Recently bought a hap-ac and am super happy with it. Have it rigged up to do both wireless AP and as a router. I am thinking of tossing an fibre sfp in it, and getting a RB2011 and doing the same (my internet is 300mb, so the 100mb ethernet ports are a slight hindrance). So in an ideal world (just a time constraint really) I would like to make the hap-ac just an AP, and use something like the RB2011 as the nat router. The big question is, can I export my config from my hap-ac and import it onto a new device? That would make integrating the RB2011 in super easy.
Yes, you can. However be prepared to slightly modify the exported script before importing it on another device (mainly to reflect the differences in the hardware). Also, you may find this wiki page helpful, so please check it out.
I’ve had issues importing a backup on the same hardware. For instance i had a lot of rb951 and on restore the wifi interface would be disabled and it’s settings would get screwed up, among other things. That is because on source the interface would be wlan5 and on restore wlan2 or anything else. I fixed that by having a script to run after recover and replacing wlan5 or whatever with just wlan. Since it had only one wlan interface all settings would be fixed.
Thanks, that looks like exactly what I need to know!
Thanks for the heads up. Perhaps I need to test it out and see how things behave.
I suppose I need to ask this in case it matters; I did not use the windows program for managing the device (I run all Linux at home, RHEL to be precise, with one Fedora WS rig), Does this matter much? I see that there are web-gui options and I could swear while perusing the shell documentation, that everything seems to be exposed in both places.
Winbox is much easier to use when you have only a couple of them because, to me, it’s much faster and intuitive. When the device number rises ssh is the way to go because you can use tools like dsh to push command or run scripts on all devices in the same time. i usually test on 1-2 devices, make a script and deploy to all. Can’t say about dude, haven’t used it so far.
There are some menu differences between gui and cli but you get used to them - for instance in winbox you have ip → web-proxy in cli there’s /ip proxy and stuff like that. From a functional view i did not notice any differences. Don’t know about webview, i always disable it.
[quote=“tangram”]Winbox is much easier to use when you have only a couple of them because, to me, it’s much faster and intuitive. When the device number rises ssh is the way to go because you can use tools like dsh to push command or run scripts on all devices in the same time. i usually test on 1-2 devices, make a script and deploy to all. Can’t say about dude, haven’t used it so far.
There are some menu differences between gui and cli but you get used to them - for instance in winbox you have ip → web-proxy in cli there’s /ip proxy and stuff like that. From a functional view i did not notice any differences. Don’t know about webview, i always disable it. [/quote]
I would like to use dsh to push a scheduled task to all devices but need some examples so i can modify to suit - can you share an example
I don’t use timed pushes, I do it manually. Sure you could can use cron or something to do that.
This being said I have created a user with rsakey attached on each managed device and so i can log in without prompts.
This tutorial was very useful: https://bl0gg.ruberg.no/2014/02/securely-managing-multiple-mikrotik-units-with-dsh/
It needed some tinkering to get going with login without prompts but if you have some experience with generating rsa is ok.
I used puttygen for keys.
When you have Linux system just use the WebGUI feature, which is almost the same as webfig and I even
find it a lot easier to use.
Just use your browser to log on to the router.
Of course you can use “wine winbox.exe” as well. But I rarely do so.
When you want to do a one-time migration of some settings (e.g. VPN tunnels) from your wap-ac to
a 2011 it is easiest to do a /export file=somename, then download the file (ftp, webgui) and open
it in an editor, then you can look for the sections you would like to migrate, edit them if required,
and copy/paste them into a telnet or ssh to your new router.
Don’t copy the entire export, that will normally end in disaster.
