Skip to content
Nov 13 / thebrotherswisp

TheBrothersWISP 36 – Telecom Mergers, Hidden System Accounts, Brocade, hEX

This week has Greg, Mike, and Tomas(just before he caught a flight), doing a little news updating. We spoke a lot about telecom providers acquiring each other, and why we think it may be happening(spoiler alert, we complain about it hehe). We also talk a little about hardware and security.

Topics include:

  • Trango hidden root account
  • WISP-Router closed up shop
  • Baicells supporting VXLAN
  • Cambium ePMP to support MAC-Telnet/MAC-SSH
  • Centurylink to acquire L3 $34B in cash
  • Crown Castle buys FPL FiberNet $1.5B
  • Private Equity buys Intelliquent (former Neutral Tandem, GTT bought the IP network)
  • CenturyLink sells DataCenters
  • Windstream buys Earthlink
  • GTT buys Hibernia
  • Lumos buys Clarity
  • Tomas Slovakian Outage
  • Mikrotik hEX V3
  • Broadcom acquiring Brocade
  • Keep contacting us: contactus (at) or

    Nov 3 / Greg

    Mikrotik hEXr3

    If you look at the new newsletter this month, it basically reads as just an advertisement for the new hEX rev 3…and for good reason. For one, Andrew Thrift is excited about these things, which means they are something special.


    • 880 MHz CPU, 2 cores with 4 threads total
    • 256 MB RAM
    • Full size USB
    • microSD slot for “Dude server” support
    • IPsec hardware acceleration ~450 Mbps
    • Same form factor
    • Same price ~$60

    So as you can see it occupies the same footprint, so it’s the size/shape that I love. The real upgrade is the proc. It’s a MIPS(MT7621A) that has dual cores which is reported to give you 4 threads. That’s a fair bit of processing power in a small/cheap package. It’s due to this they say, ad nauseam, that it is “Dude server ready.”

    They’ve been making updates to the dude, and it seems evident they are committed to bringing it up to snuff. They even placed a microSD slot on this device for fast/persistent Dude DB writing(up to 128GB). I’ve been attempting to run the Dude on an older 2011, with mixed results(it usually pegs the proc even with low utilization).

    It also boasts a full size USB port for 3g/4g or harddrive/flash storage. This could also be used as Dude storage or SMB sharing.

    Part of the chip design includes some IPSec offload which means you will can get accelerated encryption without murdering the processors. Looks like some of their testing shows 225Mb unidirectionally. It seems they’ve taken some of Alex’s exhaustive testing to heart, and are ensuring that packets are not being reordered.

    They are saying that with routed 1400B packets they are getting 1972Mb of throughput. I’m guessing this means under real world conditions with some firewalling and possibly some queuing you should be able to get ~500Mb+ of throughput.

    This honestly sounds like a solid tower router. Small power/formfactor along with the standard MTK features. I can also see this as being a good managed router for business customers. I can imagine being able to replace 90% of datacenter customer WAN routers with one of these…hehe.

    What are your thoughts guys…good, bad, ugly?

    Nov 1 / thebrotherswisp

    Wispapalooza 2016 – Presentation Wrapup

    Greg, Mike, Miller, and Tom talk about the show in general and some of the presentations. We ask the question “Can anyone have too much Tom in their life?”

      Keep contacting us

    ! or contact (at)

    Here’s the video:(if you don’t see it, hit refresh)

    Nov 1 / thebrotherswisp

    Wispapalooza 2016 – Hardware Wrapup

    Greg, Mike, Miller, and Tom talk about some of the hardware at this year’s Wispalooza; and yes Miller…we talk about LTE hehehe.

    This cast we talk about:
    LTU and other UBNT gear
    RF Elements
    Amarillo Wireless
    Cambium Networks
    Final Thoughts

      Keep contacting us

    ! or contact (at)

    Here’s the video:(if you don’t see it, hit refresh)

    Nov 1 / Greg

    Bulk Mikrotik Usermanager Import

    The Mikrotik Usermanager is a radius package you can optionally install on a router. This gives you the ability to locally or remotely authenticate users for: Hotspot, PPP, DHCP, Wireless, or RouterOS logins. It has some paypal/ integration, but the features are so limited I’d personally look at a different solution.

    It is actually a decent system for small standalone VPN authentication(you can allow users to create/modify users without having to login to the router itself). I recently had need to bulk import users, but ran into some issues.

    Customers are actually admins that login to the administrative backend. Users are created to allow login to your various systems. When adding users you must specify a profile, and one doesn’t exist by default.

    First create a default profile. After you have a profile, it will automatically be applied to new users created through the webpage…but what if you want to bulk import via CLI? When adding users via CLI there is not direct method to add a profile to a user, which means anyone added will be unusable(just fantastic).

    The workaround I found is to create a template user via the web interface, then use the “copy-from” command via CLI. The copy-from command will copy the profile setting and apply it to your new users:

    /tool user-manager user
    add customer=admin disabled=no shared-users=2 username=MyUserName password=MyPassword copy-from=0

    I think usermanager is good as a simple standalone manager that gives a web interface for simple administration. Any of you guys have opinions, thoughts, questions, let me know in the comments.

    Oct 15 / thebrotherswisp

    TheBrothersWISP 35 – Blocking ICMP, Wireshark/Mikrotik Packet Sniffer, Open Compute Networking

    Greg, Tomas, and Alex do their best to pretend WISPAPALOOZA didn’t happen(since they were the only ones who didn’t get to go). This one is less news and more conversation/speculation.

    This cast we talk about:
    Budapest MUM
    Unimus in open beta
    Blocking ICMP
    Using wireshark with Mikrotik Packet Sniffer
    Using prefix-length in your route filters
    Open Compute Project – Networking
    Open Compute on packet pushers

      Keep contacting us

    ! or contact (at)

    To see the video please visit the link below!!!

    Oct 1 / thebrotherswisp

    TheBrothersWISP 34 – 10Gb Wireless, Mikrotik Vs Ubiquiti Marketing/Use-case/User Experience, Breaches And DDoS

    Greg, Tom, Tomas, Alex, and Andrew Cox talk about soooo many things. We get in a spirited debate about who uses Mikrotik and the ease of interface vs how marketing plays into the decision making process. It’s pretty amazing I gotta say. Warning, the end of days may be upon us…Tomas actually promoted QuickSet hehehehe.

    Topics Include:
    UBNT AircontrolV2 released out of beta
    Vubiq HaulPass v10G
    ELVA-1’s PPC-10G (10 Gbps Ethernet) millimeter wave radio links
    Mikrotik 6.38rc7 LLDP support & Hardware STP on CRS
    Mikrotik website redesign
    Mikrotik V7 alpha 134
    Mikrotik Scripting with SNMP
    Yahoo hack
    LeekedSource – useful for leak checking
    Krebsonsecurity ddos

      Keep contacting us

    ! or contact (at)

    To see the video please visit the link below!!!