Accidentally edited the post instead of replying to it, and I can't find a "prior version" to recover from.
(New moderator, mea culpa.)
I like clicking around my Mikrotik, and finding out new things.
Or they say "That's so easily Googled!"
For you, yes. For me, I get pages of results that I try
and then bork up my system.
Impatient experts would not be allowed near there.
Why is my Mikrotik date wrong?
the clock and ntp client don't work well together.
# 2023-06-28 14:47:40 by RouterOS 7.10
# software id = **ELIDED**
#
# model = RB951Ui-2HnD
# serial number = **ELIDED**
/interface bridge
add admin-mac=CC:2D:E0:10:E6:83 auto-mac=no comment=defconf name=bridge protocol-mode=none
/interface ethernet
set [ find default-name=ether1 ] advertise=10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full
set [ find default-name=ether2 ] advertise=10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full name=ether2-master
set [ find default-name=ether3 ] advertise=10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full
set [ find default-name=ether4 ] advertise=10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full
set [ find default-name=ether5 ] advertise=10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full
/interface wireless
set [ find default-name=wlan1 ] antenna-gain=0 band=2ghz-onlyn channel-width=20/40mhz-XX country="united states" disabled=no frequency=auto mode=ap-bridge \
noise-floor-threshold=-110 ssid=Hillel station-roaming=enabled tx-power=26 tx-power-mode=all-rates-fixed wireless-protocol=802.11
/interface list
add exclude=dynamic name=discover
add name=mactel
add name=mac-winbox
add name=WAN
/interface lte apn
set [ find default=yes ] ip-type=ipv4 use-network-apn=no
/interface wireless security-profiles
set [ find default=yes ] authentication-types=wpa2-psk mode=dynamic-keys supplicant-identity=MikroTik
/ip pool
add name=dhcp ranges=192.168.1.10-192.168.1.254
/ip dhcp-server
add address-pool=dhcp interface=bridge lease-time=2m name=defconf
/routing bgp template
set default disabled=no output.network=bgp-networks
/routing ospf instance
add disabled=no name=default-v2
/routing ospf area
add disabled=yes instance=default-v2 name=backbone-v2
/interface bridge port
add bridge=bridge comment=defconf ingress-filtering=no interface=ether2-master
add bridge=bridge comment=defconf ingress-filtering=no interface=wlan1
add bridge=bridge ingress-filtering=no interface=ether3
add bridge=bridge ingress-filtering=no interface=ether4
add bridge=bridge ingress-filtering=no interface=ether5
/ip neighbor discovery-settings
set discover-interface-list=mactel
/ip settings
set max-neighbor-entries=8192
/ipv6 settings
set accept-redirects=no accept-router-advertisements=no disable-ipv6=yes forward=no max-neighbor-entries=8192
/interface list member
add interface=ether2-master list=discover
add interface=ether3 list=discover
add interface=ether4 list=discover
add interface=ether5 list=discover
add interface=wlan1 list=discover
add interface=bridge list=discover
add interface=bridge list=mactel
add interface=bridge list=mac-winbox
add interface=ether1 list=WAN
/interface ovpn-server server
set auth=sha1,md5
/interface wireless access-list
add mac-address=4C:4E:03:86:3C:12
add mac-address=F4:30:B9:B5:9B:E0
add mac-address=F8:CF:C5:D6:34:0D
add mac-address=80:58:F8:BE:BE:17
add mac-address=1C:65:9D:C1:1F:11
add mac-address=90:CD:B6:41:05:D1
add mac-address=50:9E:A7:F2:A6:8F
add mac-address=90:00:4E:CD:7F:A9
add mac-address=00:24:D7:96:60:3C
add mac-address=64:5A:04:A0:68:BA
/ip address
add address=192.168.1.1/24 comment=defconf interface=bridge network=192.168.1.0
/ip cloud
set update-time=no
/ip dhcp-client
add comment=defconf interface=ether1 use-peer-dns=no
/ip dhcp-server lease
add address=192.168.1.117 allow-dual-stack-queue=no client-id=1:30:5:5c:24:e3:a2 comment="Brother printer" mac-address=30:05:5C:24:E3:A2 server=defconf
add address=192.168.1.126 client-id=1:f4:30:b9:b5:9b:e0 comment="HP printer" mac-address=F4:30:B9:B5:9B:E0 server=defconf
add address=192.168.1.60 client-id=1:90:cd:b6:41:5:d1 comment="unmarked Dell" mac-address=90:CD:B6:41:05:D1 server=defconf
add address=192.168.1.57 client-id=1:fc:1:7c:ae:65:ff comment="Nana's" mac-address=FC:01:7C:AE:65:FF server=defconf
add address=192.168.1.56 client-id=1:a0:d3:7a:59:c7:6b comment=white mac-address=A0:D3:7A:59:C7:6B server=defconf
add address=192.168.1.53 mac-address=B0:2A:43:5C:CD:E9 server=defconf
add address=192.168.1.51 client-id=1:64:5a:4:a0:68:ba comment="green Dell" mac-address=64:5A:04:A0:68:BA server=defconf
add address=192.168.1.50 client-id=1:4:3:d6:5:4e:b3 mac-address=04:03:D6:05:4E:B3 server=defconf
add address=192.168.1.48 client-id=1:84:57:33:fc:9b:a9 mac-address=84:57:33:FC:9B:A9 server=defconf
add address=192.168.1.45 client-id=1:84:57:33:fc:9b:a7 mac-address=84:57:33:FC:9B:A7 server=defconf
add address=192.168.1.46 client-id=1:70:66:55:57:e5:f1 comment=TD mac-address=70:66:55:57:E5:F1 server=defconf
add address=192.168.1.254 client-id=1:74:86:7a:47:e5:ab comment="green dell ethernet" mac-address=74:86:7A:47:E5:AB server=defconf
add address=192.168.1.49 client-id=1:5c:ea:1d:3a:8a:61 comment=TS mac-address=5C:EA:1D:3A:8A:61 server=defconf
add address=192.168.1.54 client-id=1:64:31:50:21:34:1d comment="Yisrael's room" mac-address=64:31:50:21:34:1D server=defconf
add address=192.168.1.44 client-id=1:34:c9:3d:76:68:ee comment="new Nana" mac-address=34:C9:3D:76:68:EE server=defconf
add address=192.168.1.41 client-id=1:74:4c:a1:64:d5:b5 mac-address=74:4C:A1:64:D5:B5 server=defconf
add address=192.168.1.42 comment="Abba phone" mac-address=F0:D0:8C:1A:BC:C4 server=defconf
add address=192.168.1.40 client-id=1:d8:a2:5e:96:c8:54 mac-address=D8:A2:5E:96:C8:54 server=defconf
add address=192.168.1.39 client-id=1:96:b7:bd:ea:9f:5b comment="Yisrael's phone" mac-address=96:B7:BD:EA:9F:5B server=defconf
add address=192.168.1.37 client-id=1:f4:b3:1:74:f5:13 mac-address=F4:B3:01:74:F5:13 server=defconf
add address=192.168.1.36 client-id=1:d8:5e:d3:a:5e:af mac-address=D8:5E:D3:0A:5E:AF server=defconf
/ip dhcp-server network
add address=192.168.1.0/24 comment=defconf gateway=192.168.1.1 netmask=24
/ip dns
set servers=208.67.222.222,208.67.220.220
/ip dns static
add address=192.168.1.1 disabled=yes name=router
/ip firewall address-list
add address=192.168.1.45 comment=xboxone list="Yisrael stuff"
add address=192.168.1.41 comment=laptop list="Yisrael stuff"
add address=192.168.1.39 comment=phone list="Yisrael stuff"
add address=192.168.1.37 list="Yisrael stuff"
add address=192.168.1.36 list="Yisrael stuff"
add address=192.168.1.48 comment=xboxone list="Yisrael stuff"
add address=192.168.1.54 comment="room HP" list="Yisrael stuff"
add address=192.168.1.50 comment=Nintendo list="Yisrael stuff"
/ip firewall filter
add action=drop chain=input comment="defconf: accept ICMP (changed to drop ping for security)" protocol=icmp
# inactive time
add action=drop chain=forward comment="no internet midnight to 5" time=23h57m-5h,sun,mon,tue,wed,thu,fri,sat
# inactive time
add action=drop chain=forward comment="Yis night" src-address-list="Yisrael stuff" time=22h35m-0s,sun,mon,tue,wed,thu,fri,sat
# inactive time
add action=drop chain=forward comment="Yis Erev Shabbos" src-address-list="Yisrael stuff" time=19h35m-1d,fri
# inactive time
add action=drop chain=forward comment="Yis Mincha" src-address-list="Yisrael stuff" time=19h45m-20h30m,sun,mon,tue,wed,thu,fri,sat
add action=drop chain=forward comment="Yisrael's" disabled=yes src-address-list="Yisrael stuff"
add action=drop chain=forward comment=xbox src-address=192.168.1.45
add action=drop chain=forward comment="unmarked Dell" src-address=192.168.1.60
add action=drop chain=forward comment="new Nana's" src-address=192.168.1.44
add action=accept chain=input comment="defconf: accept established,related" connection-state=established,related
add action=drop chain=input comment="defconf: drop all from WAN" in-interface=ether1
add action=fasttrack-connection chain=forward comment="defconf: fasttrack" connection-state=established,related hw-offload=yes
add action=accept chain=forward comment="defconf: accept established,related" connection-state=established,related
add action=drop chain=forward comment="defconf: drop invalid" connection-state=invalid
add action=drop chain=forward comment="defconf: drop all from WAN not DSTNATed" connection-nat-state=!dstnat connection-state=new in-interface=ether1 in-interface-list=WAN
add action=drop chain=forward comment="block amazon prime" disabled=yes dst-address=13.226.241.124
/ip firewall nat
add action=masquerade chain=srcnat comment="defconf: masquerade" out-interface=ether1
/ip firewall service-port
set sip disabled=yes
/ip service
set telnet disabled=yes
/ip ssh
set allow-none-crypto=yes forwarding-enabled=remote
/ip upnp
set enabled=yes show-dummy-rule=no
/ip upnp interfaces
add interface=bridge type=internal
add interface=ether1 type=external
/ipv6 nd
set [ find default=yes ] disabled=yes
/routing bfd configuration
add disabled=no
/system clock
set time-zone-name=America/Los_Angeles
/system clock manual
set dst-end="1969-12-12 23:00:00" dst-start="1969-12-12 23:00:00"
/system logging
add topics=watchdog
/system note
set show-at-login=no
/system ntp client
set enabled=yes
/system ntp client servers
add address=pool.ntp.org
/system routerboard settings
set auto-upgrade=yes silent-boot=yes
/system scheduler
add interval=1d name="1 reboot midnight" on-event="/system reboot" policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon start-date=2018-05-24 start-time=\
00:00:00
add comment="reduce tx power at night" interval=1d name="2 reduce tx power at night" on-event="/interface wireless set wlan1 tx-power-mode=all-rates-fixed tx-power=14" \
policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon start-date=2018-05-30 start-time=20:00:00
add comment="/interface wireless set wlan1 tx-power-mode=default replaced" interval=1d name="3 up tx power in morning" on-event=\
"/interface wireless set wlan1 tx-power-mode=all-rates-fixed tx-power=26" policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon start-date=2018-06-01 \
start-time=07:55:00
add comment="Yisrael computer" disabled=yes interval=1d name=schedule1 on-event="/system reboot" policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon \
start-date=2019-10-22 start-time=22:12:00
add comment="Nana's" disabled=yes interval=1d name=schedule5 on-event="/system reboot" policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon start-date=\
2020-01-01 start-time=21:45:00
add comment="Erev Shabbos" disabled=yes interval=1w name=schedule3 on-event="/system reboot" policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon \
start-date=2020-06-05 start-time=16:40:00
add comment="Yisrael morning computer" disabled=yes interval=1d name=schedule2 on-event="/system reboot" policy=\
ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon start-date=2020-11-17 start-time=07:15:00
/system script
add dont-require-permissions=no name=script1 owner=admin policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon source="export file=myconfig.cfg"
/system watchdog
set automatic-supout=no ping-start-after-boot=10m
/tool mac-server
set allowed-interface-list=mactel
/tool mac-server mac-winbox
set allowed-interface-list=mactel
I guess some guy on Reddit is not so reliable.