error in advanced firewall wiki

Hello,

The last 2 rules in the IPv4 firewall filter section of “Protect the clients” https://help.mikrotik.com/docs/display/ROS/Building+Advanced+Firewall#heading-ProtecttheClients

are invalid…no chain is specified for the last 2 lines

/ip firewall filter> add action=drop src-address-list=no_forward_ipv4 comment=“defconf: drop bad forward IPs”"
chain:
failure: no chain specified

/ip firewall filter
  add action=accept chain=forward comment="defconf: accept all that matches IPSec policy" ipsec-policy=in,ipsec disabled=yes
  add action=fasttrack-connection chain=forward comment="defconf: fasttrack" connection-state=established,related
  add action=accept chain=forward comment="defconf: accept established,related, untracked" connection-state=established,related,untracked
  add action=drop chain=forward comment="defconf: drop invalid" connection-state=invalid
  add action=drop chain=forward comment="defconf:  drop all from WAN not DSTNATed" connection-nat-state=!dstnat connection-state=new in-interface-list=WAN
  add action=drop src-address-list=no_forward_ipv4 comment="defconf: drop bad forward IPs"
  add action=drop dst-address-list=no_forward_ipv4 comment="defconf: drop bad forward IPs"

how do we report this to mikrotik to fix their wiki?

Thanks

Interesting, I thought I saw something like this before, and was told a default chain would be created, which I didn’t understand, but not sure. Its a puzzle.

@anav: No, it’s a mistake. And before you get puzzled, just try it, it’s not difficult:

[sob@CHR4] > /ip firewall filter add action=log 
chain:

In other words, if you don’t provide chain, system will ask you for it.

As for the main topic, either they will notice it here, or I guess you can write to support, at least I’m not aware of any other better contact.

Good that clears up my poor memory, the system prompts one for a chain so it cannot be missed. Good at least we cant config it like so. Such sloppy writers sigh…