Is anyone successfully using the PPPoE client on a Mikrotik router with an ADSL bridge? I'm using Draytek Vigor 120 routers and I'm having to run them in half-bridge mode and terminate the PPPoE connection on the device rather than on the Mikrotik router. In the past I've been able to connect to Telstra Bigpond from the Mikrotik, but I'm not able to anymore and I've never been able to connect to my primary ISP (WebVault). I've used the same draytek devices in full bridge mode with other brand routers making the PPPoE connection, so I'm fairly sure the issue is with the Mikrotik PPPoE client. I'd be interested to hear what ISP and hardware you're using if you've got this to work. I've contacted Mikrotik support and found a similar issue in the forum (http://forum.mikrotik.com/viewtopic.php?f=2&t=46384), but no-one's answering me. Regards Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376
Hi Russell, our default setup for this scenario is RB951g or similar MT with PPPOE using a TPLink TD8817 modem in bridge mode. The MT handles the PPPOE floorlessly and we have found the TPlink is a robust, cool running device. We have a few Telstra ADSL links with this setup and no issues. Cheers Matt On 09/05/2014 2:20 am, "Russell Hurren" <russell@zeropointnetworks.com> wrote:
Is anyone successfully using the PPPoE client on a Mikrotik router with an ADSL bridge? I'm using Draytek Vigor 120 routers and I'm having to run them in half-bridge mode and terminate the PPPoE connection on the device rather than on the Mikrotik router. In the past I've been able to connect to Telstra Bigpond from the Mikrotik, but I'm not able to anymore and I've never been able to connect to my primary ISP (WebVault). I've used the same draytek devices in full bridge mode with other brand routers making the PPPoE connection, so I'm fairly sure the issue is with the Mikrotik PPPoE client.
I'd be interested to hear what ISP and hardware you're using if you've got this to work. I've contacted Mikrotik support and found a similar issue in the forum (http://forum.mikrotik.com/viewtopic.php?f=2&t=46384), but no-one's answering me.
Regards
Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376 _______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
Hi Russell, Sometimes MT appears broken when doing this, and you need to pare back frame size on the pppoe interface. Use a command like this: /ip firewall mangle add protocol=tcp tcp-flags=syn action=change-mss new-mss=1460 \ chain=forward out-interface=pppoe-out change (obviously) 'pppoe-out' to the name of your ppp interface, and adjust the segment size value '1460' up/down until it all works smoothly. Use ping with do-not-fragment bit set to test the MTU. For windows: ping -f -l 1500 1.2.3.4 Adjust '1500' down/up until pings reply properly - that is the largest packet that can get through without fragmentation. Cheers! Mike.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Matt Chipman Sent: Friday, 9 May 2014 8:02 AM To: MikroTik Australia Public List Subject: Re: [MT-AU Public] PPPoE client with ADSL modems
Hi Russell, our default setup for this scenario is RB951g or similar MT with PPPOE using a TPLink TD8817 modem in bridge mode. The MT handles the PPPOE floorlessly and we have found the TPlink is a robust, cool running device. We have a few Telstra ADSL links with this setup and no issues.
Cheers Matt On 09/05/2014 2:20 am, "Russell Hurren" <russell@zeropointnetworks.com> wrote:
Is anyone successfully using the PPPoE client on a Mikrotik router with an ADSL bridge? I'm using Draytek Vigor 120 routers and I'm having to run them in half-bridge mode and terminate the PPPoE connection on the device rather than on the Mikrotik router. In the past I've been able to connect to Telstra Bigpond from the Mikrotik, but I'm not able to anymore and I've never been able to connect to my primary ISP (WebVault). I've used the same draytek devices in full bridge mode with other brand routers making the PPPoE connection, so I'm fairly sure the issue is with the Mikrotik PPPoE client.
I'd be interested to hear what ISP and hardware you're using if you've got this to work. I've contacted Mikrotik support and found a similar issue in the forum (http://forum.mikrotik.com/viewtopic.php?f=2&t=46384), but no-one's answering me.
Regards
Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376 _______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com. au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
HI Russell, we have hundreds running like this using TPLink modems in bridge mode, no problems. We are also starting to run our Ethernet services like this as well. We are the ISP so I am not sure if that makes any difference, we have some customers who use other ISP's though and have no problems. Regards Paul -----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Russell Hurren Sent: Friday, 9 May 2014 2:20 AM To: public@talk.mikrotik.com.au Subject: [MT-AU Public] PPPoE client with ADSL modems Is anyone successfully using the PPPoE client on a Mikrotik router with an ADSL bridge? I'm using Draytek Vigor 120 routers and I'm having to run them in half-bridge mode and terminate the PPPoE connection on the device rather than on the Mikrotik router. In the past I've been able to connect to Telstra Bigpond from the Mikrotik, but I'm not able to anymore and I've never been able to connect to my primary ISP (WebVault). I've used the same draytek devices in full bridge mode with other brand routers making the PPPoE connection, so I'm fairly sure the issue is with the Mikrotik PPPoE client. I'd be interested to hear what ISP and hardware you're using if you've got this to work. I've contacted Mikrotik support and found a similar issue in the forum (http://forum.mikrotik.com/viewtopic.php?f=2&t=46384), but no-one's answering me. Regards Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376 _______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
Have a number of them running OK with Siemens and Netgear modems in bridge mode, but all into Telstra Business ADSL lines. Using various MT devices from 750G up to CRS125 running ROS from 5.14 to 6.5 with no dramas. Steve. -----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Russell Hurren Sent: Friday, 9 May 2014 02:20 To: public@talk.mikrotik.com.au Subject: [MT-AU Public] PPPoE client with ADSL modems Is anyone successfully using the PPPoE client on a Mikrotik router with an ADSL bridge? I'm using Draytek Vigor 120 routers and I'm having to run them in half-bridge mode and terminate the PPPoE connection on the device rather than on the Mikrotik router. In the past I've been able to connect to Telstra Bigpond from the Mikrotik, but I'm not able to anymore and I've never been able to connect to my primary ISP (WebVault). I've used the same draytek devices in full bridge mode with other brand routers making the PPPoE connection, so I'm fairly sure the issue is with the Mikrotik PPPoE client. I'd be interested to hear what ISP and hardware you're using if you've got this to work. I've contacted Mikrotik support and found a similar issue in the forum (http://forum.mikrotik.com/viewtopic.php?f=2&t=46384), but no-one's answering me. Regards Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376 _______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
Thanks everyone for your replies. I was able to get the combination of Mikrotik + Draytek bridge + Telstra Bigpond working (had to fiddle a bit - turns out I hadn't put it in bridge mode properly). I'd already played around with the MTU/MSS settings and had to undo some of what I'd setup for the half-bridge to get it to work. I'm still having the same problem connecting to WebVault though. I tried using a TP-Link bridge instead of a Draytek and had the same problem. I can ask WebVault if there's anything peculiar about their setup. I can see a whole lot of stuff in the logs, but not sure how much is relevant. WebVault is a small ISP, so they use other carriers (eg AAPT) for ADSL. My immediate problem is solved though - I wanted to connect one of my clients to Bigpond using PPPoE to eliminate the possibility of half-bridge mode causing problems with his VPNs. If I have to use half-bridge for WebVault I can live with that. Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376 On 9 May 2014 14:46, Steve at Digitronics <steve@digitronics.com.au> wrote:
Have a number of them running OK with Siemens and Netgear modems in bridge mode, but all into Telstra Business ADSL lines. Using various MT devices from 750G up to CRS125 running ROS from 5.14 to 6.5 with no dramas.
Steve.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Russell Hurren Sent: Friday, 9 May 2014 02:20 To: public@talk.mikrotik.com.au Subject: [MT-AU Public] PPPoE client with ADSL modems
Is anyone successfully using the PPPoE client on a Mikrotik router with an ADSL bridge? I'm using Draytek Vigor 120 routers and I'm having to run them in half-bridge mode and terminate the PPPoE connection on the device rather than on the Mikrotik router. In the past I've been able to connect to Telstra Bigpond from the Mikrotik, but I'm not able to anymore and I've never been able to connect to my primary ISP (WebVault). I've used the same draytek devices in full bridge mode with other brand routers making the PPPoE connection, so I'm fairly sure the issue is with the Mikrotik PPPoE client.
I'd be interested to hear what ISP and hardware you're using if you've got this to work. I've contacted Mikrotik support and found a similar issue in the forum (http://forum.mikrotik.com/viewtopic.php?f=2&t=46384), but no-one's answering me.
Regards
Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376 _______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
Russell, maybe they use pppoa ? Is that possible ? Regards Paul
On 10 May 2014, at 2:22 am, "Russell Hurren" <russell@zeropointnetworks.com> wrote:
Thanks everyone for your replies. I was able to get the combination of Mikrotik + Draytek bridge + Telstra Bigpond working (had to fiddle a bit - turns out I hadn't put it in bridge mode properly). I'd already played around with the MTU/MSS settings and had to undo some of what I'd setup for the half-bridge to get it to work.
I'm still having the same problem connecting to WebVault though. I tried using a TP-Link bridge instead of a Draytek and had the same problem. I can ask WebVault if there's anything peculiar about their setup. I can see a whole lot of stuff in the logs, but not sure how much is relevant. WebVault is a small ISP, so they use other carriers (eg AAPT) for ADSL.
My immediate problem is solved though - I wanted to connect one of my clients to Bigpond using PPPoE to eliminate the possibility of half-bridge mode causing problems with his VPNs. If I have to use half-bridge for WebVault I can live with that.
Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376
On 9 May 2014 14:46, Steve at Digitronics <steve@digitronics.com.au> wrote:
Have a number of them running OK with Siemens and Netgear modems in bridge mode, but all into Telstra Business ADSL lines. Using various MT devices from 750G up to CRS125 running ROS from 5.14 to 6.5 with no dramas.
Steve.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Russell Hurren Sent: Friday, 9 May 2014 02:20 To: public@talk.mikrotik.com.au Subject: [MT-AU Public] PPPoE client with ADSL modems
Is anyone successfully using the PPPoE client on a Mikrotik router with an ADSL bridge? I'm using Draytek Vigor 120 routers and I'm having to run them in half-bridge mode and terminate the PPPoE connection on the device rather than on the Mikrotik router. In the past I've been able to connect to Telstra Bigpond from the Mikrotik, but I'm not able to anymore and I've never been able to connect to my primary ISP (WebVault). I've used the same draytek devices in full bridge mode with other brand routers making the PPPoE connection, so I'm fairly sure the issue is with the Mikrotik PPPoE client.
I'd be interested to hear what ISP and hardware you're using if you've got this to work. I've contacted Mikrotik support and found a similar issue in the forum (http://forum.mikrotik.com/viewtopic.php?f=2&t=46384), but no-one's answering me.
Regards
Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376 _______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
----- No virus found in this message. Checked by AVG - www.avg.com Version: 2014.0.4570 / Virus Database: 3931/7437 - Release Date: 05/03/14
Hi Paul I've tried just about every setting I could find on the Draytek. In the end I got Telstra working by putting it in MPoA 1483 Bridged IP LLC. When I do the same thing with WebVault I can see the PPPoE server when I do a scan from the Mikrotik, but I can't connect. The Draytek itself can connect using it's PPPoE client, and it has to be PPPoE mode, not PPPoA. I still suspect it might be something to do with the problem described on this thread: http://forum.mikrotik.com/viewtopic.php?f=2&t=46384 Basically the routeros system looks to have an issue with any pppoe system
terminated against a LAC, and when the session is forwarded to the LNS for authentication the router os sees the new host uniq for the LNS and drops the session. This appears to be an issue with the router os implementation of PPPoe, I have read another few forum posts which confirm a similar situation. I cannot debug this any further, firmware changes from old to new dont make a difference and it is definitely not a hardware fault (happening on multiple different devices). We have for the time being made the pppoe session terminate against a linksys router which works fine.
Regards Russell Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376 On 10 May 2014 08:03, Paul Julian <paul@oxygennetworks.com.au> wrote:
Russell, maybe they use pppoa ? Is that possible ?
Regards Paul
turns out I hadn't put it in bridge mode properly). I'd already played around with the MTU/MSS settings and had to undo some of what I'd setup for the half-bridge to get it to work.
I'm still having the same problem connecting to WebVault though. I tried using a TP-Link bridge instead of a Draytek and had the same problem. I can ask WebVault if there's anything peculiar about their setup. I can see a whole lot of stuff in the logs, but not sure how much is relevant. WebVault is a small ISP, so they use other carriers (eg AAPT) for ADSL.
My immediate problem is solved though - I wanted to connect one of my clients to Bigpond using PPPoE to eliminate the possibility of half-bridge mode causing problems with his VPNs. If I have to use half-bridge for WebVault I can live with that.
Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376
On 9 May 2014 14:46, Steve at Digitronics <steve@digitronics.com.au> wrote:
Have a number of them running OK with Siemens and Netgear modems in bridge mode, but all into Telstra Business ADSL lines. Using various MT devices from 750G up to CRS125 running ROS from 5.14 to 6.5 with no dramas.
Steve.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Russell Hurren Sent: Friday, 9 May 2014 02:20 To: public@talk.mikrotik.com.au Subject: [MT-AU Public] PPPoE client with ADSL modems
Is anyone successfully using the PPPoE client on a Mikrotik router with an ADSL bridge? I'm using Draytek Vigor 120 routers and I'm having to run them in half-bridge mode and terminate the PPPoE connection on the device rather than on the Mikrotik router. In the past I've been able to connect to Telstra Bigpond from the Mikrotik, but I'm not able to anymore and I've never been able to connect to my primary ISP (WebVault). I've used the same draytek devices in full bridge mode with other brand routers making the PPPoE connection, so I'm fairly sure the issue is with the Mikrotik PPPoE client.
I'd be interested to hear what ISP and hardware you're using if you've got this to work. I've contacted Mikrotik support and found a similar issue in the forum (http://forum.mikrotik.com/viewtopic.php?f=2&t=46384), but no-one's answering me.
Regards
Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376 _______________________________________________ Public mailing list Public@talk.mikrotik.com.au
http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au
http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au _______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
----- No virus found in this message. Checked by AVG - www.avg.com Version: 2014.0.4570 / Virus Database: 3931/7437 - Release Date: 05/03/14
On 10 May 2014, at 2:22 am, "Russell Hurren" < russell@zeropointnetworks.com> wrote:
Thanks everyone for your replies. I was able to get the combination of Mikrotik + Draytek bridge + Telstra Bigpond working (had to fiddle a bit
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Russell Hurren Sent: Sunday, 11 May 2014 5:00 AM To: MikroTik Australia Public List Subject: Re: [MT-AU Public] PPPoE client with ADSL modems
Hi Paul
I've tried just about every setting I could find on the Draytek. In the end I got Telstra working by putting it in MPoA 1483 Bridged IP LLC. When I do the same thing with WebVault I can see the PPPoE server when I do a scan from the Mikrotik, but I can't connect. The Draytek itself can connect using it's PPPoE client, and it has to be PPPoE mode, not PPPoA.
I still suspect it might be something to do with the problem described on
Hi Russell, I have never heard of the issue described in that forum post. Also, with only 13 posts to this topic over almost 4 years, I don't think it is a terribly common problem :-} The bottom line is that a true transparent bridge all the way from routers Ethernet port all the way to pppoe server is required to make it work properly. There are 2 general rules: 1) avoid half bridge or psuedobridge modes and only use a modem that supports a REAL transparent bridge mode 2) watch out for MTU problems - many modems break MTU discovery (and many LNS implementations break it too!) so change of MSS is often required I suspect that the webvault service may have additional tunnel or vlan on the access network which possibly pares off more overhead to reduce the maximum frame length further than 1482. Have you contacted webvault support regarding this problem? If you still suspect a pppoe problem, please capture some packets showing pppoe failures, and then we can try getting a case open with MT support - if it really IS a routerOS bug, then we should be able to get some attention and have it addressed eventually ;-) Cheers, Mike. this
thread: http://forum.mikrotik.com/viewtopic.php?f=2&t=46384
Basically the routeros system looks to have an issue with any pppoe system
terminated against a LAC, and when the session is forwarded to the LNS for authentication the router os sees the new host uniq for the LNS and drops the session. This appears to be an issue with the router os implementation of PPPoe, I have read another few forum posts which confirm a similar situation. I cannot debug this any further, firmware changes from old to new dont make a difference and it is definitely not a hardware fault (happening on multiple different devices). We have for the time being made the pppoe session terminate against a linksys router which works fine.
Regards
Russell
Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376
On 10 May 2014 08:03, Paul Julian <paul@oxygennetworks.com.au> wrote:
Russell, maybe they use pppoa ? Is that possible ?
Regards Paul
On 10 May 2014, at 2:22 am, "Russell Hurren" < russell@zeropointnetworks.com> wrote:
Thanks everyone for your replies. I was able to get the combination of Mikrotik + Draytek bridge + Telstra Bigpond working (had to fiddle a bit
turns out I hadn't put it in bridge mode properly). I'd already played around with the MTU/MSS settings and had to undo some of what I'd setup for the half-bridge to get it to work.
I'm still having the same problem connecting to WebVault though. I tried using a TP-Link bridge instead of a Draytek and had the same problem. I can ask WebVault if there's anything peculiar about their setup. I can see a whole lot of stuff in the logs, but not sure how much is
relevant.
is a small ISP, so they use other carriers (eg AAPT) for ADSL.
My immediate problem is solved though - I wanted to connect one of my clients to Bigpond using PPPoE to eliminate the possibility of half-bridge mode causing problems with his VPNs. If I have to use half-bridge for WebVault I can live with that.
Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376
On 9 May 2014 14:46, Steve at Digitronics <steve@digitronics.com.au> wrote:
Have a number of them running OK with Siemens and Netgear modems in bridge mode, but all into Telstra Business ADSL lines. Using various MT devices from 750G up to CRS125 running ROS from 5.14 to 6.5 with no dramas.
Steve.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Russell Hurren Sent: Friday, 9 May 2014 02:20 To: public@talk.mikrotik.com.au Subject: [MT-AU Public] PPPoE client with ADSL modems
Is anyone successfully using the PPPoE client on a Mikrotik router with an ADSL bridge? I'm using Draytek Vigor 120 routers and I'm having to run
WebVault them
in half-bridge mode and terminate the PPPoE connection on the device rather than on the Mikrotik router. In the past I've been able to connect to Telstra Bigpond from the Mikrotik, but I'm not able to anymore and I've never been able to connect to my primary ISP (WebVault). I've used the same draytek devices in full bridge mode with other brand routers making the PPPoE connection, so I'm fairly sure the issue is with the Mikrotik PPPoE client.
I'd be interested to hear what ISP and hardware you're using if you've got this to work. I've contacted Mikrotik support and found a similar issue in the forum (http://forum.mikrotik.com/viewtopic.php?f=2&t=46384), but no-one's answering me.
Regards
Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376 _______________________________________________ Public mailing list Public@talk.mikrotik.com.au
http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com. au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au
http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com. au _______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.co m.au
----- No virus found in this message. Checked by AVG - www.avg.com Version: 2014.0.4570 / Virus Database: 3931/7437 - Release Date: 05/03/14
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com. au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
Thanks Mike Here's James' (WebVault) reply I don’t know enough about L2TP to comment, our LNP server receives
connections from a LAC aggregator from the carriers network, which is fairly normal I guess, but I cant comment on how that works either. You should set your IP Address manually on your PPP interface dialers if you want it to be a static address.
Another client had a PFSENSE product, and had this to say about negotiating the IP, I don’t know if it helps:-
I don't know what's different about the way the IP address is being negotiated from when you gave me the static internal IP, but the config on PFSense had to change from negotiating the IP during PPP to negotiating after the PPP session was up. Makes no sense at all to me but now I'll know for future.
I can try again tonight (don't want to drop the internet during the day) and capture the log and go from there. Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376 On 11 May 2014 15:32, Mike Everest <mike@duxtel.com> wrote:
Hi Russell,
I have never heard of the issue described in that forum post. Also, with only 13 posts to this topic over almost 4 years, I don't think it is a terribly common problem :-}
The bottom line is that a true transparent bridge all the way from routers Ethernet port all the way to pppoe server is required to make it work properly. There are 2 general rules:
1) avoid half bridge or psuedobridge modes and only use a modem that supports a REAL transparent bridge mode 2) watch out for MTU problems - many modems break MTU discovery (and many LNS implementations break it too!) so change of MSS is often required
I suspect that the webvault service may have additional tunnel or vlan on the access network which possibly pares off more overhead to reduce the maximum frame length further than 1482.
Have you contacted webvault support regarding this problem?
If you still suspect a pppoe problem, please capture some packets showing pppoe failures, and then we can try getting a case open with MT support - if it really IS a routerOS bug, then we should be able to get some attention and have it addressed eventually ;-)
Cheers, Mike.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Russell Hurren Sent: Sunday, 11 May 2014 5:00 AM To: MikroTik Australia Public List Subject: Re: [MT-AU Public] PPPoE client with ADSL modems
Hi Paul
I've tried just about every setting I could find on the Draytek. In the end I got Telstra working by putting it in MPoA 1483 Bridged IP LLC. When I do the same thing with WebVault I can see the PPPoE server when I do a scan from the Mikrotik, but I can't connect. The Draytek itself can connect using it's PPPoE client, and it has to be PPPoE mode, not PPPoA.
I still suspect it might be something to do with the problem described on this thread: http://forum.mikrotik.com/viewtopic.php?f=2&t=46384
Basically the routeros system looks to have an issue with any pppoe system
terminated against a LAC, and when the session is forwarded to the LNS for authentication the router os sees the new host uniq for the LNS and drops the session. This appears to be an issue with the router os implementation of PPPoe, I have read another few forum posts which confirm a similar situation. I cannot debug this any further, firmware changes from old to new dont make a difference and it is definitely not a hardware fault (happening on multiple different devices). We have for the time being made the pppoe session terminate against a linksys router which works fine.
Regards
Russell
Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376
On 10 May 2014 08:03, Paul Julian <paul@oxygennetworks.com.au> wrote:
Russell, maybe they use pppoa ? Is that possible ?
Regards Paul
On 10 May 2014, at 2:22 am, "Russell Hurren" < russell@zeropointnetworks.com> wrote:
Thanks everyone for your replies. I was able to get the combination of Mikrotik + Draytek bridge + Telstra Bigpond working (had to fiddle a bit
turns out I hadn't put it in bridge mode properly). I'd already played around with the MTU/MSS settings and had to undo some of what I'd setup for the half-bridge to get it to work.
I'm still having the same problem connecting to WebVault though. I tried using a TP-Link bridge instead of a Draytek and had the same problem. I can ask WebVault if there's anything peculiar about their setup. I can see a whole lot of stuff in the logs, but not sure how much is
relevant.
is a small ISP, so they use other carriers (eg AAPT) for ADSL.
My immediate problem is solved though - I wanted to connect one of my clients to Bigpond using PPPoE to eliminate the possibility of half-bridge mode causing problems with his VPNs. If I have to use half-bridge for WebVault I can live with that.
Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376
On 9 May 2014 14:46, Steve at Digitronics <steve@digitronics.com.au> wrote:
Have a number of them running OK with Siemens and Netgear modems in bridge mode, but all into Telstra Business ADSL lines. Using various MT devices from 750G up to CRS125 running ROS from 5.14 to 6.5 with no dramas.
Steve.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Russell Hurren Sent: Friday, 9 May 2014 02:20 To: public@talk.mikrotik.com.au Subject: [MT-AU Public] PPPoE client with ADSL modems
Is anyone successfully using the PPPoE client on a Mikrotik router with an ADSL bridge? I'm using Draytek Vigor 120 routers and I'm having to run
WebVault them
in half-bridge mode and terminate the PPPoE connection on the device rather than on the Mikrotik router. In the past I've been able to connect to Telstra Bigpond from the Mikrotik, but I'm not able to anymore and I've never been able to connect to my primary ISP (WebVault). I've used the same draytek devices in full bridge mode with other brand routers making the PPPoE connection, so I'm fairly sure the issue is with the Mikrotik PPPoE client.
I'd be interested to hear what ISP and hardware you're using if you've got this to work. I've contacted Mikrotik support and found a similar issue in the forum (http://forum.mikrotik.com/viewtopic.php?f=2&t=46384), but no-one's answering me.
Regards
Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376 _______________________________________________ Public mailing list Public@talk.mikrotik.com.au
http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com. au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au
http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com. au _______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.co m.au
----- No virus found in this message. Checked by AVG - www.avg.com Version: 2014.0.4570 / Virus Database: 3931/7437 - Release Date: 05/03/14
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com. au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
That doesn't make a great deal of sense to me, every ISP that I know of allocates static IP's from radius, including ourselves, that's just weird saying to set the IP manually on an ADSL WAN interface. Does it get to the point where the PPPOE Interface says it's connected at any stage Russell ? If you plug your PC into the ADSL modem can you create a PPPOE interface on your PC (assuming windows) and connect successfully doing that ? That test will confirm that your modem is working right, other things to make sure of are you have your VCI and VPI set correctly, 8/35 is it's a resold Telstra service or most others, also ensure encapsulation is set to LLC not VC Mux, and see if you can connect with your PC. If your PC works fine like that then there is no reason the Mikrotik won't, it's no different, also make sure you are selecting the "default" PPP profile and not "default encryption" Regards Paul -----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Russell Hurren Sent: Monday, 12 May 2014 2:33 PM To: MikroTik Australia Public List Subject: Re: [MT-AU Public] PPPoE client with ADSL modems Thanks Mike Here's James' (WebVault) reply I don’t know enough about L2TP to comment, our LNP server receives
connections from a LAC aggregator from the carriers network, which is fairly normal I guess, but I cant comment on how that works either. You should set your IP Address manually on your PPP interface dialers if you want it to be a static address.
Another client had a PFSENSE product, and had this to say about negotiating the IP, I don’t know if it helps:-
I don't know what's different about the way the IP address is being negotiated from when you gave me the static internal IP, but the config on PFSense had to change from negotiating the IP during PPP to negotiating after the PPP session was up. Makes no sense at all to me but now I'll know for future.
I can try again tonight (don't want to drop the internet during the day) and capture the log and go from there. Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376 On 11 May 2014 15:32, Mike Everest <mike@duxtel.com> wrote:
Hi Russell,
I have never heard of the issue described in that forum post. Also, with only 13 posts to this topic over almost 4 years, I don't think it is a terribly common problem :-}
The bottom line is that a true transparent bridge all the way from routers Ethernet port all the way to pppoe server is required to make it work properly. There are 2 general rules:
1) avoid half bridge or psuedobridge modes and only use a modem that supports a REAL transparent bridge mode 2) watch out for MTU problems - many modems break MTU discovery (and many LNS implementations break it too!) so change of MSS is often required
I suspect that the webvault service may have additional tunnel or vlan on the access network which possibly pares off more overhead to reduce the maximum frame length further than 1482.
Have you contacted webvault support regarding this problem?
If you still suspect a pppoe problem, please capture some packets showing pppoe failures, and then we can try getting a case open with MT support - if it really IS a routerOS bug, then we should be able to get some attention and have it addressed eventually ;-)
Cheers, Mike.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Russell Hurren Sent: Sunday, 11 May 2014 5:00 AM To: MikroTik Australia Public List Subject: Re: [MT-AU Public] PPPoE client with ADSL modems
Hi Paul
I've tried just about every setting I could find on the Draytek. In the end I got Telstra working by putting it in MPoA 1483 Bridged IP LLC. When I do the same thing with WebVault I can see the PPPoE server when I do a scan from the Mikrotik, but I can't connect. The Draytek itself can connect using it's PPPoE client, and it has to be PPPoE mode, not PPPoA.
I still suspect it might be something to do with the problem described on this thread: http://forum.mikrotik.com/viewtopic.php?f=2&t=46384
Basically the routeros system looks to have an issue with any pppoe system
terminated against a LAC, and when the session is forwarded to the LNS for authentication the router os sees the new host uniq for the LNS and drops the session. This appears to be an issue with the router os implementation of PPPoe, I have read another few forum posts which confirm a similar situation. I cannot debug this any further, firmware changes from old to new dont make a difference and it is definitely not a hardware fault (happening on multiple different devices). We have for the time being made the pppoe session terminate against a linksys router which works fine.
Regards
Russell
Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376
On 10 May 2014 08:03, Paul Julian <paul@oxygennetworks.com.au> wrote:
Russell, maybe they use pppoa ? Is that possible ?
Regards Paul
On 10 May 2014, at 2:22 am, "Russell Hurren" < russell@zeropointnetworks.com> wrote:
Thanks everyone for your replies. I was able to get the combination of Mikrotik + Draytek bridge + Telstra Bigpond working (had to fiddle a bit
turns out I hadn't put it in bridge mode properly). I'd already played around with the MTU/MSS settings and had to undo some of what I'd setup for the half-bridge to get it to work.
I'm still having the same problem connecting to WebVault though. I tried using a TP-Link bridge instead of a Draytek and had the same problem. I can ask WebVault if there's anything peculiar about their setup. I can see a whole lot of stuff in the logs, but not sure how much is
relevant.
is a small ISP, so they use other carriers (eg AAPT) for ADSL.
My immediate problem is solved though - I wanted to connect one of my clients to Bigpond using PPPoE to eliminate the possibility of half-bridge mode causing problems with his VPNs. If I have to use half-bridge for WebVault I can live with that.
Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376
On 9 May 2014 14:46, Steve at Digitronics <steve@digitronics.com.au> wrote:
Have a number of them running OK with Siemens and Netgear modems in bridge mode, but all into Telstra Business ADSL lines. Using various MT devices from 750G up to CRS125 running ROS from 5.14 to 6.5 with no dramas.
Steve.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Russell Hurren Sent: Friday, 9 May 2014 02:20 To: public@talk.mikrotik.com.au Subject: [MT-AU Public] PPPoE client with ADSL modems
Is anyone successfully using the PPPoE client on a Mikrotik router with an ADSL bridge? I'm using Draytek Vigor 120 routers and I'm having to run
WebVault them
in half-bridge mode and terminate the PPPoE connection on the device rather than on the Mikrotik router. In the past I've been able to connect to Telstra Bigpond from the Mikrotik, but I'm not able to anymore and I've never been able to connect to my primary ISP (WebVault). I've used the same draytek devices in full bridge mode with other brand routers making the PPPoE connection, so I'm fairly sure the issue is with the Mikrotik PPPoE client.
I'd be interested to hear what ISP and hardware you're using if you've got this to work. I've contacted Mikrotik support and found a similar issue in the forum (http://forum.mikrotik.com/viewtopic.php?f=2&t=46384), but no-one's answering me.
Regards
Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376 _______________________________________________ Public mailing list Public@talk.mikrotik.com.au
http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com. au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au
http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com. au _______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikroti k.co m.au
----- No virus found in this message. Checked by AVG - www.avg.com Version: 2014.0.4570 / Virus Database: 3931/7437 - Release Date: 05/03/14
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com. au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.co m.au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com. au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
Hi Paul I just tried connecting from Windows PPPoE client through the Mikrotik to WebVault, and that worked fine (both using dynamic and static IP). If I don't specify an IP, they'll allocate one automatically, but it won't be the static IP (they said they were working on the issue). It's a private IP, and I only need it to be static because of some tunnels between this and other routers. I've tried using the default PPP profile, and my modified one that was a copy of that, just with the static IP. PCI and VPI are definitely correct, and I'm using LLC. On the Mikrotik, the PPPoE interface says 'establishing link' but that's as far as it gets. I've attached the output of '/log print detail where topics~"pppoe" (with my password obscured). Note that I've also got an active connection to Telstra (which is working fine). I've tried all kinds of different settings with MTU/MRU, I've also tried disabling everything except CHAP (on WebVault's suggestion), as well as leaving all protocols enabled. One more thing I'd like to try is using a Linux PPPoE client (particularly if I can use the same one the Mikrotik is using). I don't have a linux box handy though, so that might have to wait until I've got some time. Regards Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376 On 12 May 2014 18:13, Paul Julian <paul@oxygennetworks.com.au> wrote:
That doesn't make a great deal of sense to me, every ISP that I know of allocates static IP's from radius, including ourselves, that's just weird saying to set the IP manually on an ADSL WAN interface.
Does it get to the point where the PPPOE Interface says it's connected at any stage Russell ?
If you plug your PC into the ADSL modem can you create a PPPOE interface on your PC (assuming windows) and connect successfully doing that ? That test will confirm that your modem is working right, other things to make sure of are you have your VCI and VPI set correctly, 8/35 is it's a resold Telstra service or most others, also ensure encapsulation is set to LLC not VC Mux, and see if you can connect with your PC.
If your PC works fine like that then there is no reason the Mikrotik won't, it's no different, also make sure you are selecting the "default" PPP profile and not "default encryption"
Regards Paul
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Russell Hurren Sent: Monday, 12 May 2014 2:33 PM To: MikroTik Australia Public List Subject: Re: [MT-AU Public] PPPoE client with ADSL modems
Thanks Mike
Here's James' (WebVault) reply
I don’t know enough about L2TP to comment, our LNP server receives
connections from a LAC aggregator from the carriers network, which is fairly normal I guess, but I cant comment on how that works either. You should set your IP Address manually on your PPP interface dialers if you want it to be a static address.
Another client had a PFSENSE product, and had this to say about negotiating the IP, I don’t know if it helps:-
I don't know what's different about the way the IP address is being negotiated from when you gave me the static internal IP, but the config on PFSense had to change from negotiating the IP during PPP to negotiating after the PPP session was up. Makes no sense at all to me but now I'll know for future.
I can try again tonight (don't want to drop the internet during the day) and capture the log and go from there.
Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376
On 11 May 2014 15:32, Mike Everest <mike@duxtel.com> wrote:
Hi Russell,
I have never heard of the issue described in that forum post. Also, with only 13 posts to this topic over almost 4 years, I don't think it is a terribly common problem :-}
The bottom line is that a true transparent bridge all the way from routers Ethernet port all the way to pppoe server is required to make it work properly. There are 2 general rules:
1) avoid half bridge or psuedobridge modes and only use a modem that supports a REAL transparent bridge mode 2) watch out for MTU problems - many modems break MTU discovery (and many LNS implementations break it too!) so change of MSS is often required
I suspect that the webvault service may have additional tunnel or vlan on the access network which possibly pares off more overhead to reduce the maximum frame length further than 1482.
Have you contacted webvault support regarding this problem?
If you still suspect a pppoe problem, please capture some packets showing pppoe failures, and then we can try getting a case open with MT support - if it really IS a routerOS bug, then we should be able to get some attention and have it addressed eventually ;-)
Cheers, Mike.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Russell Hurren Sent: Sunday, 11 May 2014 5:00 AM To: MikroTik Australia Public List Subject: Re: [MT-AU Public] PPPoE client with ADSL modems
Hi Paul
I've tried just about every setting I could find on the Draytek. In the end I got Telstra working by putting it in MPoA 1483 Bridged IP LLC. When I do the same thing with WebVault I can see the PPPoE server when I do a scan from the Mikrotik, but I can't connect. The Draytek itself can connect using it's PPPoE client, and it has to be PPPoE mode, not PPPoA.
I still suspect it might be something to do with the problem described on this thread: http://forum.mikrotik.com/viewtopic.php?f=2&t=46384
Basically the routeros system looks to have an issue with any pppoe system
terminated against a LAC, and when the session is forwarded to the LNS for authentication the router os sees the new host uniq for the LNS and drops the session. This appears to be an issue with the router os implementation of PPPoe, I have read another few forum posts which confirm a similar situation. I cannot debug this any further, firmware changes from old to new dont make a difference and it is definitely not a hardware fault (happening on multiple different devices). We have for the time being made the pppoe session terminate against a linksys router which works fine.
Regards
Russell
Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376
On 10 May 2014 08:03, Paul Julian <paul@oxygennetworks.com.au> wrote:
Russell, maybe they use pppoa ? Is that possible ?
Regards Paul
On 10 May 2014, at 2:22 am, "Russell Hurren" < russell@zeropointnetworks.com> wrote:
Thanks everyone for your replies. I was able to get the combination of Mikrotik + Draytek bridge + Telstra Bigpond working (had to fiddle a bit
turns out I hadn't put it in bridge mode properly). I'd already played around with the MTU/MSS settings and had to undo some of what I'd setup for the half-bridge to get it to work.
I'm still having the same problem connecting to WebVault though. I tried using a TP-Link bridge instead of a Draytek and had the same problem. I can ask WebVault if there's anything peculiar about their setup. I can see a whole lot of stuff in the logs, but not sure how much is
relevant.
is a small ISP, so they use other carriers (eg AAPT) for ADSL.
My immediate problem is solved though - I wanted to connect one of my clients to Bigpond using PPPoE to eliminate the possibility of half-bridge mode causing problems with his VPNs. If I have to use half-bridge for WebVault I can live with that.
Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376
On 9 May 2014 14:46, Steve at Digitronics <steve@digitronics.com.au> wrote:
Have a number of them running OK with Siemens and Netgear modems in bridge mode, but all into Telstra Business ADSL lines. Using various MT devices from 750G up to CRS125 running ROS from 5.14 to 6.5 with no dramas.
Steve.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Russell Hurren Sent: Friday, 9 May 2014 02:20 To: public@talk.mikrotik.com.au Subject: [MT-AU Public] PPPoE client with ADSL modems
Is anyone successfully using the PPPoE client on a Mikrotik router with an ADSL bridge? I'm using Draytek Vigor 120 routers and I'm having to run
WebVault them
in half-bridge mode and terminate the PPPoE connection on the device rather than on the Mikrotik router. In the past I've been able to connect to Telstra Bigpond from the Mikrotik, but I'm not able to anymore and I've never been able to connect to my primary ISP (WebVault). I've used the same draytek devices in full bridge mode with other brand routers making the PPPoE connection, so I'm fairly sure the issue is with the Mikrotik PPPoE client.
I'd be interested to hear what ISP and hardware you're using if you've got this to work. I've contacted Mikrotik support and found a similar issue in the forum (http://forum.mikrotik.com/viewtopic.php?f=2&t=46384), but no-one's answering me.
Regards
Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376 _______________________________________________ Public mailing list Public@talk.mikrotik.com.au
http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au
http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikroti k.co m.au
----- No virus found in this message. Checked by AVG - www.avg.com Version: 2014.0.4570 / Virus Database: 3931/7437 - Release Date: 05/03/14
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au
http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.co m.au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com. au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
When you are trying this are you saying you have a static IP assigned to the interface as well ? All I can see is that you are getting a config reject when trying to authenticate, what if you remove the static IP and have no configuration on your pppoe interface except the username and password and default profile ? When testing from Windows did you put a static IP on the interface ? I don't think you would have, and that's why it worked. You need to go back to basics, forget the static IP for now and just create a basic connection and see if it works. I can't see how somebody can tell you to put a static IP on your interface and then deliver you a dynamic one as well, that's crazy, it should be one or the other, and both delivered by the ISP, if they don't know how to do that then they shouldn't be an ISP. It really sounds to me like you have a configuration clash which needs to be resolved, as I say go back to basics and try again and get rid of the static IP from the picture for now. Regards Paul -----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Russell Hurren Sent: Tuesday, 13 May 2014 2:04 AM To: MikroTik Australia Public List Subject: Re: [MT-AU Public] PPPoE client with ADSL modems Hi Paul I just tried connecting from Windows PPPoE client through the Mikrotik to WebVault, and that worked fine (both using dynamic and static IP). If I don't specify an IP, they'll allocate one automatically, but it won't be the static IP (they said they were working on the issue). It's a private IP, and I only need it to be static because of some tunnels between this and other routers. I've tried using the default PPP profile, and my modified one that was a copy of that, just with the static IP. PCI and VPI are definitely correct, and I'm using LLC. On the Mikrotik, the PPPoE interface says 'establishing link' but that's as far as it gets. I've attached the output of '/log print detail where topics~"pppoe" (with my password obscured). Note that I've also got an active connection to Telstra (which is working fine). I've tried all kinds of different settings with MTU/MRU, I've also tried disabling everything except CHAP (on WebVault's suggestion), as well as leaving all protocols enabled. One more thing I'd like to try is using a Linux PPPoE client (particularly if I can use the same one the Mikrotik is using). I don't have a linux box handy though, so that might have to wait until I've got some time. Regards Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376 On 12 May 2014 18:13, Paul Julian <paul@oxygennetworks.com.au> wrote:
That doesn't make a great deal of sense to me, every ISP that I know of allocates static IP's from radius, including ourselves, that's just weird saying to set the IP manually on an ADSL WAN interface.
Does it get to the point where the PPPOE Interface says it's connected at any stage Russell ?
If you plug your PC into the ADSL modem can you create a PPPOE interface on your PC (assuming windows) and connect successfully doing that ? That test will confirm that your modem is working right, other things to make sure of are you have your VCI and VPI set correctly, 8/35 is it's a resold Telstra service or most others, also ensure encapsulation is set to LLC not VC Mux, and see if you can connect with your PC.
If your PC works fine like that then there is no reason the Mikrotik won't, it's no different, also make sure you are selecting the "default" PPP profile and not "default encryption"
Regards Paul
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Russell Hurren Sent: Monday, 12 May 2014 2:33 PM To: MikroTik Australia Public List Subject: Re: [MT-AU Public] PPPoE client with ADSL modems
Thanks Mike
Here's James' (WebVault) reply
I don’t know enough about L2TP to comment, our LNP server receives
connections from a LAC aggregator from the carriers network, which is fairly normal I guess, but I cant comment on how that works either. You should set your IP Address manually on your PPP interface dialers if you want it to be a static address.
Another client had a PFSENSE product, and had this to say about negotiating the IP, I don’t know if it helps:-
I don't know what's different about the way the IP address is being negotiated from when you gave me the static internal IP, but the config on PFSense had to change from negotiating the IP during PPP to negotiating after the PPP session was up. Makes no sense at all to me but now I'll know for future.
I can try again tonight (don't want to drop the internet during the day) and capture the log and go from there.
Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376
On 11 May 2014 15:32, Mike Everest <mike@duxtel.com> wrote:
Hi Russell,
I have never heard of the issue described in that forum post. Also, with only 13 posts to this topic over almost 4 years, I don't think it is a terribly common problem :-}
The bottom line is that a true transparent bridge all the way from routers Ethernet port all the way to pppoe server is required to make it work properly. There are 2 general rules:
1) avoid half bridge or psuedobridge modes and only use a modem that supports a REAL transparent bridge mode 2) watch out for MTU problems - many modems break MTU discovery (and many LNS implementations break it too!) so change of MSS is often required
I suspect that the webvault service may have additional tunnel or vlan on the access network which possibly pares off more overhead to reduce the maximum frame length further than 1482.
Have you contacted webvault support regarding this problem?
If you still suspect a pppoe problem, please capture some packets showing pppoe failures, and then we can try getting a case open with MT support - if it really IS a routerOS bug, then we should be able to get some attention and have it addressed eventually ;-)
Cheers, Mike.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Russell Hurren Sent: Sunday, 11 May 2014 5:00 AM To: MikroTik Australia Public List Subject: Re: [MT-AU Public] PPPoE client with ADSL modems
Hi Paul
I've tried just about every setting I could find on the Draytek. In the end I got Telstra working by putting it in MPoA 1483 Bridged IP LLC. When I do the same thing with WebVault I can see the PPPoE server when I do a scan from the Mikrotik, but I can't connect. The Draytek itself can connect using it's PPPoE client, and it has to be PPPoE mode, not PPPoA.
I still suspect it might be something to do with the problem described on this thread: http://forum.mikrotik.com/viewtopic.php?f=2&t=46384
Basically the routeros system looks to have an issue with any pppoe system
terminated against a LAC, and when the session is forwarded to the LNS for authentication the router os sees the new host uniq for the LNS and drops the session. This appears to be an issue with the router os implementation of PPPoe, I have read another few forum posts which confirm a similar situation. I cannot debug this any further, firmware changes from old to new dont make a difference and it is definitely not a hardware fault (happening on multiple different devices). We have for the time being made the pppoe session terminate against a linksys router which works fine.
Regards
Russell
Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376
On 10 May 2014 08:03, Paul Julian <paul@oxygennetworks.com.au> wrote:
Russell, maybe they use pppoa ? Is that possible ?
Regards Paul
On 10 May 2014, at 2:22 am, "Russell Hurren" < russell@zeropointnetworks.com> wrote:
Thanks everyone for your replies. I was able to get the combination of Mikrotik + Draytek bridge + Telstra Bigpond working (had to fiddle a bit
turns out I hadn't put it in bridge mode properly). I'd already played around with the MTU/MSS settings and had to undo some of what I'd setup for the half-bridge to get it to work.
I'm still having the same problem connecting to WebVault though. I tried using a TP-Link bridge instead of a Draytek and had the same problem. I can ask WebVault if there's anything peculiar about their setup. I can see a whole lot of stuff in the logs, but not sure how much is
relevant.
is a small ISP, so they use other carriers (eg AAPT) for ADSL.
My immediate problem is solved though - I wanted to connect one of my clients to Bigpond using PPPoE to eliminate the possibility of half-bridge mode causing problems with his VPNs. If I have to use half-bridge for WebVault I can live with that.
Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376
On 9 May 2014 14:46, Steve at Digitronics <steve@digitronics.com.au> wrote:
Have a number of them running OK with Siemens and Netgear modems in bridge mode, but all into Telstra Business ADSL lines. Using various MT devices from 750G up to CRS125 running ROS from 5.14 to 6.5 with no dramas.
Steve.
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Russell Hurren Sent: Friday, 9 May 2014 02:20 To: public@talk.mikrotik.com.au Subject: [MT-AU Public] PPPoE client with ADSL modems
Is anyone successfully using the PPPoE client on a Mikrotik router with an ADSL bridge? I'm using Draytek Vigor 120 routers and I'm having to run
WebVault them
in half-bridge mode and terminate the PPPoE connection on the device rather than on the Mikrotik router. In the past I've been able to connect to Telstra Bigpond from the Mikrotik, but I'm not able to anymore and I've never been able to connect to my primary ISP (WebVault). I've used the same draytek devices in full bridge mode with other brand routers making the PPPoE connection, so I'm fairly sure the issue is with the Mikrotik PPPoE client.
I'd be interested to hear what ISP and hardware you're using if you've got this to work. I've contacted Mikrotik support and found a similar issue in the forum (http://forum.mikrotik.com/viewtopic.php?f=2&t=46384), but no-one's answering me.
Regards
Russell Hurren Managing Director Zero Point Networks PTY LTD +61 8 6262 9376 _______________________________________________ Public mailing list Public@talk.mikrotik.com.au
http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au
http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikro ti k.co m.au
----- No virus found in this message. Checked by AVG - www.avg.com Version: 2014.0.4570 / Virus Database: 3931/7437 - Release Date: 05/03/14
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au
http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.
au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik. co m.au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com. au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com. au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com. au
Hi Russell, Problem is in LCP negotiation - looks like webvault does not support the LCP options you are using:
time=may/10 00:00:45 topics=pppoe,ppp,debug,packet message=" WebVault: sent LCP ConfRej id=0x2"
time=may/10 00:00:48 topics=pppoe,ppp,debug,packet message=" WebVault: rcvd LCP ConfRej id=0x6c"
Try using a profile with all protocol options set explicitly to 'no' and try selecting only one auth mechanism at a time (pap only, then chap only, etc) Ask webvault to check their logs when you attempt to connect - surely they must report something! ;-) Cheers, Mike.
participants (5)
-
Matt Chipman
-
Mike Everest
-
Paul Julian
-
Russell Hurren
-
Steve at Digitronics