Community discussions

MikroTik App
 
User avatar
mrz
MikroTik Support
MikroTik Support
Topic Author
Posts: 7186
Joined: Wed Feb 07, 2007 12:45 pm
Location: Latvia
Contact:

Manual Improvements

Fri May 22, 2015 12:59 pm

What would you like to see more or what changes in the RouterOS Manual.
Detailed criticism is welcome.
 
joegoldman
Forum Veteran
Forum Veteran
Posts: 775
Joined: Mon May 27, 2013 2:05 am

Re: Manual Improvements

Fri May 22, 2015 1:59 pm

User Manager is well out of date.
 
User avatar
shahbazian
Trainer
Trainer
Posts: 169
Joined: Fri Sep 09, 2011 6:22 pm
Location: Iran
Contact:

Re: Manual Improvements

Fri May 22, 2015 2:34 pm

Hi mrz,
Hotspot universal client and one to one nat need more description.
 
kostikbel
just joined
Posts: 13
Joined: Tue May 27, 2014 1:16 pm

Re: Manual Improvements

Fri May 22, 2015 2:35 pm

In the typical setup of the SOHO, it is often the case that ability to access the Internet depends on the (misconfigured) device. E.g. my home network uses CRS125 to transport provider' vlan to router, so a mistake means that I cannot access the manual until I figure out and fix what was broken.

It would be very useful to be able to get offline snapshot of the whole manual, e.g. in the pdf. Some time ago there was ability to select several wiki pages for pdf book output, but this was equally inconvenient since you have to know in advance what parts of the manual you need.
 
jdog
newbie
Posts: 35
Joined: Tue Jan 20, 2015 3:40 pm

Re: Manual Improvements

Fri May 22, 2015 2:59 pm

Revised and updated usage examples. Many of the examples and tutorial scripts are horribly outdated and some do not even work any more. Many examples also do not apply to real-world situations as they were created so long ago.

Usermanager/Hotspot needs the entire manual to be ripped and replaced it is so bad/old/incomplete.

Firewall needs serious updating (All sections)

QoS needs updating, as well as more usage examples with updated scenarios.
 
jdog
newbie
Posts: 35
Joined: Tue Jan 20, 2015 3:40 pm

Re: Manual Improvements

Fri May 22, 2015 3:01 pm

I also would like to see an updated downloadable manual. Not nice when you need the manual, but don't have access to the internet.

I realize this request is possibly crazy, but is there a way to incorporate the manual into the actual router hardware/firmware? So you have the ability to press a help button in web/win/box and see a page dedicated to what you are doing?
 
jarda
Forum Guru
Forum Guru
Posts: 7756
Joined: Mon Oct 22, 2012 4:46 pm

Re: Manual Improvements

Fri May 22, 2015 3:01 pm

Many people are missing general networking knowledge. Without the knowledge it is very difficult for them to understand the manual and make the settings they need. Normally they mostly do not know what they look for...

I would suggest to make at least hypertext links of all signifiant words to their definitions and explanations to provide additional info for the readers to understand what each word stays for.

More examples (especially in combinations and with webfig pictures) would be also helpful for them.

That was something that could help to newbies.

Now from my point of view, I would appreciate the immediate update of the manual and having possibility to select ros version to which the pages should display correctly - It means, if I use 6.27 now, but the last is 6.29 (almost), I would like to be able to set my version on top of the page and get always only content fully relevant to 6.27 ignoring (or maybe marking) the differences against the newer versions.

On top of the versioning system, I would like to have possibilty to compare two versions (for example 6.27 to 6.29) and see the differences only to know, whether I need to harmonize my configurations due to version change or not.
 
ganewbie
newbie
Posts: 44
Joined: Fri Feb 24, 2012 4:46 pm

Re: Manual Improvements

Fri May 22, 2015 3:41 pm

A good manual in my eyes, needs pictures of examples made via CLI and GUI "Both"
Otherwise the topic is tough to follow.
 
User avatar
boen_robot
Forum Guru
Forum Guru
Posts: 2400
Joined: Thu Aug 31, 2006 4:43 pm
Location: europe://Bulgaria/Plovdiv

Re: Manual Improvements

Fri May 22, 2015 3:44 pm

The User Manager commands (on the command line that is) are not described at all anywhere in the manual. That's one of the biggest missing pieces IMO.

Then there's some scripting quirks that aren't clarified in the scripting page at all, such as type conversion rules. In particular, I'd like to see something like these tables, but for RouterOS' scripting language.
 
katit
newbie
Posts: 32
Joined: Wed May 13, 2015 6:01 am

Re: Manual Improvements

Fri May 22, 2015 5:21 pm

As newbie myself - I would find it super-beneficial if you had section on "transition from conventional SOHO router to RouterOS" and examples of all of the typical setup stuff like port forward, static IPs, port triggering, setup for VOIP phone, setting up VPN. It's all there but lot of it outdated, iterface names don't match on whats default on router, etc. As mentioned above - would be very nice to have general short TCP/IP section and terminology explanation.
 
User avatar
PeterFalken
just joined
Posts: 19
Joined: Wed May 13, 2015 6:11 pm

Re: Manual Improvements

Fri May 22, 2015 8:08 pm

Document the Fast Track functionality with a few examples now that RouterOS 6.29 will be released.
 
vortex
Forum Guru
Forum Guru
Posts: 1131
Joined: Sat Feb 16, 2013 6:10 pm

Re: Manual Improvements

Fri May 22, 2015 8:20 pm

LAN multicast forwarding. The manual only talks about 2 routers. It seems nobody gets it to work for subnets, myself included.
 
cheeze
Member Candidate
Member Candidate
Posts: 146
Joined: Tue Jul 31, 2012 7:44 am

Re: Manual Improvements

Sat May 23, 2015 12:56 am

Please please please add more information and reorganize/consolidate on how to use the switch chip functionality for non CRS and CRS. I would say that there should be one link on how to use all switching features for RouterOS. It would just be faster.

Please use examples with Cisco as the main comparison.

For example.

To make a trunk port, please do this. On a Cisco the equivalent configuration would be this. With a bonus explanation of multiple tagged vlans on a trunk port.

To make an access port, please do this. On a Cisco the equivalent configuration would be like this.

I tried to use the switch chip to add multiple tagged frames on the same switch across different ports and it failed when I tried to do that. I haven't spent much time trying to figure it out as I'm studying for other certs. However I will spend more time on it.

That's what I can think of off the top of my head.

Thank you.
 
jarda
Forum Guru
Forum Guru
Posts: 7756
Joined: Mon Oct 22, 2012 4:46 pm

Sat May 23, 2015 8:06 am

It shouldn't be a manual for Cisco.
 
User avatar
chechito
Forum Guru
Forum Guru
Posts: 3135
Joined: Sun Aug 24, 2014 3:14 am
Location: Bogota Colombia
Contact:

Re: Manual Improvements

Sat May 23, 2015 11:02 am

CRS switches implementation guide updated and with some intro to differentiate a switch from router
 
User avatar
satman1w
Member Candidate
Member Candidate
Posts: 287
Joined: Mon Oct 02, 2006 11:47 am

Re: Manual Improvements

Sat May 23, 2015 3:54 pm

Manual improvements ?? What manual?? Mikrotik hasn't had a decent manual since version 2.9 !!! And that's a fact.

Yes, I am frustrated with lot of stuff concerning your recent software and hardware products, but my intentions are pure, so please, bear with me till the end of this post and maybe you would end up wanting to have a "beer with me" :-)

My first contact with Mikrotik was around version 1.x which was distributed on several floppy disks. At that time I was still wandering WTF is the router and why would I want to have one. Step by step, I was improving my knowledge and definitely fell in love with the whole idea and became a MT preacher while nobody in my surrounding didn't even heard about it (that preaching escalated nowdays in largest Mikrotik user group on LinkedIn with more than 4000 followers from all over the world).
I've humbly pilgrimed to first MUM in Prague, was enchanted by the things I've seen, and proud to shake hands with Mr. Tully.
I have introduced 2.9.27 MT router (pirated.... sorry) installed on PC, to a huge company that I was working for at the time and eventually replaced it with RB 150's and RB1000, and that was only the beginning....

First thing I have done, when i've started some serious work, was to print the manual. I still have it. It is in very poor shape, but I still, from time to time, find a reason to look at it. For years I was carrying it with me as a "holly book with all the answers", which in most situations, it was.

In my humble opinion, nothing can replace a book well written !!!
No html, php or any other searchable format displayable on the screen will ever took over.
So, the first thing I would like to see is comprehensive pdf formated manual.
If we know that 2.9 manual had a 709 pages, I expect the current version to have no less than 1000.
Each new feature has to be added promptly and new version of manual has to be released together with new release of ROS.
As for the content, I always had a few objections like: if there is a public address in the example, use public, don't use 10.1.15.1 and declare it public. It can be confusing for the beginner who is trying to mirror described example to his own situation.
Every function or feature has to be accompanied with the most common real life example and best practice advice. Nothing can be left to user imagination and empirical reasoning.

It's a huge task, I know, but once you almost had it done (2.9) and I don't see any reason not to do it again.

Bear in mind that the large number of your followers are home users for whom the MT is the first contact with serious networking, and your role is not simply to supply the product, but to act educationally as well.

I sincerely hope that there is a considerable number of like minded people and expect them to declare themselves as such.

Thanks for your patience, and I wish you all the best in the future..
 
User avatar
Uqbar
Member Candidate
Member Candidate
Posts: 140
Joined: Tue May 05, 2015 11:56 am
Contact:

Re: Manual Improvements

Mon May 25, 2015 4:30 pm

WebFig operations along with command line instructions?
 
User avatar
BartoszP
Forum Guru
Forum Guru
Posts: 2975
Joined: Mon Jun 16, 2014 1:13 pm
Location: Poland

Re: Manual Improvements

Mon May 25, 2015 4:39 pm

If we know that 2.9 manual had a 709 pages, I expect the current version to have no less than 1000.
Cisco IOS Configuration Fundamentals Command Reference Release 12.2 is 974 pages long.
Cisco IOS Master Command List, All Releases from: January 27, 2014 is 580 pages long....ONLY THE INDEX of all possible commands.
Each new feature has to be added promptly and new version of manual has to be released together with new release of ROS.
Amen.
 
TomosRider
Member Candidate
Member Candidate
Posts: 209
Joined: Thu Nov 20, 2014 1:51 pm

Re: Manual Improvements

Tue May 26, 2015 9:56 am

Portable command guides are more than welcome....
Can we expect some kind of case studies in which we can lab and test various types of configurations?
 
User avatar
shahbazian
Trainer
Trainer
Posts: 169
Joined: Fri Sep 09, 2011 6:22 pm
Location: Iran
Contact:

Re: Manual Improvements

Tue May 26, 2015 10:35 am

"Netinstall" documentation needs update for new features.
And in "Upgrading RouterOS" page do not describe "Auto Upgrade" as kind of upgrade way.
 
arturw
just joined
Posts: 10
Joined: Mon Dec 12, 2011 7:10 pm

Re: Manual Improvements

Tue May 26, 2015 11:51 am

CRS series and Switch menu need to be updated. Documentation for switching is not complete. Examples are very usefull but all options are not explained. Anyone who used other products like HP, D-Link or Cisco can agree that using Mikrotiok hardware switch menu is not easy. Greate hardware with many options but how to use it? Some options are missing like rstp or link agregation - is it not possible to configure it on hardware?
Configuring VLAN on CRS is painfull. If you could invite some more friendly interface or much better manual, it would be big step. Not all of us understand L2 switching "language" you are using.
 
keraia
just joined
Posts: 23
Joined: Mon Mar 04, 2013 10:16 pm

Re: Manual Improvements

Tue May 26, 2015 7:23 pm

I would like to see some clarification of conflicting configuration settings or command cross-reference and interrelation. For example:

I am setting-up a two routerboard link in AP/station configuration. Trying to add WPA security I have to consider security profiles, their selection, access lists, etc. This is very frustrating.
At the AP I am using access list with the station's MAC address. Then, no matter what I use as security profile on both ends (even wrong WPA key) the station is connected fine. If I remove the station's MAC address from the access list, no matter what security profiles I use (identical and correct WPA key) the station refuses to connect.
So, although there is a clear explanation of security profiles and access lists, the correct setting combination is a matter of trial end error, due to their interrelated nature.

(Finally, I gave up on security profiles and use NV2 security and key, hoping that the link is encrypted.)
 
Valerio5000
Member Candidate
Member Candidate
Posts: 104
Joined: Fri Dec 06, 2013 2:38 am

Re: Manual Improvements

Wed May 27, 2015 12:59 pm

Guides grafic with WinBox or WebFig date for the basic settings :D
 
ManyX
Member Candidate
Member Candidate
Posts: 111
Joined: Sat Jan 07, 2006 12:48 pm
Location: PolanD

Re: Manual Improvements

Wed May 27, 2015 2:12 pm

A lot of examples. Really help us
 
User avatar
fposavec
newbie
Posts: 33
Joined: Thu Apr 21, 2011 12:59 pm
Location: Čakovec
Contact:

Re: Manual Improvements

Wed May 27, 2015 3:13 pm

CRS QOS for VoIP examples
 
DjM
Member Candidate
Member Candidate
Posts: 116
Joined: Sun Dec 27, 2009 2:44 pm

Re: Manual Improvements

Wed May 27, 2015 4:00 pm

More case studies (for example L2 connectivity via VPLS between multiple sites, multiple customers).
 
jdog
newbie
Posts: 35
Joined: Tue Jan 20, 2015 3:40 pm

Re: Manual Improvements

Wed May 27, 2015 6:21 pm

Case studies and examples are a big requirement in my mind, but also "Completeness" of all features and parameters.

If it's an available parameter (CLI or Winbox or Webfig) it needs to be listed and documented with all "options/extensions" to that parameter, as well as a complete explanation to those options. (I've seen some incomplete lists of options, but never proper explanations of them)
 
petrisimo
just joined
Posts: 14
Joined: Sat Apr 06, 2013 8:15 pm

Re: Manual Improvements

Wed May 27, 2015 6:58 pm

Hello Mirkotik staff,

It looks like your documentation got corrupted, so why dont you reset it to factory defaults and start it from scratch?
 
User avatar
Nollitik
Member Candidate
Member Candidate
Posts: 257
Joined: Tue Dec 07, 2010 8:16 am

Re: Manual Improvements

Thu May 28, 2015 11:13 am

The twenty-first century calls for graphic illustration of how to. For VPN, there is no explanation of what policy override and policy strict means...no wonder folks have difficulty setting up VPN. Don't kill an excellent router useability by providing inadequate graphic depiction of how to use.
 
User avatar
normis
MikroTik Support
MikroTik Support
Posts: 26912
Joined: Fri May 28, 2004 11:04 am
Location: Riga, Latvia
Contact:

Re: Manual Improvements

Thu May 28, 2015 11:22 am

Hello Mirkotik staff,

It looks like your documentation got corrupted, so why dont you reset it to factory defaults and start it from scratch?
what do you mean exactly?
 
User avatar
mrz
MikroTik Support
MikroTik Support
Topic Author
Posts: 7186
Joined: Wed Feb 07, 2007 12:45 pm
Location: Latvia
Contact:

Re: Manual Improvements

Thu May 28, 2015 1:01 pm

For VPN, there is no explanation of what policy override and policy strict means...
From the manual:
no - do not generate policies
port-override -- generate policies and force policy to use any port (old behavior)
port-strict -- use ports from peer's proposal, which should match peer's policy
 
iqt
just joined
Posts: 23
Joined: Fri Jun 07, 2013 11:04 am

Re: Manual Improvements

Thu May 28, 2015 5:02 pm

+1 for User Manager - e.g. limitation functionality. (see this post http://forum.mikrotik.com/viewtopic.php ... 49#p450651

Dirk
 
User avatar
Nollitik
Member Candidate
Member Candidate
Posts: 257
Joined: Tue Dec 07, 2010 8:16 am

Re: Manual Improvements

Fri May 29, 2015 8:15 am

For VPN, there is no explanation of what policy override and policy strict means...
From the manual:
no - do not generate policies
port-override -- generate policies and force policy to use any port (old behavior)
port-strict -- use ports from peer's proposal, which should match peer's policy
Okay, it has been added however, last year I checked and it wasn't there so I just gave up or put off completing the VPN setup.
 
User avatar
normis
MikroTik Support
MikroTik Support
Posts: 26912
Joined: Fri May 28, 2004 11:04 am
Location: Riga, Latvia
Contact:

Re: Manual Improvements

Fri May 29, 2015 8:29 am

Okay, it has been added however, last year I checked and it wasn't there so I just gave up or put off completing the VPN setup.
Since the manual is powered by a Wiki, you can see, that this text was there since 2012.
If this teaches us anything, is that we need to improve search and manual structure for easy navigation :)
 
efaden
Forum Guru
Forum Guru
Posts: 1708
Joined: Sat Mar 30, 2013 1:55 am
Location: New York, USA

Re: Manual Improvements

Sun May 31, 2015 12:32 pm

Convert it back into a WIKI so people can add/fix things.

A lot of the pages need better explanations, and more examples.
 
User avatar
normis
MikroTik Support
MikroTik Support
Posts: 26912
Joined: Fri May 28, 2004 11:04 am
Location: Riga, Latvia
Contact:

Re: Manual Improvements

Mon Jun 01, 2015 11:00 am

When it was editable by anyone, it only brought mistakes and problems. Currently we give edit rights to select people who have shown interest (trusted trainers with good knowledge).
 
efaden
Forum Guru
Forum Guru
Posts: 1708
Joined: Sat Mar 30, 2013 1:55 am
Location: New York, USA

Re: Manual Improvements

Mon Jun 01, 2015 12:43 pm

When it was editable by anyone, it only brought mistakes and problems. Currently we give edit rights to select people who have shown interest (trusted trainers with good knowledge).
Ok, but at least have somewhere that is a wiki. I have tons of scripts I wrote to share, but can't post them.
 
User avatar
Nollitik
Member Candidate
Member Candidate
Posts: 257
Joined: Tue Dec 07, 2010 8:16 am

Re: Manual Improvements

Tue Jun 02, 2015 3:47 am

What I need is a clear, no nonsense instruction on setting up a VPN for folks who have an office at home and that wants to connect from anywhere in the world where the IP address is unknown. I have been wanting to have this done two years now and have been grossly disappointed with Mikrotik support. During that time, I just gave up as it amounted to a waste of time. I have been attempting this before the changes in policy (policy strict, policy override) that promised to make things easier. Every week, it's safe to say some one has had issue implementing VPN...if the instruction are clear, despite the technical subject, we wouldn't see so much frustration from Mikrotik buyers.
 
User avatar
normis
MikroTik Support
MikroTik Support
Posts: 26912
Joined: Fri May 28, 2004 11:04 am
Location: Riga, Latvia
Contact:

Re: Manual Improvements

Tue Jun 02, 2015 10:40 am

What I need is a clear, no nonsense instruction on setting up a VPN for folks who have an office at home and that wants to connect from anywhere in the world where the IP address is unknown. I have been wanting to have this done two years now and have been grossly disappointed with Mikrotik support. During that time, I just gave up as it amounted to a waste of time. I have been attempting this before the changes in policy (policy strict, policy override) that promised to make things easier. Every week, it's safe to say some one has had issue implementing VPN...if the instruction are clear, despite the technical subject, we wouldn't see so much frustration from Mikrotik buyers.
You can do this in quicket with one click:
Screenshot 2015-06-02 10.39.13.png
You do not have the required permissions to view the files attached to this post.
 
jebz
Member
Member
Posts: 367
Joined: Sun May 01, 2011 12:03 pm
Location: Australia

Re: Manual Improvements

Tue Jun 02, 2015 3:02 pm

What I need is a clear, no nonsense instruction on setting up a VPN for folks who have an office at home and that wants to connect from anywhere in the world where the IP address is unknown.
Hello I followed this You tube guide -
https://www.youtube.com/watch?v=cgfXs6ZJrgs
Additions and Blog on my experience posted on this Mikrotik forum post -
http://forum.mikrotik.com/viewtopic.php?f=14&t=97223
This was done on a RB450 with RouterOS v6.27
 
User avatar
Nollitik
Member Candidate
Member Candidate
Posts: 257
Joined: Tue Dec 07, 2010 8:16 am

Re: Manual Improvements

Wed Jun 03, 2015 5:45 pm

What I need is a clear, no nonsense instruction on setting up a VPN for folks who have an office at home and that wants to connect from anywhere in the world where the IP address is unknown.
Hello I followed this You tube guide -
https://www.youtube.com/watch?v=cgfXs6ZJrgs
Additions and Blog on my experience posted on this Mikrotik forum post -
http://forum.mikrotik.com/viewtopic.php?f=14&t=97223
This was done on a RB450 with RouterOS v6.27

Thank you Jebz...I finally got it working. I read your experience, and it seemed to mirrored mine. I also realize that Mikrotik actually did some improvement by tying the L2TP to IPsec in the L2TP server. My problem had always seemed to be around policy.
 
User avatar
Nollitik
Member Candidate
Member Candidate
Posts: 257
Joined: Tue Dec 07, 2010 8:16 am

Re: Manual Improvements

Wed Jun 03, 2015 6:03 pm

What I need is a clear, no nonsense instruction on setting up a VPN for folks who have an office at home and that wants to connect from anywhere in the world where the IP address is unknown. I have been wanting to have this done two years now and have been grossly disappointed with Mikrotik support. During that time, I just gave up as it amounted to a waste of time. I have been attempting this before the changes in policy (policy strict, policy override) that promised to make things easier. Every week, it's safe to say some one has had issue implementing VPN...if the instruction are clear, despite the technical subject, we wouldn't see so much frustration from Mikrotik buyers.
You can do this in quicket with one click:
Screenshot 2015-06-02 10.39.13.png
Thank you Normis for responding. I saw that...wasn't sure how to apply that as I wanted to use my server (Apple) and my domain. Last year, I saw the IPsec box in the L2TP server and had asked the personnel who handled my support ticket...it seems that the personnel just avoided addressing my question just pointing things that made it more complex without resolution. Checking that box resolved my problem and I now have VPN working.

Winbox uses graphic user interface and so should the manual depict the how to instructions. Please make the final release of Winbox 3 for Mac available through the app store.
 
RouteRite
just joined
Posts: 19
Joined: Fri Oct 18, 2013 4:30 am

Re: Manual Improvements

Wed Jun 03, 2015 8:51 pm

Convert it back into a WIKI so people can add/fix things.

A lot of the pages need better explanations, and more examples.
+1 on this.

Leverage the vast experience of your user base to help keep your docs fresh.

Also:

1. Lots of examples.

2. A series of simple how-to's on setting up various configurations of the Switch chip.

Fortigate has a "cookbook" of common tasks that most sysadmins need to do with their products. It would be great if you could create a similar cookbook.
 
User avatar
satman1w
Member Candidate
Member Candidate
Posts: 287
Joined: Mon Oct 02, 2006 11:47 am

Re: Manual Improvements

Thu Jun 04, 2015 10:37 pm

What I need is a clear, no nonsense instruction on setting up a VPN for folks who have an office at home and that wants to connect from anywhere in the world where the IP address is unknown. I have been wanting to have this done two years now and have been grossly disappointed with Mikrotik support. During that time, I just gave up as it amounted to a waste of time. I have been attempting this before the changes in policy (policy strict, policy override) that promised to make things easier. Every week, it's safe to say some one has had issue implementing VPN...if the instruction are clear, despite the technical subject, we wouldn't see so much frustration from Mikrotik buyers.
As I said earlier, Mikrotik should provide accurate and up to date manual with best practices... and so on, but... if you have not succeed to set it up in two years with all available examples published on various places, I do not see how manual can help you (no offense).
 
User avatar
Nollitik
Member Candidate
Member Candidate
Posts: 257
Joined: Tue Dec 07, 2010 8:16 am

Re: Manual Improvements

Fri Jun 05, 2015 3:42 am

What I need is a clear, no nonsense instruction on setting up a VPN for folks who have an office at home and that wants to connect from anywhere in the world where the IP address is unknown. I have been wanting to have this done two years now and have been grossly disappointed with Mikrotik support. During that time, I just gave up as it amounted to a waste of time. I have been attempting this before the changes in policy (policy strict, policy override) that promised to make things easier. Every week, it's safe to say some one has had issue implementing VPN...if the instruction are clear, despite the technical subject, we wouldn't see so much frustration from Mikrotik buyers.
As I said earlier, Mikrotik should provide accurate and up to date manual with best practices... and so on, but... if you have not succeed to set it up in two years with all available examples published on various places, I do not see how manual can help you (no offense).
No offense took, and it doesn't mean I was at it every day of the 730days. In fact, I had all the settings up, then gave up after policy issues for 11/2 years and all I needed to do, as it turned out, was to checked the IPsec box in the L2TP server...hooray!
 
User avatar
MTeeker
Frequent Visitor
Frequent Visitor
Posts: 96
Joined: Tue Jun 14, 2011 2:42 pm
Location: Australia

Re: Manual Improvements

Fri Jun 05, 2015 1:17 pm

When it was editable by anyone, it only brought mistakes and problems. Currently we give edit rights to select people who have shown interest (trusted trainers with good knowledge).

Hi Normis,

With respect to those who are an expert of a subject, the knowledge transfer of that subject (to other people) requires a different skillset altogether, i.e. the ability to explain in such a way that others can easily comprehend. I have a background in corporate training so I know a thing or two about knowledge transfer.

After all, everyone can read a book on how-to, right?

Talking about books. I have two books on RouterOS. One contains a lot of ....words but few examples. It feels like the author wants to impress you with the number of words in it. I won't mention its name.

The other 'RouterOS by example' by Stephen R.W. Discher, which I highly recommend.

In brief, if MikroTik really wants to improve its knowledge transfer as a way to effectively help its customers, I'd suggest employ a professional over manual publications. While having an MTCNA does not equip me with every bit of knowledge of RouterOS, I find it really hard at times to understand what is presented in manual. Frustrations and inefficient use of one's time in trying to ... understand what is written would be an understatement. I'd say.

Please don't misunderstand my feedback. I met you once in Queensland, Australia. And I think you're a nice guy.

Regards,
Peter
 
TomosRider
Member Candidate
Member Candidate
Posts: 209
Joined: Thu Nov 20, 2014 1:51 pm

Re: Manual Improvements

Fri Jun 05, 2015 3:28 pm

@Mteeker
+1000000000!!!!
I agree with you. One more thing, it would be nice to have a some kind of learning guides through MTCNA, MTCRE etc....but its not the topic here.
 
User avatar
normis
MikroTik Support
MikroTik Support
Posts: 26912
Joined: Fri May 28, 2004 11:04 am
Location: Riga, Latvia
Contact:

Re: Manual Improvements

Fri Jun 05, 2015 3:36 pm

We did try to hire a professional to write our manual. It ended in disaster, because indepth RouterOS knowledge is required to do this. It is a huge project, and this professional needs to work side-by-side with several RouterOS experts, who give suggestions and comment his work in real time. When we will have resources to do this, we will.
 
User avatar
boen_robot
Forum Guru
Forum Guru
Posts: 2400
Joined: Thu Aug 31, 2006 4:43 pm
Location: europe://Bulgaria/Plovdiv

Re: Manual Improvements

Fri Jun 05, 2015 6:50 pm

Maybe you could allow inputs from users, but with a review? Like maybe make the manual into a set of Markdown/ReStructuredText pages into GitHub/Bitbucket/whatever, and accept pull requests? This would allow you to review them, and only merge "correct" ones only.
 
User avatar
MTeeker
Frequent Visitor
Frequent Visitor
Posts: 96
Joined: Tue Jun 14, 2011 2:42 pm
Location: Australia

Re: Manual Improvements

Fri Jun 05, 2015 11:13 pm

We did try to hire a professional to write our manual.
I think it is appreciated by all, and thanks to MikroTik for trying.

It ended in disaster, because indepth RouterOS knowledge is required to do this.
I would not suggest a professional communicator WITHOUT a basic knowledge of networking fundamentals (i.e. technical writer). Perhaps, concentrate on topics of basic to medium level of technical complexity first.

It is a huge project, and this professional needs to work side-by-side with several RouterOS experts, who give suggestions and comment his work in real time.
I understand. But I'd say no more challenging than the Chinese Great Wall nor the Egyptian Pyramids.
At least get it read by one or two intended recipients and incorporate their feedback before releasing new materials. This trick helps me ensure materials and instructions are written for the trainees at their levels.

Keep up the good work.
 
User avatar
Nollitik
Member Candidate
Member Candidate
Posts: 257
Joined: Tue Dec 07, 2010 8:16 am

Re: Manual Improvements

Tue Jun 09, 2015 1:07 am

So, I am still having policy issue with my VPN and reading this doesn't seem to be CLEAR: http://wiki.mikrotik.com/wiki/Manual:IP ... icy...talk about frustrating..."Mode Conf, policy group and policy templates will allow us to overcome these problems." However, there is no clear cut example...things just seem mixed up. I need to see separate example...I using Policy templates while the IPsec checked box in L2TP server generates a peer with dynamic policy...no win situation.
 
User avatar
chechito
Forum Guru
Forum Guru
Posts: 3135
Joined: Sun Aug 24, 2014 3:14 am
Location: Bogota Colombia
Contact:

Re: Manual Improvements

Tue Jun 09, 2015 1:22 am

We did try to hire a professional to write our manual. It ended in disaster, because indepth RouterOS knowledge is required to do this. It is a huge project, and this professional needs to work side-by-side with several RouterOS experts, who give suggestions and comment his work in real time. When we will have resources to do this, we will.

i think forum its plenty of good examples to include on manual
 
User avatar
MTeeker
Frequent Visitor
Frequent Visitor
Posts: 96
Joined: Tue Jun 14, 2011 2:42 pm
Location: Australia

Re: Manual Improvements

Tue Jun 09, 2015 8:27 am

So, I am still having policy issue with my VPN .....
If you consider using OpenVPN using MikroTik as server instead, I can offer you a detailed step-by-step instruction.

Note that Microsoft, a member of the consortium behind the development of PPTP, specifically recommends against its use. As for L2TP/IPSec, it's also heavily compromised as per Edward_S.

But it's your choice.
 
User avatar
mrz
MikroTik Support
MikroTik Support
Topic Author
Posts: 7186
Joined: Wed Feb 07, 2007 12:45 pm
Location: Latvia
Contact:

Re: Manual Improvements

Tue Jun 09, 2015 12:23 pm

So, I am still having policy issue with my VPN and reading this doesn't seem to be CLEAR: http://wiki.mikrotik.com/wiki/Manual:IP ... icy...talk about frustrating..."Mode Conf, policy group and policy templates will allow us to overcome these problems." However, there is no clear cut example...things just seem mixed up. I need to see separate example...I using Policy templates while the IPsec checked box in L2TP server generates a peer with dynamic policy...no win situation.
Yes, there is clear example of all three features:
http://wiki.mikrotik.com/wiki/Manual:IP ... _Mode_Conf

It shows how to use templates how to use policy groups and also how to use modeconf.
 
pe1chl
Forum Guru
Forum Guru
Posts: 10529
Joined: Mon Jun 08, 2015 12:09 pm

Re: Manual Improvements

Wed Jun 10, 2015 6:43 pm

I realize this request is possibly crazy, but is there a way to incorporate the manual into the actual router hardware/firmware? So you have the ability to press a help button in web/win/box and see a page dedicated to what you are doing?
I agree it would be nice if e.g. there was a separate installable package (that you can install when you have space) that will add a help button to the WebFig pages, which then point to the section of the manual for that feature. It could be a read-only version of the WiKi served by the webserver on the routerboard.
This kind of feature is appreciated by many users and may even be not much work to add.
(after all, the URL of the WebFig page already has a reference similar to what is used in the Wiki)
 
User avatar
Nollitik
Member Candidate
Member Candidate
Posts: 257
Joined: Tue Dec 07, 2010 8:16 am

Re: Manual Improvements

Wed Jun 10, 2015 10:32 pm

So, I am still having policy issue with my VPN .....
If you consider using OpenVPN using MikroTik as server instead, I can offer you a detailed step-by-step instruction.

Note that Microsoft, a member of the consortium behind the development of PPTP, specifically recommends against its use. As for L2TP/IPSec, it's also heavily compromised as per Edward_S.

But it's your choice.
Thank you MTeeker for your offer...I will consider your offer if I still continue to have issue (I get the VPN to work when I am home; it doesn't when I am on the road).
 
User avatar
Nollitik
Member Candidate
Member Candidate
Posts: 257
Joined: Tue Dec 07, 2010 8:16 am

Re: Manual Improvements

Wed Jun 10, 2015 10:41 pm

So, I am still having policy issue with my VPN and reading this doesn't seem to be CLEAR: http://wiki.mikrotik.com/wiki/Manual:IP ... icy...talk about frustrating..."Mode Conf, policy group and policy templates will allow us to overcome these problems." However, there is no clear cut example...things just seem mixed up. I need to see separate example...I using Policy templates while the IPsec checked box in L2TP server generates a peer with dynamic policy...no win situation.
Yes, there is clear example of all three features:
http://wiki.mikrotik.com/wiki/Manual:IP ... _Mode_Conf

It shows how to use templates how to use policy groups and also how to use modeconf.
Thank you MrZ for responding...what I mean is for listing all requirements for Mode_Conf first, then, all requirements for policy group second, then, all requirements for policy templates. That way, one can clearly follow her picked choice.
 
User avatar
MTeeker
Frequent Visitor
Frequent Visitor
Posts: 96
Joined: Tue Jun 14, 2011 2:42 pm
Location: Australia

Re: Manual Improvements

Thu Jun 11, 2015 4:04 am


...(I get the VPN to work when I am home; it doesn't when I am on the road).
Not sure if it applies in your specific VPN case. However if you can connect via VPN at home but not on the road, it seems your firewall needs to allow a range of specific IPs from remote location to be able to connect via VPN.

To avoid IP clash, you need to use a separate network, say 172.16.1.1/x for remote connection, different from say 192.168.1.1/x for internal ones.

( I think it is getting away from main topic raised by mrz. Sorry.)
 
User avatar
mrz
MikroTik Support
MikroTik Support
Topic Author
Posts: 7186
Joined: Wed Feb 07, 2007 12:45 pm
Location: Latvia
Contact:

Re: Manual Improvements

Thu Jun 11, 2015 9:31 am

@Nollitik: Maybe you could open new topic in general section, MTeeker is right it is going in offtopic.
 
Jarry
just joined
Posts: 3
Joined: Mon Feb 24, 2014 8:34 pm

Re: Manual Improvements

Sat Jun 13, 2015 7:47 am

What would you like to see more or what changes in the RouterOS Manual.
Detailed criticism is welcome.
First of all, I would like to see that "RouterOS Manual". Then we can talk about what should be improved.

With all do respect, wiki is *NOT* manual. It is just a bunch of web-pages, terribly outdated, badly structured, inconsistent, from different authors, with different styles of writing. RouterOS is great, but from documentation point of view, RouterOS is by far the worst software I have been working with...

Imagine new RouterOS-user with no older buddy to help him. Having no other choice he goes to wiki, checks "First time startup" just to find "Applies to RouterOS: 2.9, v3, v4". Nice welcome-message, but what about v5/v6? It is 2015, and the page was not modified for a few years. You call that "manual"?

The biggest problem of RouterOS Manual is: There is none at all!
Last edited by Jarry on Sat Jun 13, 2015 12:50 pm, edited 1 time in total.
 
User avatar
shahbazian
Trainer
Trainer
Posts: 169
Joined: Fri Sep 09, 2011 6:22 pm
Location: Iran
Contact:

Re: Manual Improvements

Sat Jun 13, 2015 10:07 am

RouterOS is great OS but have not enough examples. there is need more configuration examples. So need documentation in more languages.
 
User avatar
Nollitik
Member Candidate
Member Candidate
Posts: 257
Joined: Tue Dec 07, 2010 8:16 am

Re: Manual Improvements

Sat Jun 13, 2015 7:55 pm

So, I am still having policy issue with my VPN and reading this doesn't seem to be CLEAR: http://wiki.mikrotik.com/wiki/Manual:IP ... icy...talk about frustrating..."Mode Conf, policy group and policy templates will allow us to overcome these problems." However, there is no clear cut example...things just seem mixed up. I need to see separate example...I using Policy templates while the IPsec checked box in L2TP server generates a peer with dynamic policy...no win situation.
Yes, there is clear example of all three features:
http://wiki.mikrotik.com/wiki/Manual:IP ... _Mode_Conf

It shows how to use templates how to use policy groups and also how to use modeconf.
MrZ...I get the feeling that staff is asking for improvement insight, then being defensive when insights received. In the same page you sited above, the grammar so poorly wrote...no commas to make things easily understood and which leads to confusion.
Apple iOS (iPhone/iPad) Client

For iOS devices to be able to connect, proposal changes are needed:

does not work with 3des encryption algorithm, aes-128/256 works
auth algorithm must be sha1
PFS group must be none
lifetime must be 8 hours

Example of valid proposal configuration for iOS devices:

/ip ipsec proposal
set default enc-algorithms=aes-128-cbc,aes-256-cbc lifetime=8h \
pfs-group=none

However, when one selects IPsec in the L2TP server, one gets this:
Screen Shot 2015-06-13 at 11.27.50 AM.png
Note that aes-192 selected despite not applying to iOS devices...so the router wastes energy keeping going through the same process...even checking md5 algorithm despite not selected.
You do not have the required permissions to view the files attached to this post.
 
User avatar
mrz
MikroTik Support
MikroTik Support
Topic Author
Posts: 7186
Joined: Wed Feb 07, 2007 12:45 pm
Location: Latvia
Contact:

Re: Manual Improvements

Mon Jun 15, 2015 1:51 pm

@Nollitik please open new topic with your problem. It has nothing to do with the manual.
You are looking at the wrong settings: "/ip ipsec peer" config and "/ip ipsec proposal" config are completely different ipsec phases.
 
mitkos45
just joined
Posts: 4
Joined: Thu Jun 11, 2015 10:36 am

post approval

Mon Jun 15, 2015 2:28 pm

hi,
I've created a new forum post in wireless section on june 11th. It looks like it never got approved by a moderator. Can you please check it out.

Thany You,
mitkos
 
User avatar
Chupaka
Forum Guru
Forum Guru
Posts: 8712
Joined: Mon Jun 19, 2006 11:15 pm
Location: Minsk, Belarus
Contact:

Re: Manual Improvements

Tue Jun 16, 2015 4:18 pm

If this teaches us anything, is that we need to improve search and manual structure for easy navigation :)
like, for example, merging the pages of Mangle, Filter and Nat in IP Firewall: does it have any sense to have three copies of firewall rules properties? I'm always getting lost in those sections :)
 
secupath
just joined
Posts: 5
Joined: Sun Jun 21, 2015 5:51 am

Re: Manual Improvements

Sun Jun 21, 2015 6:40 am

I would like to see some improvements on the CRS Documentations. Examples are great and can definitely help place scenarios with context for some cases.

I am starting to develop a serious issue with the methodology in which certain properties are explained with one and two liners. Especially where it should be implied that the method in which Mikrotik is making such properties available differs largely from methodologies of other common vendors e.g. Cisco, Juniper, etc...

I have created separate topics to address my specific questions, but here are some examples.

Example 1:
Note: Multiple master-port configuration is designed as fast and simple port isolation solution, but it limits part of VLAN functionality supported by CRS switch-chip. For advanced configurations use one master-port within CRS switch chip for all ports, configure VLANs and isolate port groups with port isolation profile configuration.
Where are the details? This seems like a very important consideration. "It limits part of the VLAN functionality..." How? Examples? Scenarios?

Example 2:
vlan-type (edge-port | network-port; Default: network-port) Port VLAN type specifies whether VLAN id is used in UFDB learning. Network port learns VLAN id in UFDB, edge port does not - VLAN 0. It can be observed only in IVL learning mode.
Not clear enough. This seems like another important consideration. From what I understand, the default learning mode on the CRS is set to SVL and not IVL. Does this 2-liner description imply that on such a default implementation this setting has not impact?

Example 3:
forward-unknown-vlan (yes | no; Default: yes) Whether to allow forwarding VLANs which are not members of VLAN table.
This seems like another extremely important security consideration. The default is "yes" - whether to forward VLANs Where? In the Cisco world unknown VLANs would still be forwarded through Trunk Ports in some cases. In the Mikrotik world and with this one liner, I have insufficient information to understand the behavior of forwarded vlans which are not members of the VLAN table.
 
secupath
just joined
Posts: 5
Joined: Sun Jun 21, 2015 5:51 am

Re: Manual Improvements

Sun Jun 21, 2015 6:50 am

What would you like to see more or what changes in the RouterOS Manual.
Detailed criticism is welcome.
First of all, I would like to see that "RouterOS Manual". Then we can talk about what should be improved.

With all do respect, wiki is *NOT* manual. It is just a bunch of web-pages, terribly outdated, badly structured, inconsistent, from different authors, with different styles of writing. RouterOS is great, but from documentation point of view, RouterOS is by far the worst software I have been working with...

Imagine new RouterOS-user with no older buddy to help him. Having no other choice he goes to wiki, checks "First time startup" just to find "Applies to RouterOS: 2.9, v3, v4". Nice welcome-message, but what about v5/v6? It is 2015, and the page was not modified for a few years. You call that "manual"?

The biggest problem of RouterOS Manual is: There is none at all!
I would also like to obtain some clarification on this particular concern. Mikrotik has evolved over the years and there seems to be great potential with the product lines being released.

The current business strategy of pushing out two mainstream categorical products (Routers and now Switches) should also come with the responsibility of releasing proper documentation. Especially when considering the level of intricate control given to end-users for those products.

I can understand the initial strategy of using a Wiki -- but with all due respect, Mikrotik is not what it was 5 Years ago when it was mainly pushing Wireless products. This has been well demonstrated in the recent product development cycle and push. Competing with the 'big boys' also should come with investing the appropriate capital in developing concise technical documentation.
 
pchott
newbie
Posts: 45
Joined: Tue Apr 29, 2014 11:15 am
Location: Holzkirchen, Germany

Re: Manual Improvements

Tue Jun 23, 2015 1:00 pm

I would appreciate more written about VoIP optimal configuration (priority) with examples.

Otherwise I must thank you for pretty good documentation regarding fast changes of RouterOS. Maybe at the bottom of each Wiki page to be written to which RouterBoard is concern and which RouterOS versions since configuration can varies from one to another.
 
infused
Member
Member
Posts: 313
Joined: Fri Dec 28, 2012 2:33 pm

Re: Manual Improvements

Mon Jun 29, 2015 2:51 am

It's pretty light. CRS, more on queue management and most of all, real world examples.
 
User avatar
davidnvega
just joined
Posts: 21
Joined: Wed Aug 28, 2013 11:11 pm
Location: San Juan, Argentina
Contact:

Re: Manual Improvements

Tue Jun 30, 2015 5:45 am

It would be nice to be open to edit for more users in different languages for each article.
 
tmlll
just joined
Posts: 5
Joined: Mon Jun 22, 2015 2:36 pm

Re: Manual Improvements

Tue Jun 30, 2015 3:53 pm

I would really appreciate less bugs, and/or some tagging of commands with the version numbers of RouterOS where these commands are supposed to work. One example off the top of my head, with 6.29, 6.29.1 and 6.30rc23:

[MikroTik] > /routing ospf monitor
bad command name monitor (line1 column 15)

found here: http://wiki.mikrotik.com/wiki/Manual:Ro ... #Interface
 
User avatar
mrz
MikroTik Support
MikroTik Support
Topic Author
Posts: 7186
Joined: Wed Feb 07, 2007 12:45 pm
Location: Latvia
Contact:

Re: Manual Improvements

Tue Jun 30, 2015 3:56 pm

For multi instance OSPF you have to use following command: /routing ospf instance print status
 
tmlll
just joined
Posts: 5
Joined: Mon Jun 22, 2015 2:36 pm

Re: Manual Improvements

Tue Jun 30, 2015 4:29 pm

Hi,

I tried to post one message to this thread, but don't know where it went. So here goes again:

I would like to see less bugs in the manual, and/or a good description which version of the software a command might apply to. Eg.
> /routing ospf monitor
bad command name monitor (line 1 column 15)
At this point it is not clear whether this feature should exist, but did not make it into the image, or did exist at some point, but was deprecated, and if so, in which version and/or which other command I should be using instead to achieve a similar effect.

But I, as a newbie, also frequently run into problems trying to set up stuff, and then find error messages like these:
> /ip add pr
Flags: X - disabled, I - invalid, D - dynamic
 #   ADDRESS            NETWORK         INTERFACE
...
16 I 10.200.2.26/29     10.200.2.24     *1A
I have no idea what "*1A" might mean. A comprehensive list of error messages and their supposed meanings would be very helpful.
 
User avatar
blajah
Member Candidate
Member Candidate
Posts: 222
Joined: Fri Jun 12, 2015 8:58 pm
Location: Belgrade, Serbia
Contact:

Re: Manual Improvements

Wed Jul 08, 2015 1:53 pm

Hello MT,

Just quick intro. I'm working as tech support in one bigger ISP in my country so i will try to forward issues of customers i have helped to and what simple scenarios would be really helpful:

*xDSL modem in bridge mode and Mikrotik dialing PPPoE ( NAT) config
*Fiber with WAN/30 and public block with /29 address plans config
*Basic firewall setup, described in "simple language" ( someone mentioned you need a basic network knowledge to understand Wiki, but you guys can make an exception for this simple setups)
*Simple PPTP server setup

For 2 first topics would be nice to make picture of wiring, then prerequisites ( modem config, user/pass etc etc) step by step config.

Btw, i'm running free tech support community website in Serbian language, so that's one more channel i'm listening what people are struggling with.

If i can contribute to this, please let me know, but i do not consider myself expert by any means ( i think you have much more competent guys here).
Regards!
 
silversword
Frequent Visitor
Frequent Visitor
Posts: 58
Joined: Tue Jul 23, 2013 3:36 pm

Re: Manual Improvements

Thu Jul 09, 2015 8:37 pm

When you download this: http://download2.mikrotik.com/routeros/ ... e-6.30.zip

There's 20 packages that don't match this list: http://wiki.mikrotik.com/wiki/Manual:System/Packages

Trying to determine what the difference between all the wireless____ ones are.
 
TomosRider
Member Candidate
Member Candidate
Posts: 209
Joined: Thu Nov 20, 2014 1:51 pm

Re: Manual Improvements

Fri Jul 10, 2015 2:18 pm

Any news about this?
 
silversword
Frequent Visitor
Frequent Visitor
Posts: 58
Joined: Tue Jul 23, 2013 3:36 pm

Re: Manual Improvements

Fri Jul 10, 2015 3:00 pm

This will probably need RouterOS work before you can fix the manual but it would sure be nice to have this:

http://wiki.mikrotik.com/wiki/Manual:Quickset

First need a consistent list of what's in that dropdown for all devices is first step (different devices have different sets of dropdowns).

Then define what the intention of each item is: CAP, CPE, Home AP, PTP Bridge, WISP AP etc.
 
TomosRider
Member Candidate
Member Candidate
Posts: 209
Joined: Thu Nov 20, 2014 1:51 pm

Re: Manual Improvements

Fri Jul 10, 2015 3:46 pm

I understand the volume of this work and i can appreciate all the effort Mtik staff is putting to get this thing done. I offer myself to help in any way possible.
 
User avatar
marria
newbie
Posts: 35
Joined: Sat Jun 04, 2011 8:41 pm

Re: Manual Improvements

Sat Jul 11, 2015 2:48 pm

Let's have script examples that actually work, example:
from manual or wiki

{
:local address1 [/ip address get [find interface="ether1"] address]
:put $address1
}

result:
invalid internal item number

This type of thing adds hours if not days to what could be a nice learning flow
 
User avatar
mrz
MikroTik Support
MikroTik Support
Topic Author
Posts: 7186
Joined: Wed Feb 07, 2007 12:45 pm
Location: Latvia
Contact:

Re: Manual Improvements

Mon Jul 13, 2015 2:41 pm

Maybe before blindly copying scripts make sure that you have interface named "ether1" and that this "ether1" actually has an address to get.
 
User avatar
marria
newbie
Posts: 35
Joined: Sat Jun 04, 2011 8:41 pm

Re: Manual Improvements

Mon Jul 13, 2015 3:48 pm

Maybe before blindly copying scripts make sure that you have interface named "ether1" and that this "ether1" actually has an address to get.
This is not the issue.

ether1 exists on test unit with an address. your assumption is erroneous''
[Michael@Goat-on-a-Rope] > ip address p
Flags: X - disabled, I - invalid, D - dynamic 
 #   ADDRESS            NETWORK         INTERFACE                                                                                                                           
 0   192.168.5.1/24     192.168.5.0     ether2                                                                                                                              
 1 X 192.168.0.1/24     192.168.0.0     ether7                                                                                                                              
 2   10.234.123.2/30    10.234.123.0    ether1                                                                                                                              
 3   10.234.123.6/30    10.234.123.4    ether9-WAN MESA1                                                                                                                    
 4 D 10.0.0.100/20      10.0.0.0        ether9-WAN MESA1                                                                                                                    
 5 D 192.168.77.253/24  192.168.77.0    ether1                                                                                                                              
[Michael@Goat-on-a-Rope] > interface p
Flags: D - dynamic, X - disabled, R - running, S - slave 
 #     NAME                                TYPE       ACTUAL-MTU L2MTU  MAX-L2MTU MAC-ADDRESS      
 0  R  ;;; ether1-WAN_WT
       ether1                              ether            1500  1520       1520 D4:CA:6D:59:FD:97
 1  RS ether2                              ether            1500  1520       1520 D4:CA:6D:59:FD:98
 2   S ether3                              ether            1500  1520       1520 D4:CA:6D:59:FD:99
 3  RS ether4                              ether            1500  1520       1520 D4:CA:6D:59:FD:9A
 4  RS ether5                              ether            1500  1520       1520 D4:CA:6D:59:FD:9B
 5     ether6                              ether            1500  1520       1520 D4:CA:6D:59:FD:9C
 6     ether7                              ether            1500  1520       1520 D4:CA:6D:59:FD:9D
 7  X  ether8-WAN3 GBAP                    ether            1500  1520       1520 D4:CA:6D:59:FD:9E
 8  R  ether9-WAN MESA1                    ether            1500  1520       1520 D4:CA:6D:59:FD:9F
 9  RS wlan1                               wlan             1500  1600            00:0C:42:51:B2:34
10  X  ********************************* 
11  R  bridge1                             bridge           1500  1520            D4:CA:6D:59:FD:98
[Michael@Goat-on-a-Rope] > {
{... :local address1 [/ip address get [find interface="ether1"] address]
{... :put $address1                                                     
{... }             
invalid internal item number
[Michael@Goat-on-a-Rope] > 
Last edited by marria on Mon Jul 13, 2015 3:57 pm, edited 1 time in total.
 
User avatar
Chupaka
Forum Guru
Forum Guru
Posts: 8712
Joined: Mon Jun 19, 2006 11:15 pm
Location: Minsk, Belarus
Contact:

Re: Manual Improvements

Mon Jul 13, 2015 3:53 pm

This is not the issue.
so what is the issue?
looks like you have many addresses on ether1, not a single one. check with
:put [/ip address find interface="ether1"]
 
User avatar
marria
newbie
Posts: 35
Joined: Sat Jun 04, 2011 8:41 pm

Re: Manual Improvements

Mon Jul 13, 2015 4:16 pm

marria wrote:
This is not the issue.


so what is the issue?
looks like you have many addresses on ether1, not a single one. check with

Code: Select all
:put [/ip address find interface="ether1"]
Now THAT was helpful, thanks! It seems that on a interface with more than one address it tanks:

Note for manual - "this example cannot report multiple addresses on on interface, it will report none and give error"
furthermore the variation:
{
:local address1 [/ip address get [/interface ethernet find name=ether1] address]
:put $address1
}
is likely as not to give an address from a completely different interface under that situation.
[Michael@Goat-on-a-Rope] > {
{... :local address1 [/ip address get [find interface="ether1"] address]
{... :put $address1                                                     
{... }             
invalid internal item number
[Michael@Goat-on-a-Rope] > :put [/ip address find interface="ether1"]
*18;*1b
[Michael@Goat-on-a-Rope] >
But on a unit with only a single address it works:
[Michael@RCWT1] > interface p
Flags: D - dynamic, X - disabled, R - running, S - slave 
 #     NAME                                TYPE       ACTUAL-MTU L2MTU  MAX-L2MTU MAC-ADDRESS      
 0  R  ;;; 10.4.0.0
       ether1                              ether            1500  1520       1520 00:0C:42:6D:E0:00
 1  R  ether2-OUT                          ether            1500  1520       1520 00:0C:42:6D:E0:01
 2  R  ether3-NBM5_25-IN North             ether            1500  1520       1520 00:0C:42:6D:E0:02
 3  R  wlan1                               wlan             1500  1600            00:0C:42:2B:A1:A6
[Michael@RCWT1] > ip address p
Flags: X - disabled, I - invalid, D - dynamic 
 #   ADDRESS            NETWORK         INTERFACE                                                                                                                           
 0   10.4.0.1/20        10.4.0.0        ether1                                                                                                                              
 1   ;;; North Clients
     192.168.102.1/24   192.168.102.0   ether3-NBM5_25-IN North                                                                                                             
 2   10.2.2.1/24        10.2.2.0        wlan1                                                                                                                               
 3 D 10.249.249.2/30    10.249.249.0    ether2-OUT                                                                                                                          
[Michael@RCWT1] > {
{... :local address1 [/ip address get [find interface="ether1"] address]
{... :put $address1                                                     
{... }             
10.4.0.1/20
[Michael@RCWT1] > :put [/ip address find interface="ether1"]
*15
[Michael@RCWT1] > 
So.......what are the *values and how can I use them??
 
User avatar
mrz
MikroTik Support
MikroTik Support
Topic Author
Posts: 7186
Joined: Wed Feb 07, 2007 12:45 pm
Location: Latvia
Contact:

Re: Manual Improvements

Mon Jul 13, 2015 4:56 pm

If there are multiple matches then list/array is returned.
Quote from the manual:
find - Returns list of internal numbers for items that are matched by given expression.
See here what to do with arrays:
http://wiki.mikrotik.com/wiki/Manual:Sc ... ith_Arrays
 
User avatar
Chupaka
Forum Guru
Forum Guru
Posts: 8712
Joined: Mon Jun 19, 2006 11:15 pm
Location: Minsk, Belarus
Contact:

Re: Manual Improvements

Mon Jul 13, 2015 7:01 pm

furthermore the variation:
{
:local address1 [/ip address get [/interface ethernet find name=ether1] address]
:put $address1
}
is likely as not to give an address from a completely different interface under that situation.
that's completely incorrect command. first, you get ID of 'ether1' interface and then you try to get an address having the same ID as that interface. it's called 'unpredictable behaviour' :)
 
User avatar
marria
newbie
Posts: 35
Joined: Sat Jun 04, 2011 8:41 pm

Re: Manual Improvements

Mon Jul 13, 2015 7:54 pm

furthermore the variation:
{
:local address1 [/ip address get [/interface ethernet find name=ether1] address]
:put $address1
}
is likely as not to give an address from a completely different interface under that situation.
that's completely incorrect command. first, you get ID of 'ether1' interface and then you try to get an address having the same ID as that interface. it's called 'unpredictable behaviour' :)
All right. Point well made, as I wouldn't know - having pulled these from the wiki. :lol:

This reinforces the need for a good manual, for those of us trying to learn - very confusing!

I suppose this is wandering off topic, but if you can point me to some reliable scripting reference, I'd appreciate it!
Last edited by marria on Mon Jul 13, 2015 8:06 pm, edited 1 time in total.
 
User avatar
Chupaka
Forum Guru
Forum Guru
Posts: 8712
Joined: Mon Jun 19, 2006 11:15 pm
Location: Minsk, Belarus
Contact:

Re: Manual Improvements

Mon Jul 13, 2015 7:56 pm

is this incorrect command from the manual?.. a link?
 
User avatar
marria
newbie
Posts: 35
Joined: Sat Jun 04, 2011 8:41 pm

Re: Manual Improvements

Mon Jul 13, 2015 11:51 pm

is this incorrect command from the manual?.. a link?
Probably from the wiki. I'll try to find it in my history - likely less than a week back.

Update: and crow for dinner.... no link, bad interpretations

To clarify, the original Line I questioned was from - Check if IP on interface have changed
http://wiki.mikrotik.com/wiki/Manual:Scripting-examples
it appeared just the example I needed but failed because of not knowing about the single address issue.

My mistake compounded after digging around for what would work - I found a link from MRZ :
http://forum.mikrotik.com/viewtopic.php ... ta#p265825

with
You can't use numbers of the items to get data. Find should be used instead.
For example
[/interface wireless registration-table get [find name=wlan1] rx-ccq]
also this thread:
http://forum.mikrotik.com/viewtopic.php?t=35136
which had a similar appearing example:
:put [/interface ethernet get [/interface ethernet find name="ether1"] mtu]
(reconstructing my memory) I am guessing I tried rewrite the original line based on those threads as:
{
:local address1 [/ip address get [/interface ethernet find name=ether1] address]
:put $address1
}
and it worked! for this routeros code newbie, that time, anyway, when the other did not. Hard to know, if I reconstructed this right. My bad. :?
It was a long road to finding out about the affect of mutiple addresses on the interface tripping me up all along.
As the original code DOES work on interfaces with single IP addresses that the manual has the right to assume, I'll eat crow. I would, however, point that out in the manual.
 
User avatar
favincen
just joined
Posts: 21
Joined: Mon Jun 08, 2015 1:56 pm
Location: Grenoble, France

Re: Manual Improvements

Fri Aug 28, 2015 5:59 pm

What would you like to see more or what changes in the RouterOS Manual.
Detailed criticism is welcome.
There are quite a lot of things that could be clarified or updated in the wiki/manual. It's hard to list just from the top of my head. I would be much easier to insert comments or review request right on the spot, on the very page we feel something is missing, unclear, or obsolete.
That's my first suggestion: allow commenting on each page of the wiki. That would be much more efficient than trying to remember what point was unclear or missing some few weeks or months ago...

Without doubts some would try to ask for support in the wiki comments instead of the forums, so it would be wise to state and underline that no anwsers will be provided in the comments, just inputs for improving the documentation will be taken into account...

Also, as it is a wiki, it could be very efficient to allow some kind of editing, probably with some moderator to review and commit proposed changes (create/update/delete).
In other words, make it a real wiki, where all can interact ! :D

my 2 cents.
Fabrice
 
User avatar
BMan
just joined
Posts: 6
Joined: Sat Mar 14, 2015 9:53 pm

Re: Manual Improvements

Tue Sep 22, 2015 7:01 am

There is almost nothing about Policy Routing and _nothing_ about Route Rules in manual. Please add some information and examples about it.
 
User avatar
lectrapon
Frequent Visitor
Frequent Visitor
Posts: 80
Joined: Tue Mar 03, 2015 2:10 pm

Re: Manual Improvements

Tue Oct 06, 2015 5:33 pm

We need a French version of Manual because there are some technical section that can't be easy for us to understand. :)
 
jarda
Forum Guru
Forum Guru
Posts: 7756
Joined: Mon Oct 22, 2012 4:46 pm

Tue Oct 06, 2015 7:42 pm

Sure. Someone should be so kind and translate the manual into all languages of the world (ironic) . Just French is not enough and there are much more needed languages than French (not ironic) .
 
wil
just joined
Posts: 10
Joined: Wed Jun 04, 2014 4:42 pm

Re: Manual Improvements

Wed Oct 07, 2015 10:36 pm

The manual made it quite difficult to figure some details out for me. These are some things that I want to point out particularily:
* IPv6:
The basic setup was actually reasonable well described in examples, but if you get dynamic prefixes from your ISP then there are parts that are not covered by the examples and you have do dig quite deep into the manual and find things out by yourself. It took me quite a while how I get the dynamic ipv6 pool from my ISP and setup prefix delegation for it. Also the router must pick its own address from the ipv6 pool and it takes too long to find the information on how this is supposed to work.

* Firewall in combination with ppp incoming/outgoing-filter option
I think there was just a sketchy example describing the feature that was not very helpful. But there was also some bad luck involved with some firmware bugs and the old firewall print command not showing dynamic rules by default.

* IPSec
There can never be enough documentation on this one, right? :wink: Basic setup is fine but once you dig into policy groups / templates topics it gets hard to find good information.

Examples are nice when you have to get something fairly standard quickly done. There command reference is alright, although there could be some better descriptions for the parameters here and there. What I was often missing is documentation that describes the some mechanics that are implemented in the OS, like the dynamic ipv6 pools or firewall rules for the dynamic ppp interfaces. It just takes too long to find the little pieces of information from the command reference to understand how a particular feature works.
 
MartijnVdS
Frequent Visitor
Frequent Visitor
Posts: 93
Joined: Wed Aug 13, 2014 9:36 am

Re: Manual Improvements

Fri Oct 30, 2015 10:05 am

I would like to see some improvement in the documentation for /certificate scep-server

A bit of explanation of what SCEP is, what the different roles are (CA, RA) or at least something about what all the configuration options mean would be great.
 
kurtkraut
Frequent Visitor
Frequent Visitor
Posts: 74
Joined: Wed Feb 15, 2012 2:55 am

MUM Videos at bottom page

Sun Nov 01, 2015 6:05 pm

MUM Videos are a valuable resource and many talks cover in a very instructive way. I suggest the effort of searching for MUM Videos and adding them to the bottom of each manual page as 'related videos'. So eventual gaps the text may leave might be covered in the video. Also most of the wiki pages lack of real world scenarios and example, which the MUM Videos are rich in that matter.

Who is online

Users browsing this forum: rook001 and 2 guests