Search changelog entries
| Component | Change |
|---|---|
| app | fixed uptime-kuma and jupyter-notebook; |
| bgp | fixed stability issue when non-existent output select-chain was specified; |
| bridge | fixed missing dynamic "switch-cpu" VLAN entry in WiFi setup; |
| bridge | synchronize only local bridge MAC addresses for MLAG (introduced in v7.22); |
| console | rename "cpu-used-per-cpu" to "cpe-used-per-core" in "/system/resource/monitor"; |
| container | fixed losing container after reboot; |
| ethernet | fixed false excessive broadcast warning (introduced in v7.20); |
| firewall | improved system stability; |
| ipsec | fixed expired SA handling to prevent “no such item” errors during listing; |
| ipv6,ra | use received prefix when RA on-link flag is 0 (introduced in v7.22); |
| isis | improved stability with fragmented CSNP; |
| leds | fixed default LED configuration for CCR2004-1G-12S+2XS; |
| leds | fixed LED dark mode for RB5009; |
| lte | fixed missing automatic redial when cellular connectivity is lost for R11e-LTE; |
| ospf | improved stability on configuration change; |
| ovpn | fixed OVPN push routes; |
| poe-out | firmware update for 802.3at capable boards (the update will cause a brief power interruption to poe-out interfaces); |
| poe-out | fixed occasional detection issue when using auto-on mode; |
| ptp | allow manual domain configuration for 802.1AS profile; |
| ptp | set DSCP (EF) for the default profile when using IPv4; |
| route | improved service stability when removing routes; |
| routerboard | fixed applying settings via WinBox on devices with fixed CPU frequency; |
| system | added FCC Part 15 Compliance label to "System/Regulatory" menu; |
| system | improved stability for internal RouterOS service communication; |
| system | improved system stability; |
| system | included full certificate chain to Windows executables; |
| usb | fixed crash when using Ethernet adapter (introduced in v7.22); |
| vrrp | fixed packet drop in CHR (introduced in v7.22); |
| wifi | improved authentication stability for WiFi 7 access points; |
| wifi-mediatek | fixed communication issues on 802.11ax access points with Intel clients; |
| wifi-mediatek | fixed HE capabilities IE on 2GHz band; |
| wifi-qcom-be | fixed forwarding of 4-address data from station to station; |
| winbox | added option to configure built-in trust store for all services; |
| www | improved service stability when cancelling REST API sessions; |
| Component | Change |
|---|---|
| app | fixed birdnet-go, cryptpad, lorawan-stack, mikrodash (introduced in v7.23beta5); |
| ethernet | fixed false excessive broadcast warning (introduced in v7.20); |
| general | ipsec – fixed expired SA handling to prevent “no such item” errors during listing; |
| lte | fixed AT modem dialer command timeout (introduced in v7.23beta5); |
| lte | fixed operator setting for QMI modems; |
| poe-out | firmware update for 802.3at capable boards (the update will cause a brief power interruption to poe-out interfaces); |
| poe-out | fixed occasional detection issue when using auto-on mode; |
| route | revert to old routing rule priorities for containers (introduced in v7.22); |
| sniffer | fixed missing VLAN tag in the TZSP packets (additional fixes); |
| system | improved system stability; |
| wifi-mediatek | fixed stability issue getting regulatory information and during initialization; |
| wifi-qcom-be | fixed stability issue during initialization; |
| www | improved service stability when cancelling REST API sessions; |
| Component | Change |
|---|---|
| bgp | fixed stability issue when non-existent output select-chain was specified; |
| bgp-vpn | allow modifying scopes with routing filters; |
| bgp-vpn | fixed non-working import filter after reboot; |
| bgp-vpn | use target scope for imported route; |
| bridge | fixed missing dynamic "switch-cpu" VLAN entry in WiFi setup; |
| bridge | fixed performance regression in complex setups with vlan-filtering (introduced in v7.20); |
| console | removed the "reset" command from shared settings menus (IP/IPv6/Bridge/L3HW/Neighbor-Discovery/Connection-Tracking); |
| container | fixed issue where the container might not start after upgrading if root-dir was not set; |
| container | improved error message if a container fails to start; |
| defconf | fixed L009 configuration (introduced in v7.21); |
| ethernet | fixed false excessive broadcast warning (introduced in v7.20); |
| firewall | improved system stability; |
| ipsec | improved aes256-ctr stability on L009; |
| ipsec | removed modp8192 proposal on MIPS architectures; |
| ipv6,ra | use received prefix when RA on-link flag is 0; |
| isis | improved stability with fragmented CSNP; |
| l2tp | improved system stability on TILE architecture; |
| l3hw | fixed missing VLAN counters after reboot (introduced in v7.21); |
| l3hw | fixed stability issue (introduced in v7.21); |
| leds | fixed default LED configuration for CCR2004-1G-12S+2XS; |
| log | do not provide non-existent logging topics for configuration; |
| lte | fixed framed route support for the first APN; |
| lte | fixed missing automatic redial when cellular connectivity is lost for R11e-LTE; |
| lte | fixed user set MTU not applied to LTE interface; |
| lte | override the "auto" or 0 MTU in "interface" menu to 1500; |
| ospf | fixed typos in log messages; |
| ospf | improved stability on configuration change; |
| ovpn | fixed OVPN push routes; |
| poe-out | firmware update for CRS354-48P-4S+2Q+ (the update will cause a brief power interruption to poe-out interfaces); |
| poe-out | fixed rare PoE-Out firmware upgrade failure on CRS354-48P-4S+2Q+; |
| ptp | allow manual domain configuration for 802.1AS profile; |
| ptp | set DSCP (EF) for the default profile when using IPv4; |
| qos-hw | display queue0 limits for CPU port; |
| qos-hw | fixed "offline" tx-manager ability to queue at least one packet (introduced in v7.21); |
| qos-hw | prohibit setting CPU port with "offline" tx-manager; |
| route | added SLAAC route redistribution for IPv6 capable routing protocols; |
| route | do not set blackhole flag for synthetic routes; |
| route | improved service stability when removing routes; |
| routerboard | fixed applying settings via WinBox on devices with fixed CPU frequency; |
| routing-filter | added possibility to match SLAAC and bgp-mpls-vpn route types; |
| ssh | make login process asynchronous; |
| switch | fixed stability issue when changing bridge multicast-router property on CRS1xx/2xx (introduced in v7.19); |
| system | added FCC Part 15 Compliance label to "System/Regulatory" menu; |
| system | improved stability for internal RouterOS service communication; |
| system | improved system stability; |
| system | improved upgrade service stability when the server is unreachable; |
| system | included full certificate chain to Windows executables; |
| user | properly apply login delay (introduced in v7.20); |
| wifi-mediatek | fixed communication issues on 802.11ax access points with Intel clients; |
| wifi-mediatek | fixed HE capabilities IE on 2GHz band; |
| winbox | fixed "Remote AS" setting under the "Routing/BGP/Connections" menu; |
| winbox | fixed "Src/Dst Address Type" under the "IP/Firewall/NAT" menu; |
| winbox | fixed L3HW default value for VLAN interface (introduced in v7.21); |
| winbox | properly display multiple bands for multi-link interface clients under registration table; |
| winbox | rearrange filter wizard parameters in tabs; |
| www | improved service stability when cancelling REST API sessions; |
| Component | Change |
|---|---|
| app | check if certificate already exists before creating a new one; |
| app | fixed some apps not containing the full repository URL; |
| app | fixed store issue when adding a custom app; |
| bridge | synchronize only local bridge MAC addresses for MLAG (introduced in v7.22); |
| certificate | added option to configure built-in trust store for all services (additional fixes); |
| certificate | allow deleting ACME certificate that failed to generate; |
| certificate | improved ACME logging; |
| certificate | improved ACME status reporting; |
| certificate | set Let's Encrypt as default ACME directory; |
| container | check if root-dir is not used before adding a container; |
| container | check if root-dir does not exist before adding a container; |
| discovery | added "add-dns-entries" and "add-dns-entries-suffix" properties for creating local DNS entries (additional fixes); |
| discovery | added option to disable/enable LLDP MED (additional fixes); |
| firewall | improved system stability (additional fixes); |
| interface | show warning when same MAC address is used on more than one virtual interface (additional fixes); |
| ipsec | improved NAT encapsulation parameter forwarding; |
| isis | improved stability with fragmented CSNP; |
| leds | fixed default LED configuration for CCR2004-1G-12S+2XS; |
| leds | fixed LED dark mode for RB5009; |
| log | added "discover" topic and log events for discovered local DNS entries; |
| lte | delete CID profiles one by one instead of "delete all" for QMI modems, as command does not work for all modems; |
| ospf | allow adding interface configuration manually, bypassing interface-template (additional fixes); |
| ospf | improved stability on configuration change; |
| switch | improved FDB operations on QCA8337, Atheros8327 (additional fixes); |
| system | improved handling of HTTP/2 connection closure; |
| system | improved RouterOS package download over slow connection; |
| usb | fixed crash when using Ethernet adapter (introduced in v7.22); |
| user-manager | improved stability when removing user-profile while session updates counters; |
| vrrp | fixed packet drop in CHR (introduced in v7.22); |
| vxlan | improved system stability; |
| wifi-mediatek | fixed communication issues on 802.11ax access points with Intel clients; |
| zerotier | switch to 1.14.2 version, fixed multipath (introduced in v7.23beta2); |
| Component | Change |
|---|---|
| app | added lorawan-stack, mikrodash, trip apps; |
| app | added restart command; |
| app | updated uptime-kuma image; |
| bridge | fixed missing dynamic "switch-cpu" VLAN entry in WiFi setup; |
| certificate | added "ISRG Root X1" and "DigiCert Global Root G2" to SMIPS built-in root certificate authorities store; |
| console | added comment in "/ip/dhcp-server/option/sets" and "/ipv6/dhcp-server/option/sets" menus; |
| console | added path parameter to export; |
| console | export mentions custom defconf script presence in header (additional fixes); |
| console | fixed output when oversized completion present; |
| console | rename "cpu-used-per-cpu" to "cpe-used-per-core" in "/system/resource/monitor"; |
| console | show warning in print header when terminal is too narrow to show any columns; |
| console | treat non-existent command parameters as runtime errors; |
| container | allow setting memory-max global and per container (additional fixes); |
| dhcpv4-server | added "add-dns" and "add-dns-suffix" properties for creating local DNS entries; |
| discovery | added "add-dns-entries" and "dns-entry-suffix" properties for creating local DNS entries; |
| disk | improved device name tracking in "/system/resource/hardware" menu; |
| disk | use USB UASP interface for supported devices (additional fixes); |
| ethernet | improved system stability for RB3011, L009, NetMetal ax, hAP ax lite devices; |
| ethernet | improved system stability on devices with Alpine CPUs; |
| firewall | improved system stability; |
| health | hide health menu for RB951ui-2nD; |
| iot | improved LoRa Tx scheduling; |
| ip | fixed hanging connections for reverse-proxy; |
| ipv6,ra | improved service stability; |
| ipv6,ra | use received prefix when RA on-link flag is 0 (introduced in v7.22); |
| log | fixed crash when a rule references a non-existent action (introduced in v7.23beta2); |
| lte | improved system stability when modem configured in passthrough mode with VLANs for "Chateau 5G R16" and "Chateau 5G"; |
| lte | keep MAC persistent across reboots for QMI modems; |
| ospf | fixed missing interface-template configuration which previously was converted by upgrading from RouterOS v6 (additional fixes); |
| ovpn | fixed OVPN push routes; |
| ping | resolve domain name to IPv6 if src-address is IPv6 address; |
| port | expose RG650E-EU diagnostics channel; |
| port | remove unused serial port on RB1100AHx4; |
| ptp | allow manual domain configuration for 802.1AS profile; |
| ptp | fixed crash during initialization on some devices; |
| ptp | set DSCP (EF) for default profile when using IPv4; |
| switch | use names instead of numbers in switch menu configuration export; |
| system | improved stability for internal RouterOS service communication; |
| upgrade | added the option to configure HTTP/HTTPS modes when connecting to MikroTik upgrade servers (additional fixes); |
| webfig | added postfix byte value support (e.g. "/ip/settings/ipv4-high-fragment-thresh"); |
| wifi | improved authentication stability for WiFi 7 access points; |
| wifi-qcom-be,mediatek | correctly advertise RRM capabilities when 802.11k neighbor reports are enabled; |
| winbox | added “Remove” action under "System/Certificates/Requests" menu; |
| winbox | do not accept interface without specifying IP or MAC in "Ping To" field; |
| winbox | show "Directory URL" field for ACME certificates in Certificate view; |
| winbox | show accepted connections in tree view under "IP/Services" menu; |