Issue Report
1. Version number: 7.4rc2
2. Router Model: hAP ac³
3. Steps to reproduce the issue:
* Add the configuration and example container image as per the Container documentation (https://help.mikrotik.com/docs/display/ROS/Container)
Code: Select all
[admin@MikroTik] > /container print
0 name="32e88d3b-d744-4e02-96bd-b77d8d46a93d" tag="pihole/pihole:latest" os="linux" arch="arm"
interface=veth1 envlist="pihole_envs" root-dir=disk1/pihole mounts=etc_pihole,dnsmasq_pihole
dns="" status=stopped
* Container can be started:
Code: Select all
[admin@MikroTik] > /container start 0
[admin@MikroTik] > /container print
0 name="32e88d3b-d744-4e02-96bd-b77d8d46a93d" tag="pihole/pihole:latest" os="linux" arch="arm"
interface=veth1 envlist="pihole_envs" root-dir=disk1/pihole mounts=etc_pihole,dnsmasq_pihole
dns="" status=running
Code: Select all
[admin@MikroTik] > /container stop 0
[admin@MikroTik] > /system reboot
Reboot, yes? [y/N]:
y
system will reboot shortly
Code: Select all
[admin@MikroTik] > /container start 0
[admin@MikroTik] > /container print
0 name="32e88d3b-d744-4e02-96bd-b77d8d46a93d" tag="pihole/pihole:latest" os="linux" arch="arm"
interface=veth1 envlist="pihole_envs" mounts=etc_pihole,dnsmasq_pihole dns="" status=stopped
Code: Select all
[admin@MikroTik] > /export hide-sensitive
# jul/16/2022 18:07:49 by RouterOS 7.4rc2
# software id = JI5E-5JQW
#
# model = RBD53iG-5HacD2HnD
# serial number = E7290E36E46D
/interface bridge
add admin-mac=2C:C8:1B:FA:ED:3F auto-mac=no comment=defconf name=bridge
add name=cam
add name=dockers
/interface wireless
set [ find default-name=wlan1 ] band=2ghz-b/g/n channel-width=20/40mhz-XX disabled=no distance=\
indoors frequency=auto installation=indoor mode=ap-bridge ssid=MikroTik-FAED43 wireless-protocol=\
802.11
set [ find default-name=wlan2 ] band=5ghz-a/n/ac channel-width=20/40/80mhz-XXXX disabled=no distance=\
indoors frequency=auto installation=indoor mode=ap-bridge ssid=MikroTik-FAED44 wireless-protocol=\
802.11
/interface veth
add address=172.17.0.2/16 gateway=172.17.0.1 name=veth1
/container mounts
add dst=/etc/pihole name=etc_pihole src=/disk1/etc
add dst=/etc/dnsmasq.d name=dnsmasq_pihole src=/disk1/etc-dnsmasq.d
/disk
set usb1 disabled=no
set usb1-part1 disabled=no name=disk1
/interface list
add comment=defconf name=WAN
add comment=defconf name=LAN
/interface lte apn
set [ find default=yes ] ip-type=ipv4 use-network-apn=no
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/ip pool
add name=default-dhcp ranges=192.168.88.10-192.168.88.254
/ip dhcp-server
add address-pool=default-dhcp interface=bridge name=defconf
/system logging action
add name=dlog target=memory
/zerotier
set zt1 comment="ZeroTier Central controller - https://my.zerotier.com/" disabled=yes disabled=yes \
name=zt1 port=9993
/container
add envlist=pihole_envs interface=veth1 mounts=etc_pihole,dnsmasq_pihole
/container config
set registry-url=https://registry-1.docker.io
/container envs
add key=TZ name=pihole_envs value=Europe/Riga
add key=WEBPASSWORD name=pihole_envs value=mysecurepassword
add key=DNSMASQ_USER name=pihole_envs value=root
/interface bridge port
add bridge=bridge comment=defconf ingress-filtering=no interface=ether3
add bridge=bridge comment=defconf ingress-filtering=no interface=ether4
add bridge=bridge comment=defconf ingress-filtering=no interface=ether5
add bridge=bridge comment=defconf ingress-filtering=no interface=wlan1
add bridge=bridge comment=defconf ingress-filtering=no interface=wlan2
add bridge=dockers interface=veth1
add bridge=bridge interface=ether2
/ip neighbor discovery-settings
set discover-interface-list=LAN
/ipv6 settings
set disable-ipv6=yes max-neighbor-entries=8192
/interface list member
add comment=defconf interface=bridge list=LAN
add comment=defconf interface=ether1 list=WAN
/interface ovpn-server server
set auth=sha1,md5
/ip address
add address=192.168.88.1/24 comment=defconf interface=bridge network=192.168.88.0
add address=172.17.0.1/16 interface=dockers network=172.17.0.0
/ip dhcp-client
add comment=defconf interface=ether1
/ip dhcp-server network
add address=192.168.88.0/24 comment=defconf gateway=192.168.88.1
/ip dns
set allow-remote-requests=yes
/ip dns static
add address=192.168.88.1 comment=defconf name=router.lan
/ip firewall filter
add action=accept chain=input comment="defconf: accept established,related,untracked" \
connection-state=established,related,untracked
add action=drop chain=input comment="defconf: drop invalid" connection-state=invalid
add action=accept chain=input comment="defconf: accept ICMP" protocol=icmp
add action=accept chain=forward comment="defconf: accept out ipsec policy" ipsec-policy=out,ipsec
add action=fasttrack-connection chain=forward comment="defconf: fasttrack" connection-state=\
established,related hw-offload=yes
add action=accept chain=forward comment="defconf: accept established,related, untracked" \
connection-state=established,related,untracked
add action=drop chain=forward comment="defconf: drop invalid" connection-state=invalid
add action=drop chain=forward comment="defconf: drop all from WAN not DSTNATed" connection-nat-state=\
!dstnat connection-state=new in-interface-list=WAN
/ip firewall nat
add action=masquerade chain=srcnat comment="defconf: masquerade" ipsec-policy=out,none out-interface=\
ether1 out-interface-list=WAN
add action=masquerade chain=srcnat out-interface=ether1 src-address=172.17.0.0/16
/system clock
set time-zone-name=Australia/Brisbane
/system leds
set 0 interface=wlan1 leds=led1,led2,led3,led4,led5 type=wireless-signal-strength
set 1 leds=poe-led type=poe-out
/system logging
add topics=container
/system package update
set channel=testing
/tool mac-server
set allowed-interface-list=LAN
/tool mac-server mac-winbox
set allowed-interface-list=LAN
No logging is shown when attempting to restart the container.
Logs on reboot:
Code: Select all
18:03:39 container,info,debug could not use root-dir: disk1/pihole, ignoring
18:03:39 container,info,debug could not use tmpdir: disk1/pull, ignoring
...
18:03:48 bridge,info "dockers" mac address changed to 42:BC:40:CF:81:10