I recently upgraded my CRS125-24G-1S-RM to v7.1.1 from v6.49.2.
I am having a couple of issues: not sure whether those are bugs or something that needs some tuning.
Both could be the same problem under two different situations, though.

1. I cannot configure NTP to point to a server by name (DNS) like time.google.com like I did previously w/ v6.

2. I cannot check version upgrades any more as the check seems to run forever: "finding out latest version...". Also this used to work in v6.

Any idea/fix?

UPDATES

You can workaround issue no.1 by either using SSH cli or by using a terminal via serial console or webfig. You can workaround issue no.2 by defining static DNS entries pointing at Mikrotik servers:

Let me check my magic wand, crystal ball, tarot cards, and bones.............
Yes, its becoming clearer......
I see a future where you
post your config.
/export file=anynameyouwish
(just ensure no public WANIPs or Gateways are showing)

1)
in v6.x you have a separate field for NTP server and NTP server DNS names. in v7.x these fields are combined and you can enter a url into the primary/secondary server field on winbox

2)
why are you trying to check for upgrades when you just installed the latest version? that aside......is this problem manifesting when you tried to update from v6 to v7 or after the update was done?
if it manifests when moving from v6 to v7 then you probably have separate packages installed instead of the bundle. this is known to not and has been mentioned several times in multiple other threads work as v7 only has bundle and it can't fetch the separate packages......they don't exist. just get npk from MT website, upload and reboot (if downgrading be sure to use `/system packages downgrade` instead of a normal reboot)

1)
in v6.x you have a separate field for NTP server and NTP server DNS names. in v7.x these fields are combined and you can enter a url into the primary/secondary server field on winbox

URL? Like NTP://time.server.net/ ?

2)
why are you trying to check for upgrades when you just installed the latest version? that aside......is this problem manifesting when you tried to update from v6 to v7 or after the update was done?
if it manifests when moving from v6 to v7 then you probably have separate packages installed instead of the bundle. this is known to not and has been mentioned several times in multiple other threads work as v7 only has bundle and it can't fetch the separate packages......they don't exist. just get npk from MT website, upload and reboot (if downgrading be sure to use `/system packages downgrade` instead of a normal reboot)

Upgrade went fine, of course. Subsequent checks didn't.
I tried the check because there is a number of reports of random dns-related issues with those checks.
Upgrade went fine at 1st try and now I see a single package instead of several ones.
As i wrote, i don't get a check error. It simply seems to run forever.

Let me check my magic wand, crystal ball, tarot cards, and bones.............
Yes, its becoming clearer......
I see a future where you
post your config.
/export file=anynameyouwish
(just ensure no public WANIPs or Gateways are showing)

I am not sure how the configuration I have can help to solve the problems.
Anyway, here it is:
If I were a knowledgeable person, I would have tried that configuration item (NTP) and the new version check as my first thing before giving any reply.
But, unluckily, I am the one who needs help...

1. Is this device acting as a router?
2. Is this device connected directly to the internet?

1. Is this device acting as a router?

Nope. It's a switch. Sometimes i use it also as a router for tests.

2. Is this device connected directly to the internet?

Hmm... It is connected to the internet via a NAT router (0.0.0.0 and possibly other NAT devices within the ISP network). You can see that from the default route, the DNS specification and the NTP client (if only it worked).

But my box has no public IP on any of it's interfaces.

The same box was connected to the same ISP and (hopefully) the same configuration while running V6.

URL? Like NTP://time.server.net/ ?

Try simple

pool.ntp.org
0.pool.ntp.org
ca.pool.ntp.org
1.it.pool.ntp.org

Each DNS name from the list serves addresses in a round-robin way.
You can try 2,3 instead of 0 and 1 or change ca or it to us, pl, jp, or any other country suffix you can use in DNS names

URL? Like NTP://time.server.net/ ?

Try simple

pool.ntp.org
0.pool.ntp.org
ca.pool.ntp.org
1.it.pool.ntp.org

Each DNS name from the list serves addresses in a round-robin way.
You can try 2,3 instead of 0 and 1 or change ca or it to us, pl, jp, or any other country suffix you can use in DNS names

I tried time.google.com and it doesn't work, nor it shows up in the configuration. Have you tried that yourself?
How would it be different to use pool.ntp.org from time.google.com?

I tried time.google.com and it doesn't work, nor it shows up in the configuration.

WinBox 3.31 let me put us.pool.ntp.org into the address field here, but WebFig on ROS 7.1.1 will not.

Older versions of WinBox predating ROS 7 might also have this problem.

How would it be different to use pool.ntp.org from time.google.com?

The ntp.org pools are comprised of many organizations offering service to the community. The Google ones are just that one company.

The nice thing about using a DNS name for a pool is that the answers can change over time as organizations enter the pool and leave it.

Better, use one of the regional zones to ensure fastest response.

I tried time.google.com and it doesn't work, nor it shows up in the configuration.

WinBox 3.31 let me put us.pool.ntp.org into the address field here, but WebFig on ROS 7.1.1 will not.

Older versions of WinBox predating ROS 7 might also have this problem.

So, this is a bug, not something I did wrong.

All of my PCs are Linux, winbox is not an option. Will try SSH.

Anyway, i upgraded the ROS and i was expecting it to keep *all* of the existing configuration. Instead it removed my NTP altogether. This seems to be another bug.

How would it be different to use pool.ntp.org from time.google.com?

The ntp.org pools are comprised of many organizations offering service to the community. The Google ones are just that one company.

The nice thing about using a DNS name for a pool is that the answers can change over time as organizations enter the pool and leave it.

Better, use one of the regional zones to ensure fastest response.

I want/need to use Google NTP servers. Your considerations are irrelevant to my issue, while totally meaningful.
Also google uses DNS for the same reasons. But it seems DNS has issues.
Infact I still cannot have an "upgrade check" working likely due to DNS issues.

Hello,

Try from the CLI, as this works for me:

Hello,

Try from the CLI, as this works for me:

Code: Select all

/system ntp client
set enabled=yes
/system ntp client servers
add address=pool.ntp.org

These commands work while webfig doesn't: the server address isn't shown at all!
See attached screenshots. Webgig doesn't seem to understand an NTP server DNS name!
Using the terminal to complement webfig is not a solution: it's a workaround!

System/Packages/Check for updates still times out.
But, If I add a few static DNS entries, it works! (addresses taken from current DNS values).
This is clearly a workaround too, not a solution.

Hello,

Try from the CLI, as this works for me:

Code: Select all

/system ntp client
set enabled=yes
/system ntp client servers
add address=pool.ntp.org

time.ntp.gov

works solid for me in command line.

Hello,

Try from the CLI, as this works for me:

Code: Select all

/system ntp client
set enabled=yes
/system ntp client servers
add address=pool.ntp.org

time.ntp.gov

works solid for me in command line.

The actual NTP server(s) choice is not relevant here: the bug is related to webfig being unable to do it.

The actual NTP server(s) choice is not relevant here: the bug is related to webfig being unable to do it.

They haven't yet fully implemented all the new functionality in v7 in winbox/webfig, and this would be part of the new functionality. Webfig is actually further behind compared to winbox.

The actual NTP server(s) choice is not relevant here: the bug is related to webfig being unable to do it.

They haven't yet fully implemented all the new functionality in v7 in winbox/webfig, and this would be part of the new functionality. Webfig is actually further behind compared to winbox.

It did work in winbox.

I never open webfig. Usually disable it as soon as I log into a router.

They haven't yet fully implemented all the new functionality in v7 in winbox/webfig, and this would be part of the new functionality. Webfig is actually further behind compared to winbox.

It did work in winbox.

I never open webfig. Usually disable it as soon as I log into a router.

I use webfig only via local TCP forward (ssh).
I confirm winbox doesn't work either.
But terminal via webfig does work (of course).

I still have the issue with the DNS used during the update check: I am forced to add static DNS entries in order to make it work!
Updated OP.