User:Mmv

Notes

Mikrotik Packet Sniffer streaming to Wireshark

Wireshark capture filter: udp port 37008

More strict version: udp port 37008 and (udp[8:2] = 0x0100)

http://wiki.wireshark.org/CaptureFilters#Examples

Linux Firewall settings for Winbox

MNDP (Mikrotik Network Discovery Protocol)

Broadcast 5678/UDP

-A INPUT -m state --state NEW -m udp -p udp --sport 20561 -d 255.255.255.255 -j ACCEPT -m comment --comment "Mikrotik MAC Winbox"

MAC Winbox

• UDP
• source port: 20561
• destination address: 255.255.255.255

-A INPUT -m state --state NEW -m udp -p udp --dport 5678 -j ACCEPT -m comment --comment "Mikrotik MNDP"

PCRE for converting exported scripts from CR to CRLF

Sometimes script become cluttered in winbox

search: (?<!\\r)(\\[[:space:]]+\\n) replace: \\r\1