Manual Improvements
Posted: Fri May 22, 2015 12:59 pm
What would you like to see more or what changes in the RouterOS Manual.
Detailed criticism is welcome.
Detailed criticism is welcome.
Page 1 of 1
Re: Manual Improvements
Posted: Fri May 22, 2015 1:59 pm
User Manager is well out of date.
Re: Manual Improvements
Posted: Fri May 22, 2015 2:34 pm
Hi mrz,
Hotspot universal client and one to one nat need more description.
Hotspot universal client and one to one nat need more description.
Re: Manual Improvements
Posted: Fri May 22, 2015 2:35 pm
In the typical setup of the SOHO, it is often the case that ability to access the Internet depends on the (misconfigured) device. E.g. my home network uses CRS125 to transport provider' vlan to router, so a mistake means that I cannot access the manual until I figure out and fix what was broken.
It would be very useful to be able to get offline snapshot of the whole manual, e.g. in the pdf. Some time ago there was ability to select several wiki pages for pdf book output, but this was equally inconvenient since you have to know in advance what parts of the manual you need.
It would be very useful to be able to get offline snapshot of the whole manual, e.g. in the pdf. Some time ago there was ability to select several wiki pages for pdf book output, but this was equally inconvenient since you have to know in advance what parts of the manual you need.
Re: Manual Improvements
Posted: Fri May 22, 2015 2:59 pm
Revised and updated usage examples. Many of the examples and tutorial scripts are horribly outdated and some do not even work any more. Many examples also do not apply to real-world situations as they were created so long ago.
Usermanager/Hotspot needs the entire manual to be ripped and replaced it is so bad/old/incomplete.
Firewall needs serious updating (All sections)
QoS needs updating, as well as more usage examples with updated scenarios.
Usermanager/Hotspot needs the entire manual to be ripped and replaced it is so bad/old/incomplete.
Firewall needs serious updating (All sections)
QoS needs updating, as well as more usage examples with updated scenarios.
Re: Manual Improvements
Posted: Fri May 22, 2015 3:01 pm
I also would like to see an updated downloadable manual. Not nice when you need the manual, but don't have access to the internet.
I realize this request is possibly crazy, but is there a way to incorporate the manual into the actual router hardware/firmware? So you have the ability to press a help button in web/win/box and see a page dedicated to what you are doing?
I realize this request is possibly crazy, but is there a way to incorporate the manual into the actual router hardware/firmware? So you have the ability to press a help button in web/win/box and see a page dedicated to what you are doing?
Re: Manual Improvements
Posted: Fri May 22, 2015 3:01 pm
Many people are missing general networking knowledge. Without the knowledge it is very difficult for them to understand the manual and make the settings they need. Normally they mostly do not know what they look for...
I would suggest to make at least hypertext links of all signifiant words to their definitions and explanations to provide additional info for the readers to understand what each word stays for.
More examples (especially in combinations and with webfig pictures) would be also helpful for them.
That was something that could help to newbies.
Now from my point of view, I would appreciate the immediate update of the manual and having possibility to select ros version to which the pages should display correctly - It means, if I use 6.27 now, but the last is 6.29 (almost), I would like to be able to set my version on top of the page and get always only content fully relevant to 6.27 ignoring (or maybe marking) the differences against the newer versions.
On top of the versioning system, I would like to have possibilty to compare two versions (for example 6.27 to 6.29) and see the differences only to know, whether I need to harmonize my configurations due to version change or not.
I would suggest to make at least hypertext links of all signifiant words to their definitions and explanations to provide additional info for the readers to understand what each word stays for.
More examples (especially in combinations and with webfig pictures) would be also helpful for them.
That was something that could help to newbies.
Now from my point of view, I would appreciate the immediate update of the manual and having possibility to select ros version to which the pages should display correctly - It means, if I use 6.27 now, but the last is 6.29 (almost), I would like to be able to set my version on top of the page and get always only content fully relevant to 6.27 ignoring (or maybe marking) the differences against the newer versions.
On top of the versioning system, I would like to have possibilty to compare two versions (for example 6.27 to 6.29) and see the differences only to know, whether I need to harmonize my configurations due to version change or not.
Re: Manual Improvements
Posted: Fri May 22, 2015 3:41 pm
A good manual in my eyes, needs pictures of examples made via CLI and GUI "Both"
Otherwise the topic is tough to follow.
Otherwise the topic is tough to follow.
Re: Manual Improvements
Posted: Fri May 22, 2015 3:44 pm
The User Manager commands (on the command line that is) are not described at all anywhere in the manual. That's one of the biggest missing pieces IMO.
Then there's some scripting quirks that aren't clarified in the scripting page at all, such as type conversion rules. In particular, I'd like to see something like these tables, but for RouterOS' scripting language.
Then there's some scripting quirks that aren't clarified in the scripting page at all, such as type conversion rules. In particular, I'd like to see something like these tables, but for RouterOS' scripting language.
Re: Manual Improvements
Posted: Fri May 22, 2015 5:21 pm
As newbie myself - I would find it super-beneficial if you had section on "transition from conventional SOHO router to RouterOS" and examples of all of the typical setup stuff like port forward, static IPs, port triggering, setup for VOIP phone, setting up VPN. It's all there but lot of it outdated, iterface names don't match on whats default on router, etc. As mentioned above - would be very nice to have general short TCP/IP section and terminology explanation.
Re: Manual Improvements
Posted: Fri May 22, 2015 8:08 pm
Document the Fast Track functionality with a few examples now that RouterOS 6.29 will be released.
Re: Manual Improvements
Posted: Fri May 22, 2015 8:20 pm
LAN multicast forwarding. The manual only talks about 2 routers. It seems nobody gets it to work for subnets, myself included.
Re: Manual Improvements
Posted: Sat May 23, 2015 12:56 am
Please please please add more information and reorganize/consolidate on how to use the switch chip functionality for non CRS and CRS. I would say that there should be one link on how to use all switching features for RouterOS. It would just be faster.
Please use examples with Cisco as the main comparison.
For example.
To make a trunk port, please do this. On a Cisco the equivalent configuration would be this. With a bonus explanation of multiple tagged vlans on a trunk port.
To make an access port, please do this. On a Cisco the equivalent configuration would be like this.
I tried to use the switch chip to add multiple tagged frames on the same switch across different ports and it failed when I tried to do that. I haven't spent much time trying to figure it out as I'm studying for other certs. However I will spend more time on it.
That's what I can think of off the top of my head.
Thank you.
Please use examples with Cisco as the main comparison.
For example.
To make a trunk port, please do this. On a Cisco the equivalent configuration would be this. With a bonus explanation of multiple tagged vlans on a trunk port.
To make an access port, please do this. On a Cisco the equivalent configuration would be like this.
I tried to use the switch chip to add multiple tagged frames on the same switch across different ports and it failed when I tried to do that. I haven't spent much time trying to figure it out as I'm studying for other certs. However I will spend more time on it.
That's what I can think of off the top of my head.
Thank you.
Posted: Sat May 23, 2015 8:06 am
It shouldn't be a manual for Cisco.
Re: Manual Improvements
Posted: Sat May 23, 2015 11:02 am
CRS switches implementation guide updated and with some intro to differentiate a switch from router
Re: Manual Improvements
Posted: Sat May 23, 2015 3:54 pm
Manual improvements ?? What manual?? Mikrotik hasn't had a decent manual since version 2.9 !!! And that's a fact.
Yes, I am frustrated with lot of stuff concerning your recent software and hardware products, but my intentions are pure, so please, bear with me till the end of this post and maybe you would end up wanting to have a "beer with me"
My first contact with Mikrotik was around version 1.x which was distributed on several floppy disks. At that time I was still wandering WTF is the router and why would I want to have one. Step by step, I was improving my knowledge and definitely fell in love with the whole idea and became a MT preacher while nobody in my surrounding didn't even heard about it (that preaching escalated nowdays in largest Mikrotik user group on LinkedIn with more than 4000 followers from all over the world).
I've humbly pilgrimed to first MUM in Prague, was enchanted by the things I've seen, and proud to shake hands with Mr. Tully.
I have introduced 2.9.27 MT router (pirated.... sorry) installed on PC, to a huge company that I was working for at the time and eventually replaced it with RB 150's and RB1000, and that was only the beginning....
First thing I have done, when i've started some serious work, was to print the manual. I still have it. It is in very poor shape, but I still, from time to time, find a reason to look at it. For years I was carrying it with me as a "holly book with all the answers", which in most situations, it was.
In my humble opinion, nothing can replace a book well written !!!
No html, php or any other searchable format displayable on the screen will ever took over.
So, the first thing I would like to see is comprehensive pdf formated manual.
If we know that 2.9 manual had a 709 pages, I expect the current version to have no less than 1000.
Each new feature has to be added promptly and new version of manual has to be released together with new release of ROS.
As for the content, I always had a few objections like: if there is a public address in the example, use public, don't use 10.1.15.1 and declare it public. It can be confusing for the beginner who is trying to mirror described example to his own situation.
Every function or feature has to be accompanied with the most common real life example and best practice advice. Nothing can be left to user imagination and empirical reasoning.
It's a huge task, I know, but once you almost had it done (2.9) and I don't see any reason not to do it again.
Bear in mind that the large number of your followers are home users for whom the MT is the first contact with serious networking, and your role is not simply to supply the product, but to act educationally as well.
I sincerely hope that there is a considerable number of like minded people and expect them to declare themselves as such.
Thanks for your patience, and I wish you all the best in the future..
Yes, I am frustrated with lot of stuff concerning your recent software and hardware products, but my intentions are pure, so please, bear with me till the end of this post and maybe you would end up wanting to have a "beer with me"
My first contact with Mikrotik was around version 1.x which was distributed on several floppy disks. At that time I was still wandering WTF is the router and why would I want to have one. Step by step, I was improving my knowledge and definitely fell in love with the whole idea and became a MT preacher while nobody in my surrounding didn't even heard about it (that preaching escalated nowdays in largest Mikrotik user group on LinkedIn with more than 4000 followers from all over the world).
I've humbly pilgrimed to first MUM in Prague, was enchanted by the things I've seen, and proud to shake hands with Mr. Tully.
I have introduced 2.9.27 MT router (pirated.... sorry) installed on PC, to a huge company that I was working for at the time and eventually replaced it with RB 150's and RB1000, and that was only the beginning....
First thing I have done, when i've started some serious work, was to print the manual. I still have it. It is in very poor shape, but I still, from time to time, find a reason to look at it. For years I was carrying it with me as a "holly book with all the answers", which in most situations, it was.
In my humble opinion, nothing can replace a book well written !!!
No html, php or any other searchable format displayable on the screen will ever took over.
So, the first thing I would like to see is comprehensive pdf formated manual.
If we know that 2.9 manual had a 709 pages, I expect the current version to have no less than 1000.
Each new feature has to be added promptly and new version of manual has to be released together with new release of ROS.
As for the content, I always had a few objections like: if there is a public address in the example, use public, don't use 10.1.15.1 and declare it public. It can be confusing for the beginner who is trying to mirror described example to his own situation.
Every function or feature has to be accompanied with the most common real life example and best practice advice. Nothing can be left to user imagination and empirical reasoning.
It's a huge task, I know, but once you almost had it done (2.9) and I don't see any reason not to do it again.
Bear in mind that the large number of your followers are home users for whom the MT is the first contact with serious networking, and your role is not simply to supply the product, but to act educationally as well.
I sincerely hope that there is a considerable number of like minded people and expect them to declare themselves as such.
Thanks for your patience, and I wish you all the best in the future..
Re: Manual Improvements
Posted: Mon May 25, 2015 4:30 pm
WebFig operations along with command line instructions?
Re: Manual Improvements
Posted: Mon May 25, 2015 4:39 pm
Cisco IOS Configuration Fundamentals Command Reference Release 12.2 is 974 pages long.If we know that 2.9 manual had a 709 pages, I expect the current version to have no less than 1000.
Cisco IOS Master Command List, All Releases from: January 27, 2014 is 580 pages long....ONLY THE INDEX of all possible commands.
Amen.Each new feature has to be added promptly and new version of manual has to be released together with new release of ROS.
Re: Manual Improvements
Posted: Tue May 26, 2015 9:56 am
Portable command guides are more than welcome....
Can we expect some kind of case studies in which we can lab and test various types of configurations?
Can we expect some kind of case studies in which we can lab and test various types of configurations?
Re: Manual Improvements
Posted: Tue May 26, 2015 10:35 am
"Netinstall" documentation needs update for new features.
And in "Upgrading RouterOS" page do not describe "Auto Upgrade" as kind of upgrade way.
And in "Upgrading RouterOS" page do not describe "Auto Upgrade" as kind of upgrade way.
Re: Manual Improvements
Posted: Tue May 26, 2015 11:51 am
CRS series and Switch menu need to be updated. Documentation for switching is not complete. Examples are very usefull but all options are not explained. Anyone who used other products like HP, D-Link or Cisco can agree that using Mikrotiok hardware switch menu is not easy. Greate hardware with many options but how to use it? Some options are missing like rstp or link agregation - is it not possible to configure it on hardware?
Configuring VLAN on CRS is painfull. If you could invite some more friendly interface or much better manual, it would be big step. Not all of us understand L2 switching "language" you are using.
Configuring VLAN on CRS is painfull. If you could invite some more friendly interface or much better manual, it would be big step. Not all of us understand L2 switching "language" you are using.
Re: Manual Improvements
Posted: Tue May 26, 2015 7:23 pm
I would like to see some clarification of conflicting configuration settings or command cross-reference and interrelation. For example:
I am setting-up a two routerboard link in AP/station configuration. Trying to add WPA security I have to consider security profiles, their selection, access lists, etc. This is very frustrating.
At the AP I am using access list with the station's MAC address. Then, no matter what I use as security profile on both ends (even wrong WPA key) the station is connected fine. If I remove the station's MAC address from the access list, no matter what security profiles I use (identical and correct WPA key) the station refuses to connect.
So, although there is a clear explanation of security profiles and access lists, the correct setting combination is a matter of trial end error, due to their interrelated nature.
(Finally, I gave up on security profiles and use NV2 security and key, hoping that the link is encrypted.)
I am setting-up a two routerboard link in AP/station configuration. Trying to add WPA security I have to consider security profiles, their selection, access lists, etc. This is very frustrating.
At the AP I am using access list with the station's MAC address. Then, no matter what I use as security profile on both ends (even wrong WPA key) the station is connected fine. If I remove the station's MAC address from the access list, no matter what security profiles I use (identical and correct WPA key) the station refuses to connect.
So, although there is a clear explanation of security profiles and access lists, the correct setting combination is a matter of trial end error, due to their interrelated nature.
(Finally, I gave up on security profiles and use NV2 security and key, hoping that the link is encrypted.)
Re: Manual Improvements
Posted: Wed May 27, 2015 12:59 pm
Guides grafic with WinBox or WebFig date for the basic settings 
Re: Manual Improvements
Posted: Wed May 27, 2015 2:12 pm
A lot of examples. Really help us
Re: Manual Improvements
Posted: Wed May 27, 2015 3:13 pm
CRS QOS for VoIP examples
Re: Manual Improvements
Posted: Wed May 27, 2015 4:00 pm
More case studies (for example L2 connectivity via VPLS between multiple sites, multiple customers).
Re: Manual Improvements
Posted: Wed May 27, 2015 6:21 pm
Case studies and examples are a big requirement in my mind, but also "Completeness" of all features and parameters.
If it's an available parameter (CLI or Winbox or Webfig) it needs to be listed and documented with all "options/extensions" to that parameter, as well as a complete explanation to those options. (I've seen some incomplete lists of options, but never proper explanations of them)
If it's an available parameter (CLI or Winbox or Webfig) it needs to be listed and documented with all "options/extensions" to that parameter, as well as a complete explanation to those options. (I've seen some incomplete lists of options, but never proper explanations of them)
Re: Manual Improvements
Posted: Wed May 27, 2015 6:58 pm
Hello Mirkotik staff,
It looks like your documentation got corrupted, so why dont you reset it to factory defaults and start it from scratch?
It looks like your documentation got corrupted, so why dont you reset it to factory defaults and start it from scratch?
Re: Manual Improvements
Posted: Thu May 28, 2015 11:13 am
The twenty-first century calls for graphic illustration of how to. For VPN, there is no explanation of what policy override and policy strict means...no wonder folks have difficulty setting up VPN. Don't kill an excellent router useability by providing inadequate graphic depiction of how to use.
Re: Manual Improvements
Posted: Thu May 28, 2015 11:22 am
what do you mean exactly?Hello Mirkotik staff,
It looks like your documentation got corrupted, so why dont you reset it to factory defaults and start it from scratch?
Re: Manual Improvements
Posted: Thu May 28, 2015 1:01 pm
From the manual:For VPN, there is no explanation of what policy override and policy strict means...
no - do not generate policies
port-override -- generate policies and force policy to use any port (old behavior)
port-strict -- use ports from peer's proposal, which should match peer's policy
Re: Manual Improvements
Posted: Thu May 28, 2015 5:02 pm
+1 for User Manager - e.g. limitation functionality. (see this post http://forum.mikrotik.com/viewtopic.php ... 49#p450651
Dirk
Dirk
Re: Manual Improvements
Posted: Fri May 29, 2015 8:15 am
Okay, it has been added however, last year I checked and it wasn't there so I just gave up or put off completing the VPN setup.From the manual:For VPN, there is no explanation of what policy override and policy strict means...
no - do not generate policies
port-override -- generate policies and force policy to use any port (old behavior)
port-strict -- use ports from peer's proposal, which should match peer's policy
Re: Manual Improvements
Posted: Fri May 29, 2015 8:29 am
Since the manual is powered by a Wiki, you can see, that this text was there since 2012.Okay, it has been added however, last year I checked and it wasn't there so I just gave up or put off completing the VPN setup.
If this teaches us anything, is that we need to improve search and manual structure for easy navigation
Re: Manual Improvements
Posted: Sun May 31, 2015 12:32 pm
Convert it back into a WIKI so people can add/fix things.
A lot of the pages need better explanations, and more examples.
A lot of the pages need better explanations, and more examples.
Re: Manual Improvements
Posted: Mon Jun 01, 2015 11:00 am
When it was editable by anyone, it only brought mistakes and problems. Currently we give edit rights to select people who have shown interest (trusted trainers with good knowledge).
Re: Manual Improvements
Posted: Mon Jun 01, 2015 12:43 pm
Ok, but at least have somewhere that is a wiki. I have tons of scripts I wrote to share, but can't post them.When it was editable by anyone, it only brought mistakes and problems. Currently we give edit rights to select people who have shown interest (trusted trainers with good knowledge).
Re: Manual Improvements
Posted: Tue Jun 02, 2015 3:47 am
What I need is a clear, no nonsense instruction on setting up a VPN for folks who have an office at home and that wants to connect from anywhere in the world where the IP address is unknown. I have been wanting to have this done two years now and have been grossly disappointed with Mikrotik support. During that time, I just gave up as it amounted to a waste of time. I have been attempting this before the changes in policy (policy strict, policy override) that promised to make things easier. Every week, it's safe to say some one has had issue implementing VPN...if the instruction are clear, despite the technical subject, we wouldn't see so much frustration from Mikrotik buyers.
Re: Manual Improvements
Posted: Tue Jun 02, 2015 10:40 am
You can do this in quicket with one click:What I need is a clear, no nonsense instruction on setting up a VPN for folks who have an office at home and that wants to connect from anywhere in the world where the IP address is unknown. I have been wanting to have this done two years now and have been grossly disappointed with Mikrotik support. During that time, I just gave up as it amounted to a waste of time. I have been attempting this before the changes in policy (policy strict, policy override) that promised to make things easier. Every week, it's safe to say some one has had issue implementing VPN...if the instruction are clear, despite the technical subject, we wouldn't see so much frustration from Mikrotik buyers.
Re: Manual Improvements
Posted: Tue Jun 02, 2015 3:02 pm
Hello I followed this You tube guide -What I need is a clear, no nonsense instruction on setting up a VPN for folks who have an office at home and that wants to connect from anywhere in the world where the IP address is unknown.
https://www.youtube.com/watch?v=cgfXs6ZJrgs
Additions and Blog on my experience posted on this Mikrotik forum post -
http://forum.mikrotik.com/viewtopic.php?f=14&t=97223
This was done on a RB450 with RouterOS v6.27
Re: Manual Improvements
Posted: Wed Jun 03, 2015 5:45 pm
Hello I followed this You tube guide -What I need is a clear, no nonsense instruction on setting up a VPN for folks who have an office at home and that wants to connect from anywhere in the world where the IP address is unknown.
https://www.youtube.com/watch?v=cgfXs6ZJrgs
Additions and Blog on my experience posted on this Mikrotik forum post -
http://forum.mikrotik.com/viewtopic.php?f=14&t=97223
This was done on a RB450 with RouterOS v6.27
Thank you Jebz...I finally got it working. I read your experience, and it seemed to mirrored mine. I also realize that Mikrotik actually did some improvement by tying the L2TP to IPsec in the L2TP server. My problem had always seemed to be around policy.
Re: Manual Improvements
Posted: Wed Jun 03, 2015 6:03 pm
Thank you Normis for responding. I saw that...wasn't sure how to apply that as I wanted to use my server (Apple) and my domain. Last year, I saw the IPsec box in the L2TP server and had asked the personnel who handled my support ticket...it seems that the personnel just avoided addressing my question just pointing things that made it more complex without resolution. Checking that box resolved my problem and I now have VPN working.You can do this in quicket with one click:What I need is a clear, no nonsense instruction on setting up a VPN for folks who have an office at home and that wants to connect from anywhere in the world where the IP address is unknown. I have been wanting to have this done two years now and have been grossly disappointed with Mikrotik support. During that time, I just gave up as it amounted to a waste of time. I have been attempting this before the changes in policy (policy strict, policy override) that promised to make things easier. Every week, it's safe to say some one has had issue implementing VPN...if the instruction are clear, despite the technical subject, we wouldn't see so much frustration from Mikrotik buyers.
Winbox uses graphic user interface and so should the manual depict the how to instructions. Please make the final release of Winbox 3 for Mac available through the app store.
Re: Manual Improvements
Posted: Wed Jun 03, 2015 8:51 pm
+1 on this.Convert it back into a WIKI so people can add/fix things.
A lot of the pages need better explanations, and more examples.
Leverage the vast experience of your user base to help keep your docs fresh.
Also:
1. Lots of examples.
2. A series of simple how-to's on setting up various configurations of the Switch chip.
Fortigate has a "cookbook" of common tasks that most sysadmins need to do with their products. It would be great if you could create a similar cookbook.
Re: Manual Improvements
Posted: Thu Jun 04, 2015 10:37 pm
As I said earlier, Mikrotik should provide accurate and up to date manual with best practices... and so on, but... if you have not succeed to set it up in two years with all available examples published on various places, I do not see how manual can help you (no offense).What I need is a clear, no nonsense instruction on setting up a VPN for folks who have an office at home and that wants to connect from anywhere in the world where the IP address is unknown. I have been wanting to have this done two years now and have been grossly disappointed with Mikrotik support. During that time, I just gave up as it amounted to a waste of time. I have been attempting this before the changes in policy (policy strict, policy override) that promised to make things easier. Every week, it's safe to say some one has had issue implementing VPN...if the instruction are clear, despite the technical subject, we wouldn't see so much frustration from Mikrotik buyers.
Re: Manual Improvements
Posted: Fri Jun 05, 2015 3:42 am
No offense took, and it doesn't mean I was at it every day of the 730days. In fact, I had all the settings up, then gave up after policy issues for 11/2 years and all I needed to do, as it turned out, was to checked the IPsec box in the L2TP server...hooray!As I said earlier, Mikrotik should provide accurate and up to date manual with best practices... and so on, but... if you have not succeed to set it up in two years with all available examples published on various places, I do not see how manual can help you (no offense).What I need is a clear, no nonsense instruction on setting up a VPN for folks who have an office at home and that wants to connect from anywhere in the world where the IP address is unknown. I have been wanting to have this done two years now and have been grossly disappointed with Mikrotik support. During that time, I just gave up as it amounted to a waste of time. I have been attempting this before the changes in policy (policy strict, policy override) that promised to make things easier. Every week, it's safe to say some one has had issue implementing VPN...if the instruction are clear, despite the technical subject, we wouldn't see so much frustration from Mikrotik buyers.
Re: Manual Improvements
Posted: Fri Jun 05, 2015 1:17 pm
When it was editable by anyone, it only brought mistakes and problems. Currently we give edit rights to select people who have shown interest (trusted trainers with good knowledge).
Hi Normis,
With respect to those who are an expert of a subject, the knowledge transfer of that subject (to other people) requires a different skillset altogether, i.e. the ability to explain in such a way that others can easily comprehend. I have a background in corporate training so I know a thing or two about knowledge transfer.
After all, everyone can read a book on how-to, right?
Talking about books. I have two books on RouterOS. One contains a lot of ....words but few examples. It feels like the author wants to impress you with the number of words in it. I won't mention its name.
The other 'RouterOS by example' by Stephen R.W. Discher, which I highly recommend.
In brief, if MikroTik really wants to improve its knowledge transfer as a way to effectively help its customers, I'd suggest employ a professional over manual publications. While having an MTCNA does not equip me with every bit of knowledge of RouterOS, I find it really hard at times to understand what is presented in manual. Frustrations and inefficient use of one's time in trying to ... understand what is written would be an understatement. I'd say.
Please don't misunderstand my feedback. I met you once in Queensland, Australia. And I think you're a nice guy.
Regards,
Peter
Re: Manual Improvements
Posted: Fri Jun 05, 2015 3:28 pm
@Mteeker
+1000000000!!!!
I agree with you. One more thing, it would be nice to have a some kind of learning guides through MTCNA, MTCRE etc....but its not the topic here.
+1000000000!!!!
I agree with you. One more thing, it would be nice to have a some kind of learning guides through MTCNA, MTCRE etc....but its not the topic here.
Re: Manual Improvements
Posted: Fri Jun 05, 2015 3:36 pm
We did try to hire a professional to write our manual. It ended in disaster, because indepth RouterOS knowledge is required to do this. It is a huge project, and this professional needs to work side-by-side with several RouterOS experts, who give suggestions and comment his work in real time. When we will have resources to do this, we will.
Re: Manual Improvements
Posted: Fri Jun 05, 2015 6:50 pm
Maybe you could allow inputs from users, but with a review? Like maybe make the manual into a set of Markdown/ReStructuredText pages into GitHub/Bitbucket/whatever, and accept pull requests? This would allow you to review them, and only merge "correct" ones only.
Re: Manual Improvements
Posted: Fri Jun 05, 2015 11:13 pm
I think it is appreciated by all, and thanks to MikroTik for trying.We did try to hire a professional to write our manual.
I would not suggest a professional communicator WITHOUT a basic knowledge of networking fundamentals (i.e. technical writer). Perhaps, concentrate on topics of basic to medium level of technical complexity first.It ended in disaster, because indepth RouterOS knowledge is required to do this.
I understand. But I'd say no more challenging than the Chinese Great Wall nor the Egyptian Pyramids.It is a huge project, and this professional needs to work side-by-side with several RouterOS experts, who give suggestions and comment his work in real time.
At least get it read by one or two intended recipients and incorporate their feedback before releasing new materials. This trick helps me ensure materials and instructions are written for the trainees at their levels.
Keep up the good work.
Re: Manual Improvements
Posted: Tue Jun 09, 2015 1:07 am
So, I am still having policy issue with my VPN and reading this doesn't seem to be CLEAR: http://wiki.mikrotik.com/wiki/Manual:IP ... icy...talk about frustrating..."Mode Conf, policy group and policy templates will allow us to overcome these problems." However, there is no clear cut example...things just seem mixed up. I need to see separate example...I using Policy templates while the IPsec checked box in L2TP server generates a peer with dynamic policy...no win situation.
Re: Manual Improvements
Posted: Tue Jun 09, 2015 1:22 am
We did try to hire a professional to write our manual. It ended in disaster, because indepth RouterOS knowledge is required to do this. It is a huge project, and this professional needs to work side-by-side with several RouterOS experts, who give suggestions and comment his work in real time. When we will have resources to do this, we will.
i think forum its plenty of good examples to include on manual
Re: Manual Improvements
Posted: Tue Jun 09, 2015 8:27 am
If you consider using OpenVPN using MikroTik as server instead, I can offer you a detailed step-by-step instruction.So, I am still having policy issue with my VPN .....
Note that Microsoft, a member of the consortium behind the development of PPTP, specifically recommends against its use. As for L2TP/IPSec, it's also heavily compromised as per Edward_S.
But it's your choice.
Re: Manual Improvements
Posted: Tue Jun 09, 2015 12:23 pm
Yes, there is clear example of all three features:So, I am still having policy issue with my VPN and reading this doesn't seem to be CLEAR: http://wiki.mikrotik.com/wiki/Manual:IP ... icy...talk about frustrating..."Mode Conf, policy group and policy templates will allow us to overcome these problems." However, there is no clear cut example...things just seem mixed up. I need to see separate example...I using Policy templates while the IPsec checked box in L2TP server generates a peer with dynamic policy...no win situation.
http://wiki.mikrotik.com/wiki/Manual:IP ... _Mode_Conf
It shows how to use templates how to use policy groups and also how to use modeconf.
Re: Manual Improvements
Posted: Wed Jun 10, 2015 6:43 pm
I agree it would be nice if e.g. there was a separate installable package (that you can install when you have space) that will add a help button to the WebFig pages, which then point to the section of the manual for that feature. It could be a read-only version of the WiKi served by the webserver on the routerboard.I realize this request is possibly crazy, but is there a way to incorporate the manual into the actual router hardware/firmware? So you have the ability to press a help button in web/win/box and see a page dedicated to what you are doing?
This kind of feature is appreciated by many users and may even be not much work to add.
(after all, the URL of the WebFig page already has a reference similar to what is used in the Wiki)
Re: Manual Improvements
Posted: Wed Jun 10, 2015 10:32 pm
Thank you MTeeker for your offer...I will consider your offer if I still continue to have issue (I get the VPN to work when I am home; it doesn't when I am on the road).If you consider using OpenVPN using MikroTik as server instead, I can offer you a detailed step-by-step instruction.So, I am still having policy issue with my VPN .....
Note that Microsoft, a member of the consortium behind the development of PPTP, specifically recommends against its use. As for L2TP/IPSec, it's also heavily compromised as per Edward_S.
But it's your choice.
Re: Manual Improvements
Posted: Wed Jun 10, 2015 10:41 pm
Thank you MrZ for responding...what I mean is for listing all requirements for Mode_Conf first, then, all requirements for policy group second, then, all requirements for policy templates. That way, one can clearly follow her picked choice.Yes, there is clear example of all three features:So, I am still having policy issue with my VPN and reading this doesn't seem to be CLEAR: http://wiki.mikrotik.com/wiki/Manual:IP ... icy...talk about frustrating..."Mode Conf, policy group and policy templates will allow us to overcome these problems." However, there is no clear cut example...things just seem mixed up. I need to see separate example...I using Policy templates while the IPsec checked box in L2TP server generates a peer with dynamic policy...no win situation.
http://wiki.mikrotik.com/wiki/Manual:IP ... _Mode_Conf
It shows how to use templates how to use policy groups and also how to use modeconf.
Re: Manual Improvements
Posted: Thu Jun 11, 2015 4:04 am
Not sure if it applies in your specific VPN case. However if you can connect via VPN at home but not on the road, it seems your firewall needs to allow a range of specific IPs from remote location to be able to connect via VPN.
...(I get the VPN to work when I am home; it doesn't when I am on the road).
To avoid IP clash, you need to use a separate network, say 172.16.1.1/x for remote connection, different from say 192.168.1.1/x for internal ones.
( I think it is getting away from main topic raised by mrz. Sorry.)
Re: Manual Improvements
Posted: Thu Jun 11, 2015 9:31 am
@Nollitik: Maybe you could open new topic in general section, MTeeker is right it is going in offtopic.
Re: Manual Improvements
Posted: Sat Jun 13, 2015 7:47 am
First of all, I would like to see that "RouterOS Manual". Then we can talk about what should be improved.What would you like to see more or what changes in the RouterOS Manual.
Detailed criticism is welcome.
With all do respect, wiki is *NOT* manual. It is just a bunch of web-pages, terribly outdated, badly structured, inconsistent, from different authors, with different styles of writing. RouterOS is great, but from documentation point of view, RouterOS is by far the worst software I have been working with...
Imagine new RouterOS-user with no older buddy to help him. Having no other choice he goes to wiki, checks "First time startup" just to find "Applies to RouterOS: 2.9, v3, v4". Nice welcome-message, but what about v5/v6? It is 2015, and the page was not modified for a few years. You call that "manual"?
The biggest problem of RouterOS Manual is: There is none at all!
Re: Manual Improvements
Posted: Sat Jun 13, 2015 10:07 am
RouterOS is great OS but have not enough examples. there is need more configuration examples. So need documentation in more languages.
Re: Manual Improvements
Posted: Sat Jun 13, 2015 7:55 pm
MrZ...I get the feeling that staff is asking for improvement insight, then being defensive when insights received. In the same page you sited above, the grammar so poorly wrote...no commas to make things easily understood and which leads to confusion.Yes, there is clear example of all three features:So, I am still having policy issue with my VPN and reading this doesn't seem to be CLEAR: http://wiki.mikrotik.com/wiki/Manual:IP ... icy...talk about frustrating..."Mode Conf, policy group and policy templates will allow us to overcome these problems." However, there is no clear cut example...things just seem mixed up. I need to see separate example...I using Policy templates while the IPsec checked box in L2TP server generates a peer with dynamic policy...no win situation.
http://wiki.mikrotik.com/wiki/Manual:IP ... _Mode_Conf
It shows how to use templates how to use policy groups and also how to use modeconf.
Apple iOS (iPhone/iPad) Client
For iOS devices to be able to connect, proposal changes are needed:
does not work with 3des encryption algorithm, aes-128/256 works
auth algorithm must be sha1
PFS group must be none
lifetime must be 8 hours
Example of valid proposal configuration for iOS devices:
/ip ipsec proposal
set default enc-algorithms=aes-128-cbc,aes-256-cbc lifetime=8h \
pfs-group=none
However, when one selects IPsec in the L2TP server, one gets this: Note that aes-192 selected despite not applying to iOS devices...so the router wastes energy keeping going through the same process...even checking md5 algorithm despite not selected.
Re: Manual Improvements
Posted: Mon Jun 15, 2015 1:51 pm
@Nollitik please open new topic with your problem. It has nothing to do with the manual.
You are looking at the wrong settings: "/ip ipsec peer" config and "/ip ipsec proposal" config are completely different ipsec phases.
You are looking at the wrong settings: "/ip ipsec peer" config and "/ip ipsec proposal" config are completely different ipsec phases.
post approval
Posted: Mon Jun 15, 2015 2:28 pm
hi,
I've created a new forum post in wireless section on june 11th. It looks like it never got approved by a moderator. Can you please check it out.
Thany You,
mitkos
I've created a new forum post in wireless section on june 11th. It looks like it never got approved by a moderator. Can you please check it out.
Thany You,
mitkos
Re: Manual Improvements
Posted: Tue Jun 16, 2015 4:18 pm
like, for example, merging the pages of Mangle, Filter and Nat in IP Firewall: does it have any sense to have three copies of firewall rules properties? I'm always getting lost in those sectionsIf this teaches us anything, is that we need to improve search and manual structure for easy navigation
Re: Manual Improvements
Posted: Sun Jun 21, 2015 6:40 am
I would like to see some improvements on the CRS Documentations. Examples are great and can definitely help place scenarios with context for some cases.
I am starting to develop a serious issue with the methodology in which certain properties are explained with one and two liners. Especially where it should be implied that the method in which Mikrotik is making such properties available differs largely from methodologies of other common vendors e.g. Cisco, Juniper, etc...
I have created separate topics to address my specific questions, but here are some examples.
Example 1:
Example 2:
Example 3:
I am starting to develop a serious issue with the methodology in which certain properties are explained with one and two liners. Especially where it should be implied that the method in which Mikrotik is making such properties available differs largely from methodologies of other common vendors e.g. Cisco, Juniper, etc...
I have created separate topics to address my specific questions, but here are some examples.
Example 1:
Where are the details? This seems like a very important consideration. "It limits part of the VLAN functionality..." How? Examples? Scenarios?Note: Multiple master-port configuration is designed as fast and simple port isolation solution, but it limits part of VLAN functionality supported by CRS switch-chip. For advanced configurations use one master-port within CRS switch chip for all ports, configure VLANs and isolate port groups with port isolation profile configuration.
Example 2:
Not clear enough. This seems like another important consideration. From what I understand, the default learning mode on the CRS is set to SVL and not IVL. Does this 2-liner description imply that on such a default implementation this setting has not impact?vlan-type (edge-port | network-port; Default: network-port) Port VLAN type specifies whether VLAN id is used in UFDB learning. Network port learns VLAN id in UFDB, edge port does not - VLAN 0. It can be observed only in IVL learning mode.
Example 3:
This seems like another extremely important security consideration. The default is "yes" - whether to forward VLANs Where? In the Cisco world unknown VLANs would still be forwarded through Trunk Ports in some cases. In the Mikrotik world and with this one liner, I have insufficient information to understand the behavior of forwarded vlans which are not members of the VLAN table.forward-unknown-vlan (yes | no; Default: yes) Whether to allow forwarding VLANs which are not members of VLAN table.
Re: Manual Improvements
Posted: Sun Jun 21, 2015 6:50 am
I would also like to obtain some clarification on this particular concern. Mikrotik has evolved over the years and there seems to be great potential with the product lines being released.First of all, I would like to see that "RouterOS Manual". Then we can talk about what should be improved.What would you like to see more or what changes in the RouterOS Manual.
Detailed criticism is welcome.
With all do respect, wiki is *NOT* manual. It is just a bunch of web-pages, terribly outdated, badly structured, inconsistent, from different authors, with different styles of writing. RouterOS is great, but from documentation point of view, RouterOS is by far the worst software I have been working with...
Imagine new RouterOS-user with no older buddy to help him. Having no other choice he goes to wiki, checks "First time startup" just to find "Applies to RouterOS: 2.9, v3, v4". Nice welcome-message, but what about v5/v6? It is 2015, and the page was not modified for a few years. You call that "manual"?
The biggest problem of RouterOS Manual is: There is none at all!
The current business strategy of pushing out two mainstream categorical products (Routers and now Switches) should also come with the responsibility of releasing proper documentation. Especially when considering the level of intricate control given to end-users for those products.
I can understand the initial strategy of using a Wiki -- but with all due respect, Mikrotik is not what it was 5 Years ago when it was mainly pushing Wireless products. This has been well demonstrated in the recent product development cycle and push. Competing with the 'big boys' also should come with investing the appropriate capital in developing concise technical documentation.
Re: Manual Improvements
Posted: Tue Jun 23, 2015 1:00 pm
I would appreciate more written about VoIP optimal configuration (priority) with examples.
Otherwise I must thank you for pretty good documentation regarding fast changes of RouterOS. Maybe at the bottom of each Wiki page to be written to which RouterBoard is concern and which RouterOS versions since configuration can varies from one to another.
Otherwise I must thank you for pretty good documentation regarding fast changes of RouterOS. Maybe at the bottom of each Wiki page to be written to which RouterBoard is concern and which RouterOS versions since configuration can varies from one to another.
Re: Manual Improvements
Posted: Mon Jun 29, 2015 2:51 am
It's pretty light. CRS, more on queue management and most of all, real world examples.
Re: Manual Improvements
Posted: Tue Jun 30, 2015 5:45 am
It would be nice to be open to edit for more users in different languages for each article.
Re: Manual Improvements
Posted: Tue Jun 30, 2015 3:53 pm
I would really appreciate less bugs, and/or some tagging of commands with the version numbers of RouterOS where these commands are supposed to work. One example off the top of my head, with 6.29, 6.29.1 and 6.30rc23:
[MikroTik] > /routing ospf monitor
bad command name monitor (line1 column 15)
found here: http://wiki.mikrotik.com/wiki/Manual:Ro ... #Interface
[MikroTik] > /routing ospf monitor
bad command name monitor (line1 column 15)
found here: http://wiki.mikrotik.com/wiki/Manual:Ro ... #Interface
Re: Manual Improvements
Posted: Tue Jun 30, 2015 3:56 pm
For multi instance OSPF you have to use following command: /routing ospf instance print status
Re: Manual Improvements
Posted: Tue Jun 30, 2015 4:29 pm
Hi,
I tried to post one message to this thread, but don't know where it went. So here goes again:
I would like to see less bugs in the manual, and/or a good description which version of the software a command might apply to. Eg.
At this point it is not clear whether this feature should exist, but did not make it into the image, or did exist at some point, but was deprecated, and if so, in which version and/or which other command I should be using instead to achieve a similar effect.
But I, as a newbie, also frequently run into problems trying to set up stuff, and then find error messages like these:
I have no idea what "*1A" might mean. A comprehensive list of error messages and their supposed meanings would be very helpful.
I tried to post one message to this thread, but don't know where it went. So here goes again:
I would like to see less bugs in the manual, and/or a good description which version of the software a command might apply to. Eg.
Code: Select all
> /routing ospf monitor
bad command name monitor (line 1 column 15)But I, as a newbie, also frequently run into problems trying to set up stuff, and then find error messages like these:
Code: Select all
> /ip add pr
Flags: X - disabled, I - invalid, D - dynamic
# ADDRESS NETWORK INTERFACE
...
16 I 10.200.2.26/29 10.200.2.24 *1ARe: Manual Improvements
Posted: Wed Jul 08, 2015 1:53 pm
Hello MT,
Just quick intro. I'm working as tech support in one bigger ISP in my country so i will try to forward issues of customers i have helped to and what simple scenarios would be really helpful:
*xDSL modem in bridge mode and Mikrotik dialing PPPoE ( NAT) config
*Fiber with WAN/30 and public block with /29 address plans config
*Basic firewall setup, described in "simple language" ( someone mentioned you need a basic network knowledge to understand Wiki, but you guys can make an exception for this simple setups)
*Simple PPTP server setup
For 2 first topics would be nice to make picture of wiring, then prerequisites ( modem config, user/pass etc etc) step by step config.
Btw, i'm running free tech support community website in Serbian language, so that's one more channel i'm listening what people are struggling with.
If i can contribute to this, please let me know, but i do not consider myself expert by any means ( i think you have much more competent guys here).
Regards!
Just quick intro. I'm working as tech support in one bigger ISP in my country so i will try to forward issues of customers i have helped to and what simple scenarios would be really helpful:
*xDSL modem in bridge mode and Mikrotik dialing PPPoE ( NAT) config
*Fiber with WAN/30 and public block with /29 address plans config
*Basic firewall setup, described in "simple language" ( someone mentioned you need a basic network knowledge to understand Wiki, but you guys can make an exception for this simple setups)
*Simple PPTP server setup
For 2 first topics would be nice to make picture of wiring, then prerequisites ( modem config, user/pass etc etc) step by step config.
Btw, i'm running free tech support community website in Serbian language, so that's one more channel i'm listening what people are struggling with.
If i can contribute to this, please let me know, but i do not consider myself expert by any means ( i think you have much more competent guys here).
Regards!
Re: Manual Improvements
Posted: Thu Jul 09, 2015 8:37 pm
When you download this: http://download2.mikrotik.com/routeros/ ... e-6.30.zip
There's 20 packages that don't match this list: http://wiki.mikrotik.com/wiki/Manual:System/Packages
Trying to determine what the difference between all the wireless____ ones are.
There's 20 packages that don't match this list: http://wiki.mikrotik.com/wiki/Manual:System/Packages
Trying to determine what the difference between all the wireless____ ones are.
Re: Manual Improvements
Posted: Fri Jul 10, 2015 2:18 pm
Any news about this?
Re: Manual Improvements
Posted: Fri Jul 10, 2015 3:00 pm
This will probably need RouterOS work before you can fix the manual but it would sure be nice to have this:
http://wiki.mikrotik.com/wiki/Manual:Quickset
First need a consistent list of what's in that dropdown for all devices is first step (different devices have different sets of dropdowns).
Then define what the intention of each item is: CAP, CPE, Home AP, PTP Bridge, WISP AP etc.
http://wiki.mikrotik.com/wiki/Manual:Quickset
First need a consistent list of what's in that dropdown for all devices is first step (different devices have different sets of dropdowns).
Then define what the intention of each item is: CAP, CPE, Home AP, PTP Bridge, WISP AP etc.
Re: Manual Improvements
Posted: Fri Jul 10, 2015 3:46 pm
I understand the volume of this work and i can appreciate all the effort Mtik staff is putting to get this thing done. I offer myself to help in any way possible.
Re: Manual Improvements
Posted: Sat Jul 11, 2015 2:48 pm
Let's have script examples that actually work, example:
from manual or wiki
{
:local address1 [/ip address get [find interface="ether1"] address]
:put $address1
}
result:
invalid internal item number
This type of thing adds hours if not days to what could be a nice learning flow
from manual or wiki
{
:local address1 [/ip address get [find interface="ether1"] address]
:put $address1
}
result:
invalid internal item number
This type of thing adds hours if not days to what could be a nice learning flow
Re: Manual Improvements
Posted: Mon Jul 13, 2015 2:41 pm
Maybe before blindly copying scripts make sure that you have interface named "ether1" and that this "ether1" actually has an address to get.
Re: Manual Improvements
Posted: Mon Jul 13, 2015 3:48 pm
This is not the issue.Maybe before blindly copying scripts make sure that you have interface named "ether1" and that this "ether1" actually has an address to get.
ether1 exists on test unit with an address. your assumption is erroneous''
Code: Select all
[Michael@Goat-on-a-Rope] > ip address p
Flags: X - disabled, I - invalid, D - dynamic
# ADDRESS NETWORK INTERFACE
0 192.168.5.1/24 192.168.5.0 ether2
1 X 192.168.0.1/24 192.168.0.0 ether7
2 10.234.123.2/30 10.234.123.0 ether1
3 10.234.123.6/30 10.234.123.4 ether9-WAN MESA1
4 D 10.0.0.100/20 10.0.0.0 ether9-WAN MESA1
5 D 192.168.77.253/24 192.168.77.0 ether1
[Michael@Goat-on-a-Rope] > interface p
Flags: D - dynamic, X - disabled, R - running, S - slave
# NAME TYPE ACTUAL-MTU L2MTU MAX-L2MTU MAC-ADDRESS
0 R ;;; ether1-WAN_WT
ether1 ether 1500 1520 1520 D4:CA:6D:59:FD:97
1 RS ether2 ether 1500 1520 1520 D4:CA:6D:59:FD:98
2 S ether3 ether 1500 1520 1520 D4:CA:6D:59:FD:99
3 RS ether4 ether 1500 1520 1520 D4:CA:6D:59:FD:9A
4 RS ether5 ether 1500 1520 1520 D4:CA:6D:59:FD:9B
5 ether6 ether 1500 1520 1520 D4:CA:6D:59:FD:9C
6 ether7 ether 1500 1520 1520 D4:CA:6D:59:FD:9D
7 X ether8-WAN3 GBAP ether 1500 1520 1520 D4:CA:6D:59:FD:9E
8 R ether9-WAN MESA1 ether 1500 1520 1520 D4:CA:6D:59:FD:9F
9 RS wlan1 wlan 1500 1600 00:0C:42:51:B2:34
10 X *********************************
11 R bridge1 bridge 1500 1520 D4:CA:6D:59:FD:98
[Michael@Goat-on-a-Rope] > {
{... :local address1 [/ip address get [find interface="ether1"] address]
{... :put $address1
{... }
invalid internal item number
[Michael@Goat-on-a-Rope] >
Re: Manual Improvements
Posted: Mon Jul 13, 2015 3:53 pm
so what is the issue?This is not the issue.
looks like you have many addresses on ether1, not a single one. check with
Code: Select all
:put [/ip address find interface="ether1"]Re: Manual Improvements
Posted: Mon Jul 13, 2015 4:16 pm
Now THAT was helpful, thanks! It seems that on a interface with more than one address it tanks:marria wrote:
This is not the issue.
so what is the issue?
looks like you have many addresses on ether1, not a single one. check with
Code: Select all
:put [/ip address find interface="ether1"]
Note for manual - "this example cannot report multiple addresses on on interface, it will report none and give error"
furthermore the variation:
Code: Select all
{
:local address1 [/ip address get [/interface ethernet find name=ether1] address]
:put $address1
}
Code: Select all
[Michael@Goat-on-a-Rope] > {
{... :local address1 [/ip address get [find interface="ether1"] address]
{... :put $address1
{... }
invalid internal item number
[Michael@Goat-on-a-Rope] > :put [/ip address find interface="ether1"]
*18;*1b
[Michael@Goat-on-a-Rope] >Code: Select all
[Michael@RCWT1] > interface p
Flags: D - dynamic, X - disabled, R - running, S - slave
# NAME TYPE ACTUAL-MTU L2MTU MAX-L2MTU MAC-ADDRESS
0 R ;;; 10.4.0.0
ether1 ether 1500 1520 1520 00:0C:42:6D:E0:00
1 R ether2-OUT ether 1500 1520 1520 00:0C:42:6D:E0:01
2 R ether3-NBM5_25-IN North ether 1500 1520 1520 00:0C:42:6D:E0:02
3 R wlan1 wlan 1500 1600 00:0C:42:2B:A1:A6
[Michael@RCWT1] > ip address p
Flags: X - disabled, I - invalid, D - dynamic
# ADDRESS NETWORK INTERFACE
0 10.4.0.1/20 10.4.0.0 ether1
1 ;;; North Clients
192.168.102.1/24 192.168.102.0 ether3-NBM5_25-IN North
2 10.2.2.1/24 10.2.2.0 wlan1
3 D 10.249.249.2/30 10.249.249.0 ether2-OUT
[Michael@RCWT1] > {
{... :local address1 [/ip address get [find interface="ether1"] address]
{... :put $address1
{... }
10.4.0.1/20
[Michael@RCWT1] > :put [/ip address find interface="ether1"]
*15
[Michael@RCWT1] >
Re: Manual Improvements
Posted: Mon Jul 13, 2015 4:56 pm
If there are multiple matches then list/array is returned.
Quote from the manual:
http://wiki.mikrotik.com/wiki/Manual:Sc ... ith_Arrays
Quote from the manual:
See here what to do with arrays:find - Returns list of internal numbers for items that are matched by given expression.
http://wiki.mikrotik.com/wiki/Manual:Sc ... ith_Arrays
Re: Manual Improvements
Posted: Mon Jul 13, 2015 7:01 pm
that's completely incorrect command. first, you get ID of 'ether1' interface and then you try to get an address having the same ID as that interface. it's called 'unpredictable behaviour'furthermore the variation:is likely as not to give an address from a completely different interface under that situation.Code: Select all{ :local address1 [/ip address get [/interface ethernet find name=ether1] address] :put $address1 }
Re: Manual Improvements
Posted: Mon Jul 13, 2015 7:54 pm
All right. Point well made, as I wouldn't know - having pulled these from the wiki.that's completely incorrect command. first, you get ID of 'ether1' interface and then you try to get an address having the same ID as that interface. it's called 'unpredictable behaviour'furthermore the variation:is likely as not to give an address from a completely different interface under that situation.Code: Select all{ :local address1 [/ip address get [/interface ethernet find name=ether1] address] :put $address1 }
This reinforces the need for a good manual, for those of us trying to learn - very confusing!
I suppose this is wandering off topic, but if you can point me to some reliable scripting reference, I'd appreciate it!
Re: Manual Improvements
Posted: Mon Jul 13, 2015 7:56 pm
is this incorrect command from the manual?.. a link?
Re: Manual Improvements
Posted: Mon Jul 13, 2015 11:51 pm
Probably from the wiki. I'll try to find it in my history - likely less than a week back.is this incorrect command from the manual?.. a link?
Update: and crow for dinner.... no link, bad interpretations
To clarify, the original Line I questioned was from - Check if IP on interface have changed
http://wiki.mikrotik.com/wiki/Manual:Scripting-examples
it appeared just the example I needed but failed because of not knowing about the single address issue.
My mistake compounded after digging around for what would work - I found a link from MRZ :
http://forum.mikrotik.com/viewtopic.php ... ta#p265825
with
also this thread:You can't use numbers of the items to get data. Find should be used instead.
For example
[/interface wireless registration-table get [find name=wlan1] rx-ccq]
http://forum.mikrotik.com/viewtopic.php?t=35136
which had a similar appearing example:
Code: Select all
:put [/interface ethernet get [/interface ethernet find name="ether1"] mtu]Code: Select all
{
:local address1 [/ip address get [/interface ethernet find name=ether1] address]
:put $address1
}
It was a long road to finding out about the affect of mutiple addresses on the interface tripping me up all along.
As the original code DOES work on interfaces with single IP addresses that the manual has the right to assume, I'll eat crow. I would, however, point that out in the manual.
Re: Manual Improvements
Posted: Fri Aug 28, 2015 5:59 pm
There are quite a lot of things that could be clarified or updated in the wiki/manual. It's hard to list just from the top of my head. I would be much easier to insert comments or review request right on the spot, on the very page we feel something is missing, unclear, or obsolete.What would you like to see more or what changes in the RouterOS Manual.
Detailed criticism is welcome.
That's my first suggestion: allow commenting on each page of the wiki. That would be much more efficient than trying to remember what point was unclear or missing some few weeks or months ago...
Without doubts some would try to ask for support in the wiki comments instead of the forums, so it would be wise to state and underline that no anwsers will be provided in the comments, just inputs for improving the documentation will be taken into account...
Also, as it is a wiki, it could be very efficient to allow some kind of editing, probably with some moderator to review and commit proposed changes (create/update/delete).
In other words, make it a real wiki, where all can interact !
my 2 cents.
Fabrice
Re: Manual Improvements
Posted: Tue Sep 22, 2015 7:01 am
There is almost nothing about Policy Routing and _nothing_ about Route Rules in manual. Please add some information and examples about it.
Re: Manual Improvements
Posted: Tue Oct 06, 2015 5:33 pm
We need a French version of Manual because there are some technical section that can't be easy for us to understand.
Posted: Tue Oct 06, 2015 7:42 pm
Sure. Someone should be so kind and translate the manual into all languages of the world (ironic) . Just French is not enough and there are much more needed languages than French (not ironic) .
Re: Manual Improvements
Posted: Wed Oct 07, 2015 10:36 pm
The manual made it quite difficult to figure some details out for me. These are some things that I want to point out particularily:
* IPv6:
The basic setup was actually reasonable well described in examples, but if you get dynamic prefixes from your ISP then there are parts that are not covered by the examples and you have do dig quite deep into the manual and find things out by yourself. It took me quite a while how I get the dynamic ipv6 pool from my ISP and setup prefix delegation for it. Also the router must pick its own address from the ipv6 pool and it takes too long to find the information on how this is supposed to work.
* Firewall in combination with ppp incoming/outgoing-filter option
I think there was just a sketchy example describing the feature that was not very helpful. But there was also some bad luck involved with some firmware bugs and the old firewall print command not showing dynamic rules by default.
* IPSec
There can never be enough documentation on this one, right?
Basic setup is fine but once you dig into policy groups / templates topics it gets hard to find good information.
Examples are nice when you have to get something fairly standard quickly done. There command reference is alright, although there could be some better descriptions for the parameters here and there. What I was often missing is documentation that describes the some mechanics that are implemented in the OS, like the dynamic ipv6 pools or firewall rules for the dynamic ppp interfaces. It just takes too long to find the little pieces of information from the command reference to understand how a particular feature works.
* IPv6:
The basic setup was actually reasonable well described in examples, but if you get dynamic prefixes from your ISP then there are parts that are not covered by the examples and you have do dig quite deep into the manual and find things out by yourself. It took me quite a while how I get the dynamic ipv6 pool from my ISP and setup prefix delegation for it. Also the router must pick its own address from the ipv6 pool and it takes too long to find the information on how this is supposed to work.
* Firewall in combination with ppp incoming/outgoing-filter option
I think there was just a sketchy example describing the feature that was not very helpful. But there was also some bad luck involved with some firmware bugs and the old firewall print command not showing dynamic rules by default.
* IPSec
There can never be enough documentation on this one, right?
Basic setup is fine but once you dig into policy groups / templates topics it gets hard to find good information.Examples are nice when you have to get something fairly standard quickly done. There command reference is alright, although there could be some better descriptions for the parameters here and there. What I was often missing is documentation that describes the some mechanics that are implemented in the OS, like the dynamic ipv6 pools or firewall rules for the dynamic ppp interfaces. It just takes too long to find the little pieces of information from the command reference to understand how a particular feature works.
Re: Manual Improvements
Posted: Fri Oct 30, 2015 10:05 am
I would like to see some improvement in the documentation for /certificate scep-server
A bit of explanation of what SCEP is, what the different roles are (CA, RA) or at least something about what all the configuration options mean would be great.
A bit of explanation of what SCEP is, what the different roles are (CA, RA) or at least something about what all the configuration options mean would be great.
MUM Videos at bottom page
Posted: Sun Nov 01, 2015 6:05 pm
MUM Videos are a valuable resource and many talks cover in a very instructive way. I suggest the effort of searching for MUM Videos and adding them to the bottom of each manual page as 'related videos'. So eventual gaps the text may leave might be covered in the video. Also most of the wiki pages lack of real world scenarios and example, which the MUM Videos are rich in that matter.