Accidentally edited the post instead of replying to it, and I can't find a "prior version" to recover from.
(New moderator, mea culpa.)
Really a beginner
You do not have the required permissions to view the files attached to this post.
Re: Really a beginner
I like clicking around my Mikrotik, and finding out new things.
RouterOS is for people who like finding out the answers on their own, not merely the questions.
The alternative is for us to spoon-feed the manual to you, but that's far too inefficient to tolerate. There are millions of RouterOS users and only some dozens of us actively answering questions. We'd be at it all day, every day if we couldn't rely on most users to figure things out from the manuals and experimentation.
Or they say "That's so easily Googled!"
For you, yes. For me, I get pages of results that I try
Post the URL to the Google search to show what you looked for. That gives people a concrete thing to react to, and it shows that you're trying. We're more likely to provide concrete help to people who show they're trying.
and then bork up my system.
Excellent! Congratulations! You've found the fast path to education.
Immediate success teaches you nothing. It's failure that teaches, but only if you follow it up with persistence, eventually achieving success. Failure followed by giving up also fails to teach you anything beyond "So don't do that, then."
Impatient experts would not be allowed near there.
I'm of two minds on that.
First, experts become impatient when people expect spoon-feeding. Professionals' time has a monetary value usually measured in an hourly rate or a salary, but newbies keep showing up here expecting free advice. If you aren't going to at least meet us halfway, why would we put up with this inequitable situation? Interesting problems are tasty; the same old question asked by people being lazy is bland, uninteresting.
But second, there are indeed several people here who would rather be rude to lazy newbies than either a) help them anyway; or b) ignore them. Now that we've got a handful of new moderators, maybe we can begin dialing that tendency back.
Realize, however, if all we do is run the ass-hats off the forum, you're still left with the first problem. All that will change is that lazy posters will be ignored rather than yelled at or insulted. That's an improvement, but you still don't get effortless answers.
Why is my Mikrotik date wrong?
Do you have a valid NTP client configuration?
Use the "/export" command to retrieve the whole config, sanitize it of serial numbers and other sensitive info, and post it into a "code" block. Then we aren't having to make guesses like this.
the clock and ntp client don't work well together.
Nonsense. Citation needed.
Re: Really a beginner
Code: Select all
# 2023-06-28 14:47:40 by RouterOS 7.10
# software id = **ELIDED**
#
# model = RB951Ui-2HnD
# serial number = **ELIDED**
/interface bridge
add admin-mac=CC:2D:E0:10:E6:83 auto-mac=no comment=defconf name=bridge protocol-mode=none
/interface ethernet
set [ find default-name=ether1 ] advertise=10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full
set [ find default-name=ether2 ] advertise=10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full name=ether2-master
set [ find default-name=ether3 ] advertise=10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full
set [ find default-name=ether4 ] advertise=10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full
set [ find default-name=ether5 ] advertise=10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full
/interface wireless
set [ find default-name=wlan1 ] antenna-gain=0 band=2ghz-onlyn channel-width=20/40mhz-XX country="united states" disabled=no frequency=auto mode=ap-bridge \
noise-floor-threshold=-110 ssid=Hillel station-roaming=enabled tx-power=26 tx-power-mode=all-rates-fixed wireless-protocol=802.11
/interface list
add exclude=dynamic name=discover
add name=mactel
add name=mac-winbox
add name=WAN
/interface lte apn
set [ find default=yes ] ip-type=ipv4 use-network-apn=no
/interface wireless security-profiles
set [ find default=yes ] authentication-types=wpa2-psk mode=dynamic-keys supplicant-identity=MikroTik
/ip pool
add name=dhcp ranges=192.168.1.10-192.168.1.254
/ip dhcp-server
add address-pool=dhcp interface=bridge lease-time=2m name=defconf
/routing bgp template
set default disabled=no output.network=bgp-networks
/routing ospf instance
add disabled=no name=default-v2
/routing ospf area
add disabled=yes instance=default-v2 name=backbone-v2
/interface bridge port
add bridge=bridge comment=defconf ingress-filtering=no interface=ether2-master
add bridge=bridge comment=defconf ingress-filtering=no interface=wlan1
add bridge=bridge ingress-filtering=no interface=ether3
add bridge=bridge ingress-filtering=no interface=ether4
add bridge=bridge ingress-filtering=no interface=ether5
/ip neighbor discovery-settings
set discover-interface-list=mactel
/ip settings
set max-neighbor-entries=8192
/ipv6 settings
set accept-redirects=no accept-router-advertisements=no disable-ipv6=yes forward=no max-neighbor-entries=8192
/interface list member
add interface=ether2-master list=discover
add interface=ether3 list=discover
add interface=ether4 list=discover
add interface=ether5 list=discover
add interface=wlan1 list=discover
add interface=bridge list=discover
add interface=bridge list=mactel
add interface=bridge list=mac-winbox
add interface=ether1 list=WAN
/interface ovpn-server server
set auth=sha1,md5
/interface wireless access-list
add mac-address=4C:4E:03:86:3C:12
add mac-address=F4:30:B9:B5:9B:E0
add mac-address=F8:CF:C5:D6:34:0D
add mac-address=80:58:F8:BE:BE:17
add mac-address=1C:65:9D:C1:1F:11
add mac-address=90:CD:B6:41:05:D1
add mac-address=50:9E:A7:F2:A6:8F
add mac-address=90:00:4E:CD:7F:A9
add mac-address=00:24:D7:96:60:3C
add mac-address=64:5A:04:A0:68:BA
/ip address
add address=192.168.1.1/24 comment=defconf interface=bridge network=192.168.1.0
/ip cloud
set update-time=no
/ip dhcp-client
add comment=defconf interface=ether1 use-peer-dns=no
/ip dhcp-server lease
add address=192.168.1.117 allow-dual-stack-queue=no client-id=1:30:5:5c:24:e3:a2 comment="Brother printer" mac-address=30:05:5C:24:E3:A2 server=defconf
add address=192.168.1.126 client-id=1:f4:30:b9:b5:9b:e0 comment="HP printer" mac-address=F4:30:B9:B5:9B:E0 server=defconf
add address=192.168.1.60 client-id=1:90:cd:b6:41:5:d1 comment="unmarked Dell" mac-address=90:CD:B6:41:05:D1 server=defconf
add address=192.168.1.57 client-id=1:fc:1:7c:ae:65:ff comment="Nana's" mac-address=FC:01:7C:AE:65:FF server=defconf
add address=192.168.1.56 client-id=1:a0:d3:7a:59:c7:6b comment=white mac-address=A0:D3:7A:59:C7:6B server=defconf
add address=192.168.1.53 mac-address=B0:2A:43:5C:CD:E9 server=defconf
add address=192.168.1.51 client-id=1:64:5a:4:a0:68:ba comment="green Dell" mac-address=64:5A:04:A0:68:BA server=defconf
add address=192.168.1.50 client-id=1:4:3:d6:5:4e:b3 mac-address=04:03:D6:05:4E:B3 server=defconf
add address=192.168.1.48 client-id=1:84:57:33:fc:9b:a9 mac-address=84:57:33:FC:9B:A9 server=defconf
add address=192.168.1.45 client-id=1:84:57:33:fc:9b:a7 mac-address=84:57:33:FC:9B:A7 server=defconf
add address=192.168.1.46 client-id=1:70:66:55:57:e5:f1 comment=TD mac-address=70:66:55:57:E5:F1 server=defconf
add address=192.168.1.254 client-id=1:74:86:7a:47:e5:ab comment="green dell ethernet" mac-address=74:86:7A:47:E5:AB server=defconf
add address=192.168.1.49 client-id=1:5c:ea:1d:3a:8a:61 comment=TS mac-address=5C:EA:1D:3A:8A:61 server=defconf
add address=192.168.1.54 client-id=1:64:31:50:21:34:1d comment="Yisrael's room" mac-address=64:31:50:21:34:1D server=defconf
add address=192.168.1.44 client-id=1:34:c9:3d:76:68:ee comment="new Nana" mac-address=34:C9:3D:76:68:EE server=defconf
add address=192.168.1.41 client-id=1:74:4c:a1:64:d5:b5 mac-address=74:4C:A1:64:D5:B5 server=defconf
add address=192.168.1.42 comment="Abba phone" mac-address=F0:D0:8C:1A:BC:C4 server=defconf
add address=192.168.1.40 client-id=1:d8:a2:5e:96:c8:54 mac-address=D8:A2:5E:96:C8:54 server=defconf
add address=192.168.1.39 client-id=1:96:b7:bd:ea:9f:5b comment="Yisrael's phone" mac-address=96:B7:BD:EA:9F:5B server=defconf
add address=192.168.1.37 client-id=1:f4:b3:1:74:f5:13 mac-address=F4:B3:01:74:F5:13 server=defconf
add address=192.168.1.36 client-id=1:d8:5e:d3:a:5e:af mac-address=D8:5E:D3:0A:5E:AF server=defconf
/ip dhcp-server network
add address=192.168.1.0/24 comment=defconf gateway=192.168.1.1 netmask=24
/ip dns
set servers=208.67.222.222,208.67.220.220
/ip dns static
add address=192.168.1.1 disabled=yes name=router
/ip firewall address-list
add address=192.168.1.45 comment=xboxone list="Yisrael stuff"
add address=192.168.1.41 comment=laptop list="Yisrael stuff"
add address=192.168.1.39 comment=phone list="Yisrael stuff"
add address=192.168.1.37 list="Yisrael stuff"
add address=192.168.1.36 list="Yisrael stuff"
add address=192.168.1.48 comment=xboxone list="Yisrael stuff"
add address=192.168.1.54 comment="room HP" list="Yisrael stuff"
add address=192.168.1.50 comment=Nintendo list="Yisrael stuff"
/ip firewall filter
add action=drop chain=input comment="defconf: accept ICMP (changed to drop ping for security)" protocol=icmp
# inactive time
add action=drop chain=forward comment="no internet midnight to 5" time=23h57m-5h,sun,mon,tue,wed,thu,fri,sat
# inactive time
add action=drop chain=forward comment="Yis night" src-address-list="Yisrael stuff" time=22h35m-0s,sun,mon,tue,wed,thu,fri,sat
# inactive time
add action=drop chain=forward comment="Yis Erev Shabbos" src-address-list="Yisrael stuff" time=19h35m-1d,fri
# inactive time
add action=drop chain=forward comment="Yis Mincha" src-address-list="Yisrael stuff" time=19h45m-20h30m,sun,mon,tue,wed,thu,fri,sat
add action=drop chain=forward comment="Yisrael's" disabled=yes src-address-list="Yisrael stuff"
add action=drop chain=forward comment=xbox src-address=192.168.1.45
add action=drop chain=forward comment="unmarked Dell" src-address=192.168.1.60
add action=drop chain=forward comment="new Nana's" src-address=192.168.1.44
add action=accept chain=input comment="defconf: accept established,related" connection-state=established,related
add action=drop chain=input comment="defconf: drop all from WAN" in-interface=ether1
add action=fasttrack-connection chain=forward comment="defconf: fasttrack" connection-state=established,related hw-offload=yes
add action=accept chain=forward comment="defconf: accept established,related" connection-state=established,related
add action=drop chain=forward comment="defconf: drop invalid" connection-state=invalid
add action=drop chain=forward comment="defconf: drop all from WAN not DSTNATed" connection-nat-state=!dstnat connection-state=new in-interface=ether1 in-interface-list=WAN
add action=drop chain=forward comment="block amazon prime" disabled=yes dst-address=13.226.241.124
/ip firewall nat
add action=masquerade chain=srcnat comment="defconf: masquerade" out-interface=ether1
/ip firewall service-port
set sip disabled=yes
/ip service
set telnet disabled=yes
/ip ssh
set allow-none-crypto=yes forwarding-enabled=remote
/ip upnp
set enabled=yes show-dummy-rule=no
/ip upnp interfaces
add interface=bridge type=internal
add interface=ether1 type=external
/ipv6 nd
set [ find default=yes ] disabled=yes
/routing bfd configuration
add disabled=no
/system clock
set time-zone-name=America/Los_Angeles
/system clock manual
set dst-end="1969-12-12 23:00:00" dst-start="1969-12-12 23:00:00"
/system logging
add topics=watchdog
/system note
set show-at-login=no
/system ntp client
set enabled=yes
/system ntp client servers
add address=pool.ntp.org
/system routerboard settings
set auto-upgrade=yes silent-boot=yes
/system scheduler
add interval=1d name="1 reboot midnight" on-event="/system reboot" policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon start-date=2018-05-24 start-time=\
00:00:00
add comment="reduce tx power at night" interval=1d name="2 reduce tx power at night" on-event="/interface wireless set wlan1 tx-power-mode=all-rates-fixed tx-power=14" \
policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon start-date=2018-05-30 start-time=20:00:00
add comment="/interface wireless set wlan1 tx-power-mode=default replaced" interval=1d name="3 up tx power in morning" on-event=\
"/interface wireless set wlan1 tx-power-mode=all-rates-fixed tx-power=26" policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon start-date=2018-06-01 \
start-time=07:55:00
add comment="Yisrael computer" disabled=yes interval=1d name=schedule1 on-event="/system reboot" policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon \
start-date=2019-10-22 start-time=22:12:00
add comment="Nana's" disabled=yes interval=1d name=schedule5 on-event="/system reboot" policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon start-date=\
2020-01-01 start-time=21:45:00
add comment="Erev Shabbos" disabled=yes interval=1w name=schedule3 on-event="/system reboot" policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon \
start-date=2020-06-05 start-time=16:40:00
add comment="Yisrael morning computer" disabled=yes interval=1d name=schedule2 on-event="/system reboot" policy=\
ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon start-date=2020-11-17 start-time=07:15:00
/system script
add dont-require-permissions=no name=script1 owner=admin policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon source="export file=myconfig.cfg"
/system watchdog
set automatic-supout=no ping-start-after-boot=10m
/tool mac-server
set allowed-interface-list=mactel
/tool mac-server mac-winbox
set allowed-interface-list=mactel
So Mikrotik actually knows the right date, only the clock tab for some reason is one day behind.
Here's the citation -
https://www.reddit.com/r/mikrotik/comme ... _with_the/
I guess some guy on Reddit is not so reliable.
Re: Really a beginner [SOLVED]
Latest version (ROS 7.10.1) have some fixes with time on webfig.
Try to update, probably will fix it.
Regards.
Try to update, probably will fix it.
Regards.
Re: Really a beginner
I have not poked through your config, but I can tell you that on my RB4011 that has ROS 6.49.6, the System > Clock display is correct, as is the Dashboard Date & Time in WinBox. Also, log entries are showing correct date and time. In my case, I am using my own Stratum-1 time server.
I don't normally use WebFig, but just as a test, I did start it. Also working correctly.
I don't normally use WebFig, but just as a test, I did start it. Also working correctly.
Re: Really a beginner
I guess some guy on Reddit is not so reliable.
True, but I think the actual problem is that you misread what that top poster wrote. In your original post, you wrote "the clock and ntp client don't work well together," but that Reddit thread refers to the RouterOS "cloud" feature. Cloud, not Clock.
Moreover, the Cloud feature is disabled in your config, so that can't be the problem anyway.
If an upgrade to 7.10.1 doesn't fix it, then I'd check whether your ISP is blocking NTP queries. Believe it or not, some do!
Re: Really a beginner
He is using ROS 7.10 and is a known issue that is fixed on 7.10.1 theorically.
Regards.
Regards.