Subject: Re: [44net] Strange Broadcasts... From: "Marius Petrescu" marius@yo2loj.ro Date: 06/06/2015 08:54 AM
To: "'AMPRNet working group'" 44net@hamradio.ucsd.edu
The iptables solution doesn't apply to Mikrotik equipment since they don't run Linux.
Of course they are! It is easy to add iptables rules like that to a MikroTik router. But even easier to just turn off the sending of the MNDP packets.
The Mikrotik Neighbor Discovery Protocol (MNDP) is enabled by default on newly created IPIP interfaces. And since there is such an interface for each mesh partner, they are probable programatically generated by a script.
Well, running IPIP mesh on a MikroTik may not be a good idea. At least not until it supports ampr-ripd so you can run just a single IPIP interface for the entire mesh, and use a separate routing table updated by RIP messages. (similar to the situation with other commercial routers like Cisco and Juniper)
Did anyone ever try to get such a change incorporated by the MikroTik people? I have no idea how friendly they are to such specialized requests, but on the other hand they have a very broad collection of exotic protocols and configuration items.
(I just got a 2011UiAS-2HnD this week, and I am impressed. I will use it as my home router, but not on the IPIP mesh, it will be connected to my Ubiquiti Airgrid with a link to the local HAMNET which again is linked to our gateway)
Rob
Hi Rob,
I was quite active in the Mikrotik community and tried to push a little our ampr tunnel stuff. But the results are actually null. People are friendly but not interested. The missing element is a way to create an IPIP interface without a specific peer IP, and add routes to specific peers on a given IPIP interface to get it in multipoint mode. So IPIP interfaces on RouterOS are PtP only, not PtMP, so one needs an interface for each peer in the mesh, which amounts at the moment to some 400 interfaces. Via script, I tried to set up those interfaces based on the RIP broadcasts, but it strangely stops on 10 interfaces. I never digged deeper. It is possible to set up the complete mesh via ssh or telnet, so an external script is able to do that.
The easiest way to get ampr up fully is actually to set up a metarouter on a mipsbe routerboard (they have a xen virtualization on those), and run a OpenWRT in it, to do IPIP encap and run ampr-ripd. I have tried that, it works, but at the moment I use a PPC based routerboard which doesn't offer virtualization. But your RB2011 is a good candidate for this kind of setup, being mipsbe based. Others would be the RB45x, the RB75x, the RB95x and the OmniTik series.
Regarding to linux: They run a proprietary distribution on a 3 kernel, but shell access is unfortunately not available, and there is no way to add 3-rd party extensions.
Marius, YO2LOJ
-
Marius Petrescu -
Rob Janssen