would be
> > >> > most appreciated.
> > >> >
> > >> > Best regards,
> > >> >
> > >> > Ben Jackson
> > >> > eLogik
> > >> >
> > >> > (Sent from my mobile device)
> > >> > _______________________________________________
> > >> > Public mailing list
> > >> > Public(a)talk.mikrotik.com.au
> > >> > http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mik
> > >> rotik.com.au
> > >> >
> > >>
> > >>
> > >>
> > >> --
> > >> <https://www.upandrunningtech.com.au>
> > >> _______________________________________________
> > >> Public mailing list
> > >> Public(a)talk.mikrotik.com.au
> > >> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.
> > mikrotik.com.au
> > >>
> > >
> > >
> >
> >
> > --
> > <https://www.upandrunningtech.com.au>
> > _______________________________________________
> > Public mailing list
> > Public(a)talk.mikrotik.com.au
> > http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
> > au
> >
> _______________________________________________
> Public mailing list
> Public(a)talk.mikrotik.com.au
> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
>
>
> _______________________________________________
> Public mailing list
> Public(a)talk.mikrotik.com.au
> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
>
---------- Forwarded message ----------
From: Paul Julian <paul(a)oxygennetworks.com.au>
To: "'MikroTik Australia Public List'" <public(a)talk.mikrotik.com.au>
Cc:
Bcc:
Date: Thu, 23 Nov 2017 17:42:31 +1100
Subject: Re: [MT-AU Public] 4G WAN failover question
No problem, good luck.
Regards
Paul
-----Original Message-----
From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Ben
Jackson - ELOGIK
Sent: Thursday, 23 November 2017 5:38 PM
To: MikroTik Australia Public List
Subject: Re: [MT-AU Public] 4G WAN failover question
Great info Paul - thanks for this. I think with all this in mind I'll be
able to tailor a solution
Thanks again for everyone's input.
*BEN JACKSON*
Director
*M *0404 924745
*E* ben(a)elogik.com.au
*W* elogik.com.au <http://www.elogik.com.au/> <http://www.elogik.com.au>
On Thu, Nov 23, 2017 at 1:53 PM, Paul Julian <paul(a)oxygennetworks.com.au>
wrote:
> Hi Ben,
>
> We use the Telstra Sierra Wireless 320U modems in our Mikrotik hAP
> devices, the Mikrotik creates an LTE interface once the modem is
> inserted into the USB port, you set the APN within the LTE interface.
> Once that's connected you then configure a DHCP client on the Mikrotik
> on the LTE interface and you get a public IP.
>
> Some caveats:
> - You do need to change the mode of the modem, this can be done with
> the Netgear utility easily, they are a netgear unit basically.
> - You need to use a 4G SIM from Telstra, prepaid or postpaid should
> work, however if you want the APN with the public IP you need postpaid
> and need to request that the SIM be setup with the telstra.extranet
> APN
>
> Apart from that it's pretty easy.
>
> We occasionally have the modem drop, we have a script on the Mikrotik
> which checks connectivity and if it drops it does a USB power cycle
> which brings it back up most of the time.
>
> It's really not hard, and it works well.
>
> If you want to go with Optus but without a public IP you can get the
> $19 dongle from Office Works, it works in the Mikrotik without any
> real changes, but no public IP, fine if you can VPN out to something
> to use to get back in.
>
> Regards
> Paul
>
>
> -----Original Message-----
> From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of
> Ben Jackson - ELOGIK
> Sent: Thursday, 23 November 2017 11:10 AM
> To: Jason Hecker; MikroTik Australia Public List
> Subject: Re: [MT-AU Public] 4G WAN failover question
>
> Thanks for the pointers everyone. There seem to be a number of
> factors at play here:
>
> 1) Most of the LTE USB modems you can purchase have some kind of
> "router on a stick" built in which provides a firewalled, DHCP
> assigned private IP on the LAN side in the normal ranges of
> 192.168.x.x or 10.x.x.x. In Huawei's case this is known as "HiLink mode".
> 2) In addition to this, depending on which provider they are bought
> from, these modems / dongles are flashed with an ISP-specific firmware
> which further locks down the device to stop certain features being
> exposed to the device's web-interface. This makes it tricky to change
> things such as the APN settings.
> 3) The above types of device (i've been mainly concerned with the
> Huawei
> E3372 since that's the one my router has support for) can apparently
> be re-flashed with custom firmware which allows HiLink mode to be
> switched off (see here:
> http://www.0xf8.org/2017/01/flashing-a-huawei-e3372h-4g-
> lte-stick-from-hilink-to-stick-mode/)
> this will apparently allow the "public" IP to be assigned directly to
> the device connected to the USB port and avoids the pesky double NAT
situation.
> 4) The reason I say "public" in quotes above is because even if you
> manage to pass this address through, quite often the address itself is
> not a true public IP as it is behind carrier NAT and you are back to
square 1.
>
> For those interested, here are the options I'm exploring:
>
> 1) Getting a sierra 320U unlocked from ebay which can be used in
> "stick mode" without NAT or DHCP enabled and purchasing a SIM plan
> from either M2MOne or URL networks which has a "true" public IP (with
> all the public health and DDOS warnings this entails!)
> 2) Buying an LTE router such as:
>
> Dovado Tiny
> MikroTik SXT LTE
> Netgear (I know!) LB1111
> TP-Link MR6400
>
> and then using the same sim card as above. From the research I've
> done, these devices have a "passthrough" or bridge mode which will
> present the LTE public IP directly to my main router, albeit via an
> RJ45 / ethernet connection.
>
> Ben
>
> *BEN JACKSON*
> Director
>
> *M *0404 924745
> *E* ben(a)elogik.com.au
> *W* elogik.com.au <http://www.elogik.com.au/>
> <http://www.elogik.com.au>
>
>
> On Wed, Nov 22, 2017 at 6:15 PM, Jason Hecker (Up & Running Tech) <
> jason(a)upandrunningtech.com.au> wrote:
>
> > Oh I see, OK, sounds like you need something that will do a PPP
> > session which some 4G cards will let you do if you put them into
> > serial mode like the Telit LE910 (which I have tried) or the Sierra
> modules.
> >
> > If you end up with a static or dynamic public IP you can cname the
> > dynamic DNS Mikrotik provides in the router's ip->cloud settings and
> > set the timeout to 60, so you could get at it like
> > bighonchoclient1.elogik.net for example.
> >
> > I kicked the idea around but never tried buying a cheap VPS with a
> > static IP and having the 4G based Mikrotik VPN into it, then on the
> > VPS port forward any ports to services behind the 4G device.
> >
> > On 22 November 2017 at 15:59, Ben Jackson - ELOGIK <ben(a)elogik.net>
> wrote:
> >
> > > Hi Jason,
> > >
> > > OK, I didn't phrase my question very well, what I need is a dongle
> > > or
> > card
> > > that doesn't provide an extra layer of NAT (as many do) and run an
> > internal
> > > DHCP sever so that the routers cellular interface ends up with an
> > > IP address like 192.168.x.x but instead passes the public IP directly.
> > > This
> > is
> > > so I don't end up with a double NAT situation (kind of the
> > > equivalent of bridge mode for a DSL modem) and I can access
> > > resources (like security systems etc) behind the public IP by
> > > configuring the main firewall /
> > router
> > > accordingly.
> > >
> > > Ben
> > >
> > > *BEN JACKSON*
> > > Director
> > >
> > > *M *0404 924745
> > > *E* ben(a)elogik.com.au
> > > *W* elogik.com.au <http://www.elogik.com.au/>
> > > <http://www.elogik.com.au>
> > >
> > >
> > > On Wed, Nov 22, 2017 at 2:24 PM, Jason Hecker (Up & Running Tech)
> > > < jason(a)upandrunningtech.com.au> wrote:
> > >
> > >> What if you had those routers phone home to a VPN server in your
> > >> office over 4G? They'd always be in easy reach on private subnet
> > >> on your LAN
> > and
> > >> you wouldn't need to worry about public or static IPs for your 4G
> > widget.
> > >>
> > >> I noticed Duxtel configured devices I have bought have a PPTP
> > >> client set up so if you activate it then Duxtel can peer into the
> > >> device and assist
> > with
> > >> any issues.
> > >>
> > >> On 22 November 2017 at 13:46, Ben Jackson - ELOGIK
> > >> <ben(a)elogik.net>
> > >> wrote:
> > >>
> > >> > Does anyone have any advice on a) a decent 4g service that
> > >> > provides a publicly accessible IP address that ports can be
> > >> > forwarded through as
> > >> well
> > >> > as how to get hold of an unlocked USB dongle which will support
> > >> > the
> > SIM
> > >> /
> > >> > service?
> > >> >
> > >> > Or even a provider that provides this on one of their business
> plans?
> > >> >
> > >> > If it can be a prepaid plan even better.
> > >> >
> > >> > I'm looking to use said device as 4G failover on a meraki mx64
> > security
> > >> > appliance and calling the usual suspects (Optus, telstra) is
> > >> > giving
> > me a
> > >> > headache.
> > >> >
> > >> > Any advice on what others have done in this scenario would be
> > >> > most appreciated.
> > >> >
> > >> > Best regards,
> > >> >
> > >> > Ben Jackson
> > >> > eLogik
> > >> >
> > >> > (Sent from my mobile device)
> > >> > _______________________________________________
> > >> > Public mailing list
> > >> > Public(a)talk.mikrotik.com.au
> > >> > http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mik
> > >> rotik.com.au
> > >> >
> > >>
> > >>
> > >>
> > >> --
> > >> <https://www.upandrunningtech.com.au>
> > >> _______________________________________________
> > >> Public mailing list
> > >> Public(a)talk.mikrotik.com.au
> > >> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.
> > mikrotik.com.au
> > >>
> > >
> > >
> >
> >
> > --
> > <https://www.upandrunningtech.com.au>
> > _______________________________________________
> > Public mailing list
> > Public(a)talk.mikrotik.com.au
> > http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
> > au
> >
> _______________________________________________
> Public mailing list
> Public(a)talk.mikrotik.com.au
> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
> au
>
>
> _______________________________________________
> Public mailing list
> Public(a)talk.mikrotik.com.au
> http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
> au
>
_______________________________________________
Public mailing list
Public(a)talk.mikrotik.com.au
http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
_______________________________________________
Public mailing list
Public(a)talk.mikrotik.com.au
http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
1
0
Does anyone have any advice on a) a decent 4g service that provides a
publicly accessible IP address that ports can be forwarded through as well
as how to get hold of an unlocked USB dongle which will support the SIM /
service?
Or even a provider that provides this on one of their business plans?
If it can be a prepaid plan even better.
I'm looking to use said device as 4G failover on a meraki mx64 security
appliance and calling the usual suspects (Optus, telstra) is giving me a
headache.
Any advice on what others have done in this scenario would be most
appreciated.
Best regards,
Ben Jackson
eLogik
(Sent from my mobile device)
5
15
Hi All
Has anyone been able to mirror ports ?
/interface switch set mirror-source=ether3 mirror-target=ether4
# failure: port mirroring not supported
:(
--
*Denis Hancock*
Chief Technical Officer / Director
Helpdesk 1300 139 593 <1300139593>
Mobile 0407 687 621 <0407687621>
Member AISA OWASP
VIC Unit 15, 5 Enterprise Drive, Rowville 3178
<https://goo.gl/maps/HGmhhNncEF12>
QLD (Arcare) 14/8 Metroplex Ave, Murrarie 4172
<https://goo.gl/maps/dfeKUES6NbD2>
<https://samurai.com.au>
<https://www.facebook.com/samuraiconsulting.melbourne>
<https://au.linkedin.com/in/denishancock>
This email is intended only for the addresses(s) and is subject to
copyright. If you have received this email in error, please notify
the sender immediately, do not use or disclose the contents and delete the
message and any attachments to this email.
We cannot accept any liability for any loss or damage caused by software
viruses.
4
6