RouterOS - 6.21.1
Не могу подключить моб тел к вифи сети микротика
ЛогиЖ
40:F3:08:6A:BE:35@wlan1: connected
40:F3:08:6A:BE:35@wlan1: disconnected, extensive data loss
wlan1: data from unknown device 40:F3:08:6A:BE:35, sent deauth
40:F3:08:6A:BE:35@wlan1: connected
40:F3:08:6A:BE:35@wlan1: disconnected, received disassoc: sending station leaving (8)
============
# jul/08/2016 16:24:30 by RouterOS 6.21.1
# software id = 7YLJ-GFJ7
#
/interface bridge
add admin-mac=4C:5E:0C:71:AA:D7 auto-mac=no mtu=1500 name=bridge-local
/interface ethernet
set [ find default-name=ether1 ] name=ether1-gateway
set [ find default-name=ether2 ] name=ether2-master-local
set [ find default-name=ether3 ] master-port=ether2-master-local name=\
ether3-slave-local
set [ find default-name=ether4 ] master-port=ether2-master-local name=\
ether4-slave-local
set [ find default-name=ether5 ] master-port=ether2-master-local name=\
ether5-slave-local
/ip neighbor discovery
set ether1-gateway discover=no
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
add authentication-types=wpa-psk,wpa2-psk group-ciphers=tkip,aes-ccm \
management-protection=allowed mode=dynamic-keys name=1410300600240000m \
unicast-ciphers=tkip,aes-ccm wpa-pre-shared-key=*** \
wpa2-pre-shared-key=***
/interface wireless
set [ find default-name=wlan1 ] band=2ghz-b/g disabled=no distance=indoors \
l2mtu=2290 mode=ap-bridge security-profile=1410300600240000m
/ip pool
add name=dhcp ranges=10.173.2.58-10.173.2.62
add name=HotSpot ranges=10.253.253.2-10.253.253.254
/ip dhcp-server
add address-pool=dhcp disabled=no interface=bridge-local lease-time=1d name=\
vip
add address-pool=HotSpot disabled=no interface=wlan1 lease-time=12h name=\
HotSpot
/ppp profile
add name=ovpn use-encryption=required
/interface ovpn-client
add add-default-route=no auth=sha1 certificate=cert_1 cipher=aes256 \
connect-to=vip-ovpn.ameria.de disabled=no mac-address=FE:8E:FD:08:14:0A \
max-mtu=1500 mode=ethernet name=ovpn-out1 password=e5rKwAJx port=443 \
profile=ovpn user=yqIrTFu9
/routing ospf instance
set [ find default=yes ] redistribute-connected=as-type-2 router-id=\
10.10.0.49
/snmp community
set [ find default=yes ] write-access=yes
/system logging action
set 2 remember=yes
set 3 src-address=0.0.0.0
/interface bridge port
add bridge=bridge-local interface=ether2-master-local
/ip address
add address=10.173.2.57/29 interface=bridge-local network=10.173.2.56
add address=10.253.253.1/24 interface=ether2-master-local network=\
10.253.253.0
/ip dhcp-client
add comment="default configuration" dhcp-options=hostname,clientid disabled=\
no interface=ether1-gateway
/ip dhcp-server lease
add address=10.173.2.62 client-id=1:44:8a:5b:59:82:14 mac-address=\
44:8A:5B:59:82:14 server=vip
/ip dhcp-server network
add address=10.173.2.56/29 comment="VIP local net" dns-server=10.173.2.57 \
gateway=10.173.2.57
add address=10.253.253.0/24 comment=HotSpot dns-server=10.253.253.1 gateway=\
10.253.253.1
/ip dns
set allow-remote-requests=yes servers=10.5.152.1
/ip dns static
add address=192.168.88.1 name=router
add address=10.173.2.62 name=demo.promo
add address=10.173.2.62 name=admin.promo.local
/ip firewall filter
add chain=input comment="default configuration" protocol=icmp
add chain=input comment="default configuration" connection-state=established
add chain=input comment="default configuration" connection-state=related
add action=drop chain=input comment="default configuration" disabled=yes \
in-interface=ether1-gateway
add chain=forward comment="default configuration" connection-state=\
established
add chain=forward comment="default configuration" connection-state=related
add action=drop chain=forward comment="default configuration" \
connection-state=invalid disabled=yes
/ip firewall nat
add action=masquerade chain=srcnat comment="default configuration" \
out-interface=ether1-gateway to-addresses=0.0.0.0
/ip route
add disabled=yes distance=1 gateway=10.105.152.193
add distance=1 dst-address=95.131.220.69/32 gateway=10.10.0.1
/ip upnp
set allow-disable-external-interface=no
/routing filter
add action=accept chain=ospf-out prefix=10.173.2.56/29
add action=discard chain=ospf-out
/routing ospf interface
add interface=ovpn-out1 network-type=broadcast priority=0
/routing ospf network
add area=backbone network=10.10.0.0/24
/system clock
set time-zone-name=Europe/Berlin
/system clock manual
set time-zone=+02:00
/system identity
set name=1410300600240000m
/system leds
set 0 interface=wlan1 leds=wlan-led type=wireless-status
set 1 interface=ether1-gateway leds=led1
set 2 interface=ether2-master-local leds=led2
set 3 interface=ether3-slave-local leds=led3
set 4 interface=ether4-slave-local leds=led4
set 5 interface=ether5-slave-local leds=led5 type=interface-activity
/system ntp client
set enabled=yes primary-ntp=83.137.98.96 secondary-ntp=46.165.212.204
/tool mac-server
set [ find default=yes ] disabled=yes
add interface=ether2-master-local
add interface=ether3-slave-local
add interface=ether4-slave-local
add interface=ether5-slave-local
add interface=wlan1
add interface=bridge-local
/tool mac-server mac-winbox
set [ find default=yes ] disabled=yes
add interface=ether2-master-local
add interface=ether3-slave-local
add interface=ether4-slave-local
add interface=ether5-slave-local
add interface=wlan1
add interface=bridge-local
# software id = 7YLJ-GFJ7
#
/interface bridge
add admin-mac=4C:5E:0C:71:AA:D7 auto-mac=no mtu=1500 name=bridge-local
/interface ethernet
set [ find default-name=ether1 ] name=ether1-gateway
set [ find default-name=ether2 ] name=ether2-master-local
set [ find default-name=ether3 ] master-port=ether2-master-local name=\
ether3-slave-local
set [ find default-name=ether4 ] master-port=ether2-master-local name=\
ether4-slave-local
set [ find default-name=ether5 ] master-port=ether2-master-local name=\
ether5-slave-local
/ip neighbor discovery
set ether1-gateway discover=no
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
add authentication-types=wpa-psk,wpa2-psk group-ciphers=tkip,aes-ccm \
management-protection=allowed mode=dynamic-keys name=1410300600240000m \
unicast-ciphers=tkip,aes-ccm wpa-pre-shared-key=*** \
wpa2-pre-shared-key=***
/interface wireless
set [ find default-name=wlan1 ] band=2ghz-b/g disabled=no distance=indoors \
l2mtu=2290 mode=ap-bridge security-profile=1410300600240000m
/ip pool
add name=dhcp ranges=10.173.2.58-10.173.2.62
add name=HotSpot ranges=10.253.253.2-10.253.253.254
/ip dhcp-server
add address-pool=dhcp disabled=no interface=bridge-local lease-time=1d name=\
vip
add address-pool=HotSpot disabled=no interface=wlan1 lease-time=12h name=\
HotSpot
/ppp profile
add name=ovpn use-encryption=required
/interface ovpn-client
add add-default-route=no auth=sha1 certificate=cert_1 cipher=aes256 \
connect-to=vip-ovpn.ameria.de disabled=no mac-address=FE:8E:FD:08:14:0A \
max-mtu=1500 mode=ethernet name=ovpn-out1 password=e5rKwAJx port=443 \
profile=ovpn user=yqIrTFu9
/routing ospf instance
set [ find default=yes ] redistribute-connected=as-type-2 router-id=\
10.10.0.49
/snmp community
set [ find default=yes ] write-access=yes
/system logging action
set 2 remember=yes
set 3 src-address=0.0.0.0
/interface bridge port
add bridge=bridge-local interface=ether2-master-local
/ip address
add address=10.173.2.57/29 interface=bridge-local network=10.173.2.56
add address=10.253.253.1/24 interface=ether2-master-local network=\
10.253.253.0
/ip dhcp-client
add comment="default configuration" dhcp-options=hostname,clientid disabled=\
no interface=ether1-gateway
/ip dhcp-server lease
add address=10.173.2.62 client-id=1:44:8a:5b:59:82:14 mac-address=\
44:8A:5B:59:82:14 server=vip
/ip dhcp-server network
add address=10.173.2.56/29 comment="VIP local net" dns-server=10.173.2.57 \
gateway=10.173.2.57
add address=10.253.253.0/24 comment=HotSpot dns-server=10.253.253.1 gateway=\
10.253.253.1
/ip dns
set allow-remote-requests=yes servers=10.5.152.1
/ip dns static
add address=192.168.88.1 name=router
add address=10.173.2.62 name=demo.promo
add address=10.173.2.62 name=admin.promo.local
/ip firewall filter
add chain=input comment="default configuration" protocol=icmp
add chain=input comment="default configuration" connection-state=established
add chain=input comment="default configuration" connection-state=related
add action=drop chain=input comment="default configuration" disabled=yes \
in-interface=ether1-gateway
add chain=forward comment="default configuration" connection-state=\
established
add chain=forward comment="default configuration" connection-state=related
add action=drop chain=forward comment="default configuration" \
connection-state=invalid disabled=yes
/ip firewall nat
add action=masquerade chain=srcnat comment="default configuration" \
out-interface=ether1-gateway to-addresses=0.0.0.0
/ip route
add disabled=yes distance=1 gateway=10.105.152.193
add distance=1 dst-address=95.131.220.69/32 gateway=10.10.0.1
/ip upnp
set allow-disable-external-interface=no
/routing filter
add action=accept chain=ospf-out prefix=10.173.2.56/29
add action=discard chain=ospf-out
/routing ospf interface
add interface=ovpn-out1 network-type=broadcast priority=0
/routing ospf network
add area=backbone network=10.10.0.0/24
/system clock
set time-zone-name=Europe/Berlin
/system clock manual
set time-zone=+02:00
/system identity
set name=1410300600240000m
/system leds
set 0 interface=wlan1 leds=wlan-led type=wireless-status
set 1 interface=ether1-gateway leds=led1
set 2 interface=ether2-master-local leds=led2
set 3 interface=ether3-slave-local leds=led3
set 4 interface=ether4-slave-local leds=led4
set 5 interface=ether5-slave-local leds=led5 type=interface-activity
/system ntp client
set enabled=yes primary-ntp=83.137.98.96 secondary-ntp=46.165.212.204
/tool mac-server
set [ find default=yes ] disabled=yes
add interface=ether2-master-local
add interface=ether3-slave-local
add interface=ether4-slave-local
add interface=ether5-slave-local
add interface=wlan1
add interface=bridge-local
/tool mac-server mac-winbox
set [ find default=yes ] disabled=yes
add interface=ether2-master-local
add interface=ether3-slave-local
add interface=ether4-slave-local
add interface=ether5-slave-local
add interface=wlan1
add interface=bridge-local
=============
Фаервол отключён, аксесс листа нет.
Подскажите плз как пофиксить?
спасибо)