MikroTik

eworm

Hello everybody,

Mikrotik announced a new miniPCI-e card for LTE/4G named "R11e-4G". It supports some different bands compared to the older card "R11e-LTE". How to decide what card to use at what location? Wondering if it is worth changing/upgrading the cards in my wAP and ltAP.

eworm

The fetch command behaves wired... [admin@MikroTik] > :put ([ /tool fetch https://www.eworm.de/ip/index.shtml output=user as-value ]->"data") 91.16.17.160 [admin@MikroTik] > /file print where name="index.shtml" # NAME TYPE SIZE CREATION-TIME 0 index.shtml .shtml file 0 oct/10/2018 15:07:50 It does p...

eworm

- Ability to add items to end of arrays
Looks like "+" works just fine:

No, the documentation says using a comma is the correct way:

:set a ($a, 5);

https://wiki.mikrotik.com/wiki/Manual:S ... _Operators

eworm

I like this long-term version and it works fine for me. I have a small problem with my auto-update script, that updates all my devices (only to bugfix channel). Until now it works just fine with RouterOS and Routerboard firmware updates, but now this code asks for [y/n]... /system routerboard :if (...

eworm

Try this:
Yes. But this topic is named long-term too. Confusion from mikrotik

That's true. But I think RouterOS itself will do the change with version 6.44. Any official statement on this?

eworm

Well, technically speaking, it's still "bugfix", not "long-term"
It is not true

Try this:

[admin@MikroTik] > :put ("Version " . [ / system package update get latest-version ] . " is channel " . [ / system package update get channel ] . "!");

eworm

https://wiki.mikrotik.com/wiki/Manual:T ... a_variable

eworm

Yes. T-shirts, stickers and free routers

Wondering what routers will surprise us this time...

eworm

We tried Mac telnet and same issue. Does anyone know if we hard reset device will it clear the backups stored on device? It depends on the version which was there before and how you have stored the backups. Since 6.? (sorry, I don't know exactly), you have to use a file name starting with flash/ to...

eworm

[...] Since the speed setting does not take effect when "auto-negotiation=yes", [...] Are you sure? I have a CRS where one port negotiates at 100M-full - probably due to bad wiring. If I set speed=1Gbps the port is flapping at 1000M-full. This cosmetic issue can be manually fixed by setting new val...

eworm

*) fetch - added "as-value" output format; Assuming this is still the same functionality as described at https://wiki.mikrotik.com/wiki/Manual:Tools/Fetch#Return_value_to_a_variable , I am surprised to find that when I do this: /tool fetch mode=https host="mikrotik.com" url="https://mikrotik.com/ab...

eworm

Technically this is not about the release candidate version, posting here because of changelog: !) cloud - reworked "/ip cloud ddns-enabled" implementation (suggested to disable service and re-enable after installation process); Me device is running current version 6.42.7 and I want to update the l...

eworm

After a while ... depends on how often is RB supposed to renew the DDNS record. If you turn cloud off, cloud (hopefully) doesn't know it and records have to expire. No. From https://wiki.mikrotik.com/wiki/Manual:IP/Cloud : After router sends it's IP address to the cloud server, it will stay on the ...

eworm

Technically this is not about the release candidate version, posting here because of changelog: !) cloud - reworked "/ip cloud ddns-enabled" implementation (suggested to disable service and re-enable after installation process); Me device is running current version 6.42.7 and I want to update the la...

eworm

/quit

That closes the terminal connection...

I'd suggest

:error "bye!"

eworm

I updated a system from 6.42.7 to 6.43rc66, now my ipsec connections are broken... Peer configuration had a comment about wrong parameter (can't give the exact wording). Switched mode-config to "none", now setting it to "request-only" fails: [admin@Mikrotik] > / ip ipsec peer set mode-config=reques...

eworm

Send a supout.rif file to support@mikrotik.com

Done, Ticket#2018083022003478

eworm

I updated a system from 6.42.7 to 6.43rc66, now my ipsec connections are broken... Peer configuration had a comment about wrong parameter (can't give the exact wording). Switched mode-config to "none", now setting it to "request-only" fails: [admin@Mikrotik] > / ip ipsec peer set mode-config=request...

eworm

bitwise operator works, whats missing is :toipv6 Missing from being implemented or missing in my command? [admin@MikroTik] > :put ([:toip6 2003:cf:2f1e:5c00:d250:99ff:fec0:d180 ] & [:toip6 ffff:ffff:ffff:ff00::]) ... does not give an error, but does not give output neither. I mailed support and the...

eworm

We have found out that sometimes the R11e-LTE modems fail to get an IP address in 3G mode using RouterOS v6.42.7 - we will fix this problem in the next RC and then push that change to the Current release. Thanks Uldis I wait because we find the same problem when I've upgraded from 6.42.3 to 6.42.7,...

eworm

bitwise operator works, whats missing is :toipv6 Missing from being implemented or missing in my command? :put ([:toip6 2003:cf:2f1e:5c00:d250:99ff:fec0:d180 ] & [:toip6 ffff:ffff:ffff:ff00::]) ... does not give an error, but does not give output neither. I mailed support and they told me "to be aw...

eworm

eworm, proper syntax would be:
Code: Select all
:local test ([tool fetch url="https://www.eworm.de/ip" output=user as-value]->"data");
:put $test;
https://wiki.mikrotik.com/wiki/Manual:T ... a_variable

Even better! Thanks a lot!

eworm

Would be nice the see the bitwise operator for IPv6 addresses... [admin@MikroTik] > :put (192.168.88.10 & 255.255.0.0) 192.168.0.0 [admin@MikroTik] > :put (2003:cf:2f1e:5c00:d250:99ff:fec0:d180 & ffff:ffff:ffff:ff00::) Script Error: cannot compute bitwise "and" of internal number and internal number

eworm

[admin@MikroTik] > :put [/tool fetch https://www.eworm.de/ip/ output=user as-value ] data=80.133.168.147;downloaded=0;duration=00:00:01;status=finished Finally we can fetch data without writing and reading a file. Thanks a lot! Looks like it's required to cut the data part, though... Or is there a ...

eworm

*) rb3011 - added IPsec hardware acceleration support;
Maybe we could have some hope that RB750Gr3 would get HW support sooooon.

It has support for harware ipsec for a long time...

eworm

[admin@MikroTik] > :put [/tool fetch https://www.eworm.de/ip/ output=user as-value ] data=80.133.168.147;downloaded=0;duration=00:00:01;status=finished Finally we can fetch data without writing and reading a file. Thanks a lot! Looks like it's required to cut the data part, though... Or is there a ...

eworm

With "WPA-PSK" you refer to a non-WPA2-configuration?

eworm

I have try putting a COMMENT for the 2 Policy but that dont work?

You can add filters for find. Add comments, then use something like this:

 / ip ipsec policy disable [ find where comment="connection 1" ];

eworm

:put [/ip ipsec remote-peers get 0 remote-address] This is an issue with your script. Referencing something with id ("0") only works after you printed actual configuration. If you want the address of the first entry use something like this: :put [ / ip ipsec remote-peers get [ :pick [ find ] 0 ] re...

eworm

Bitwise operators do not work for IPv6 addresses. I mailed the support, they answered "to be aware of the issue, perhaps it will be fixed in the upcoming versions".

So whoever needs this... Mail the support and let them know you need it!

eworm

Yes, please! I need this as well.
Still wondering why this was added some time ago half-finished...

eworm

*) backup - added support for new backup file encryption (AES128-CTR) with signatures (SHA256);

So encryption=rc4 is the old behaviour, encryption=aes-sha256 is the new one? What is the default if I do not specify the option?

eworm

amokkatmt - If your router can reach cloud server over IPv6, then Cloud should resolve to IPv6 address instead of IPv4. That happens automatically; Does it resolve to IPv6 address exclusively then? That would be a real issue for be, because I have devices connected via dual stack, but connect to th...

eworm

We are sorry for any issues caused by the previous package, we uploaded new packages, that will work fine on any router. Package updated 07.02.2018 To fix storage issue on your router, use package from the link, https://www.mikrotik.com/download/share/fix_space.npk - upload package to your router; ...

eworm

You still block CloudFlare and tons of other websites. Well, https cert on this host covers "ssl894059.cloudflaressl.com", "toknowall.com" and "*.toknowall.com" - doesn't look like there are tons of other websites :) You know that the server can use different certificates based on SNI extension?

eworm

But this is not available to scripts, no? Perhaps you should add a read-only property "pending-upgrade". A scheduled script could look like this: Scripts can read the log! See https://wiki.mikrotik.com/wiki/Manual:Scripting-examples#Detect_new_log_entry Yes... :if ([ :len [ /log find where topics=s...

eworm

icsterm - Auto upgrade feature under RouterBOARD settings does the same thing automatically. But it does not reboot to take the changes into account. After upgrade you see a comment in export: [admin@mikrotik] > /system routerboard print ;;; Firmware upgraded successfully, please reboot for changes...

eworm

Can anybody make me a solution / script so after the ROS upgrade the unit either in the same reboot, or thereafter reboots again to update the fw version? Now each and every unit has to be rebooted twice. which is a pain if you have to do big amounts.... here you go :log info "Checking firmware..."...

eworm

Yes there is

https://github.com/haakonnessjoen/MAC-Telnet

But that does not yet work with RouterOS 6.43rc. I opened an issue already.
Is there an detail available about mac telnet protocol?

eworm

Code: Select all
/ip ssh regenerate-host-key
/system reboot
and works
binary backup is now without error. tested on about 10 devices

Works for me as well. Thanks a lot!

eworm

I like the continuing migration from "passive PoE" towards "802.3 af/at"!

In fact this is not a migration but an additional feature as passive PoE is still supported.

Sadly hAP ac² missed the upgrade.

eworm

And why should people have to read these things, just make RC a real RC and not a nightly. Naming of releases should be self explanatory ... or call it "Recently Compiled" instead of "Release Candidate"... Or call it "Ridiculous Count"... :D Once Linus Torvalds stated: However, for some reason four...

eworm

*) backup - do not encrypt backup file unless password is provided; I like the current way it works the backup is encrypted with admin password. Please make an option to encrypt using current admin password like before, I don't want to have my backup unencrypted neither want to put a password in a ...

eworm

BTW, this works for IPv6 as well if you make some little modifications:

Use protocol=icmpv6 and icmp-options=128:0-255
Add another 20 bytes to packet sizes (IPv6/ICMPv6 headers are 48 bytes vs. 28 bytes for IPv4/ICMP)

eworm

Thanks for this, really a nice idea! Let me add another goody... With openssh (on linux, so different ping arguments) you can add your knocking to ssh configuration: Host routerboard.example.com ProxyCommand sh -c 'ping -c 1 -s 400 %h && ping -c 1 -s 500 %h && ping -c 1 -s 600 %h && exec nc %h %p' U...

eworm

Hello Folks! I have problem backing up configuration on practically all devices using ros 6.42 or bigger, just discovered it today. The message I got is: "backup,critical error creating backup file: could not read all configuration files" There is no full filesystems and other visible errors. I saw...

eworm

Hello Folks! I have problem backing up configuration on practically all devices using ros 6.42 or bigger, just discovered it today. The message I got is: "backup,critical error creating backup file: could not read all configuration files" There is no full filesystems and other visible errors. I saw...

eworm

Just updated one of our Metal G-52SHPacn to new v6.42.1 RouterOS. tools/netwatch does not work anymore. When the tested server is "up", we run [:global srvstat "up"] to set the variable srvstat. Did work with 6.41.2 Looks like up event is not working. Version 6.42 has this changelog entry: *) netwa...

eworm

Now if I look into terminal I still see 2 lines (I pressed Upgrade button twice :)). But this should not be there while the router was already rebooted, right? I think this is expected. You installed the firmware upgrade and rebooted without opening the terminal. Critical messages are stored to be ...

eworm

*) fetch - added "output" option for all modes in order to return result to file, variable or ignore it;
I have failed to write in variable. Any way.

Same for me. Anybody should update the documentation in the wiki (and possibly add an example).

Search found 157 matches