Archives for My Lazy and Forgetful Mind

Camouflaging MikroTik from ISP

Contents1 Camouflaging MikroTik from ISP1.1 Goal1.2 Firewall Rule1.3 Randomization Script1.4 Scheduler1.5 Behavior Camouflaging MikroTik from ISP Goal Reduce ISP visibility that the connected device is a MikroTik by masking: System identity DHCP client hostname WAN (ether1) MAC address Blocking management ports on WAN Firewall Rule Drop MikroTik management ports from WAN (ether1): /ip firewall filter […]

Batch resize image on windows 11 using powershell

This script below work as resize all image with jpg, jpeg, JPG, JPEG extension inside folder and subfolder save the result into 'web' folder at same folder as this script make file with ps1 extension Add-Type -AssemblyName System.Drawing $w = 300 $h = 400 $quality = 70 # JPEG quality 0–100 $root = Get-Location $outDir […]

iPerf3 on Windows 11 with Docker

# iPerf3 on Windows 11 with Docker This guide explains how to install Docker Desktop on Windows 11, run iPerf3 for network performance testing, and use a single .bat script for quick local, remote, and dual-direction tests. --- ## 1. Install Docker Desktop 1. Download Docker Desktop: - [https://www.docker.com/products/docker-desktop/](https://www.docker.com/products/docker-desktop/) 2. Install it with **WSL 2 […]

How to Remove a Specific Command from PowerShell History in VS Code

Contents1 How to Remove a Specific Command from PowerShell History in VS Code1.1 📂 Step-by-Step Instructions1.2 ✅ Notes1.3 🔒 Pro Tip How to Remove a Specific Command from PowerShell History in VS Code If you accidentally typed a password or sensitive command in the VS Code terminal using PowerShell, and you want to remove only […]

Setting Bridge Network With WDS on BOLT BL-201

Contents1 Setting Bridge Network With WDS on BOLT BL-2011.1 Server (AP - Access Point)1.2 Client (WDS Station)1.3 Notes Setting Bridge Network With WDS on BOLT BL-201 Server (AP - Access Point) Wireless Mode: Access Point (AP) Enable WDS: Yes SSID: Set your preferred SSID Encryption: WPA2-PSK (recommended) Key: Set your Wi-Fi password Assign to network: […]

Upgrade Mysql / MariaDB version 10.1.xx to 10.6.xx on XAMPP Windows

To upgrade MariaDB in XAMPP, follow these steps carefully: Contents1 🔄 Replace MariaDB in XAMPP with a New Version1.1 ✅ 1. Backup your data1.2 ✅ 2. Download MariaDB (ZIP version)1.3 ✅ 3. Stop MySQL in XAMPP1.4 ✅ 4. Rename old MariaDB folder1.5 ✅ 5. Extract new MariaDB1.6 ✅ 6. Copy back your data folder1.7 ✅ […]

How to import big table using mysql command on terminal

Contents1 Understanding the MySQL Import Command with Custom Parameters1.1 Breakdown of the Command1.2 Best Practices When Importing Large SQL Files1.3 Conclusion Understanding the MySQL Import Command with Custom Parameters When importing large SQL dump files into MySQL, it is often necessary to adjust MySQL's configuration parameters to handle large queries and improve performance. The following […]

How to Backup VPS to Home Server using BORG

To back up your VPS to your home server using BorgBackup, follow these steps: Contents1 1. Install Borg on Both VPS & Home Server2 2. Set Up SSH Access (Passwordless Login)3 3. Initialize the Borg Repository on Home Server4 4. Create a Backup from VPS to Home Server5 5. Automate Backups with Cron6 6. Prune […]

laravel Migration Specified key was too long problem

https://stackoverflow.com/questions/42244541/laravel-migration-error-syntax-error-or-access-violation-1071-specified-key-wa check if 'mysql' => [ ..., ..., 'engine' => env('DB_ENGINE', 'InnoDB'), ] or InnoDB ROW_FORMAT=DYNAMIC solve the problem, if still error, try accepted answer about Schema::defaultStringLength(191);

How to Composer Install using different php version

Contents1 1. Find Composer Installation Path1.1 Windows1.2 linux2 2. Run Composer Using a Specific PHP Version2.1 Windows2.2 Linux2.3 hax, temporary change PHP cli version 1. Find Composer Installation Path Windows Run the following command to check system paths: php -r "echo getenv('PATH');" Look for a path similar to: C:\ProgramData\ComposerSetup\bin\ Or search for "composer" in the […]

Camouflaging MikroTik from ISP

2 September 2025 / by akozan / 0 Comments

Contents

1 Camouflaging MikroTik from ISP

Camouflaging MikroTik from ISP

Goal

Reduce ISP visibility that the connected device is a MikroTik by masking:

System identity
DHCP client hostname
WAN (ether1) MAC address
Blocking management ports on WAN

Firewall Rule

Drop MikroTik management ports from WAN (ether1):

/ip firewall filter
add chain=input in-interface=ether1 protocol=tcp port=8291,8728,8729 action=drop comment="Block Mikrotik management from ISP side"

Randomization Script

This script:

Generates a random PC-style name (DESKTOP, LAPTOP, PC, WIN, WORKSTATION + random string)
Applies it as system identity and DHCP client ID
Randomizes MAC address on ether1

# --- Settings ---
:local hostnameLength 6
:local pcPrefixes {"DESKTOP";"LAPTOP";"PC";"WIN"}
:local androidPrefixes {"SM-G";"SM-A";"Redmi-Note";"Redmi";"vivo";"oppo";"Realme";"Infinix"}
:local chars "ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789"
:local macChars "0123456789ABCDEF"

# --- Build long string for safe picking ---
:local multiplied ""
:for i from=1 to ((255 + [:len $chars]) / [:len $chars]) do={:set multiplied ($multiplied . $chars)}

# --- Generate pseudo-random hash (like your password generator) ---
/certificate scep-server otp
:local hash ""
:for i from=1 to=(((10 + ($hostnameLength-1)) / 10)) do={:set hash "$hash $([generate minutes-valid=0 as-value]->"password")"}

# --- Generate random hostname string ---
:local randStr ""
:for i from=0 to=(($hostnameLength*2)) step=2 do={
    :set $hex "0x$[:pick $hash $i ($i+2)]"
    :set randStr "$randStr$[:pick $multiplied ($hex)]"
}

# --- Choose style based on first byte of hash ---
:local styleByte "0x$[:pick $hash (4*2) (8*2+2)]"
:local style ([:tonum $styleByte] % 2)

# --- Pick prefix and build hostname ---
:local prefix ""
:if ($style = 0) do={
    :set prefix [:pick $pcPrefixes (([:tonum $styleByte]) % [:len $pcPrefixes])]
} else={
    :set prefix [:pick $androidPrefixes (([:tonum $styleByte]) % [:len $androidPrefixes])]
}

:local newName "$prefix-$randStr"

# --- Generate MAC ---
:local mac ""
:for i from=1 to=6 do={
    :set $hex1 "0x$[:pick $hash (i*2) (i*2+2)]"
    :set mac "$mac:$[:pick $macChars (([:tonum $hex1]+5) % [:len $macChars])]$[:pick $macChars (([:tonum $hex1] +1) % [:len $macChars])]"
}
:set mac [:pick $mac 1 [:len $mac]]

# --- Log result ---
:log warning "[MikroTik] Identity set to $newName , MAC set to $mac"

# --- Apply identity and MAC ---
/system identity set name=$newName
/interface ethernet set ether1 mac-address=$mac

Scheduler

Add to run script at every reboot:

/system scheduler
add name=RandomizeIdentity on-event="(paste script here)" start-time=startup

Behavior

Each reboot = new MAC, hostname, identity, and DHCP IP
ISP sees it as a new generic device
Management ports blocked from WAN

Camouflaging MikroTik from ISP

Goal

Firewall Rule

Randomization Script

Scheduler

Behavior

Leave a Reply Cancel reply