The ROMON wiki section says: “Note that all specific port entries must be placed above wildcard entry with interface=all.”
It also says: “By default one wildcard entry with forbid=no and cost=100 is created.”
The problem is, once ROS creates it, you can’t put any other rule above it!
The Winbox interface doesn’t allow dragging the rules to re-order them.
The CLI doesn’t have a -before option to allow you to insert a new rule before another rule, or a move command to re-order rules.
You can’t delete the provided wildcard entry.
You can’t disable the provided wildcard entry.
You can’t change the interface name of the provided entry.
Is there some clever way to put other rules before the wildcard entry? I’m out of ideas.
I do this routinely. But frankly, this particular problem seemed like such a basic bug – one that should never have survived the first day of QA – that I wanted to post here to make sure I wasn’t bothering MikroTik support because I was overlooking some stupidly obvious solution. Since it’s been ten days and no one has pointed out any dummy mistake I am making, I will report it now.
I hadn’t reported it yet for quite the same reasons as macsrwe, but this problem was there for at least 2 months.
I guess if nobody reports it, MikroTik will never know.
In the meantime I have reported it too. Sorry for double reporting.
Support responded to me that ROMON rules are no longer order-dependent, and the documentation was never updated to reflect that. They will fix the documentation.