新手必读系列-----有时间就写

情灭缘尽

Quick Typing  Description  
关于快速输入的说明

There are two features in the console that help entering commands much quicker and easier - the
[Tab] key completions, and abbreviations of command names. Completions work similarly to the
bash shell in UNIX. If you press the [Tab] key after a part of a word, console tries to find the
command within the current context that begins with this word. If there is only one match, it is
automatically appended, followed by a space:
废话一大堆我就懒的说了，直接说意思就得了，意思说在命令状态下可以像unix的bash一样，输入了开始的几个字母以后
可以按键盘上的tab键（你不知道tab在什么地方，马上送我去医院icu病房,医生,急救!!!!!!!），然后shell就自动被你补全了命令行，如果
有几个开都都是这样的字母，那么就列表示显示所有的开头是这些字母的命令

/inte[Tab]_ becomes /interface _
输入/inte然后按tab键，那么就自动补全命令为/interface，这个我就简单的说一下，有linux基础的一看就知道了，大家多试试就知道了

If there is more than one match, but they all have a common beginning, which is longer than that
what you have typed, then the word is completed to this common part, and no space is appended:
/interface set e[Tab]_ becomes /interface set ether_
If you've typed just the common part, pressing the tab key once has no effect. However, pressing it
for the second time shows all possible completions in compact form:
[admin@MikroTik] > interface set e[Tab]_
[admin@MikroTik] > interface set ether[Tab]_
[admin@MikroTik] > interface set ether[Tab]_
ether1 ether5
[admin@MikroTik] > interface set ether_
The [Tab] key can be used almost in any context where the console might have a clue about
possible values - command names, argument names, arguments that have only several possible
values (like names of items in some lists or name of protocol in firewall and NAT rules).You
cannot complete numbers, IP addresses and similar values.
上面废话一堆，大家自己去翻译吧

Another way to press fewer keys while typing is to abbreviate command and argument names. You
can type only beginning of command name, and, if it is not ambiguous, console will accept it as a
full name. So typing:
这里说的是还有个方法可以实现快速而且高效的命令输入，这就是命令简写，只要输入命令的打头的两个字母（没其他命令和他类似，否则就应该多输入几个字母，原则是你输入的已经足够让计算机辨认是某个命令而不是完全输入，这个就需要你有一定的基础，也就是说你必须是熟悉ros的shell环境的，我推荐大家还是用tab补全方式，好处是不需要记一个命令，什么都不记，不知道的就tab看一下，知道原理了不懂的地方多试几下也就知道了）

[admin@MikroTik] > pi 10.1 c 3 s 100
equals to:
上面的命令等同于下面的命令
[admin@MikroTik] > ping 10.0.0.1 count 3 size 100

                                                                                                                                                    情灭缘尽
                                                                                                                                                          武汉.湖北.09.14.2005

下一讲    新手必读---安全模式

[ 本帖最后由 情灭缘尽 于 2005-9-14 09:44 AM 编辑 ]

情灭缘尽

Safe Mode Description
关于安全模式的说明
先说一下自己遇到的事,昨天有朋友在qq群里面叫,自己远程设置防火墙,然后自己也进不去了,ping也ping不通了,呵呵,而且远程调试的那个ros是网吧的还比较远,看来安全模式真的是有用的,我一直都不怎么用,但是对新手来说还真的有用,所以我今天就来讲一下安全模式的使用,其实非常的简单


It is possible to change router configuration in a way that will make it not accessible except from
local console. Usually this is done by accident, but there is no way to undo last change when
connection to router is already cut. Safe mode can be used to minimize such risk.
Safe mode is entered by pressing [Ctrl]+[X]. To quit safe mode, press [Ctrl]+[X] again.
[admin@MikroTik] ip firewall rule input> [Ctrl]+[X]
[Safe Mode taken]
[admin@MikroTik] ip firewall rule input
Message Safe Mode taken is displayed and prompt changes to reflect that session is now in safe
mode. All configuration changes that are made (also from other login sessions), while router is in
safe mode, are automatically undone if safe mode session terminates abnormally. You can see all
such changes that will be automatically undone tagged with an F flag in system history:
[admin@MikroTik] ip firewall rule input add
[admin@MikroTik] ip firewall rule input /system history print
Flags: U - undoable, R - redoable, F - floating-undo
ACTION BY POLICY
F rule added admin write
[admin@MikroTik] ip firewall rule input
Now, if telnet connection is cut, then after a while (TCP timeout is 9 minutes) all changes that were
made while in safe mode will be undone. Exiting session by [Ctrl]+[D]emphasis> also undoes all
safe mode changes, while /quit does not.
If another user tries to enter safe mode, he's given following message:
[admin@MikroTik] >
Hijacking Safe Mode from someone - unroll/release/don't take it [u/r/d]:
[u] - undoes all safe mode changes, and puts the current session in safe mode.
[d] - leaves everything as-is.
[r] - keeps all current safe mode changes, and puts current session in a safe mode. Previous
owner of safe mode is notified about this:
[admin@MikroTik] ip firewall rule input
[Safe mode released by another user]
If too many changes are made while in safe mode, and there's no room in history to hold them all
(currently history keeps up to 100 most recent actions), then session is automatically put out of the
Page 23 of 568
Copyright 1999-2005, MikroTik. All rights reserved. Mikrotik, RouterOS and RouterBOARD are trademarks of Mikrotikls SIA.
Other trademarks and registred trademarks mentioned herein are properties of their respective owners.
safe mode, no changes are automatically undone. Thus, it is best to change configuration in small
steps, while in safe mode. Pressing [Ctrl]+[X] twice is an easy way to empty safe mode action list.


     上面的我都不翻译了，直接说方法,当你不清楚设置的时候你进到命令行界面的时候,在/下,按一下 [Ctrl]+[X],记住是同时按下,那么你就进入了安全模式了,当你也可以在其他的比如/interface 下面按 [Ctrl]+[X]也可以进入安全模式,当你进入安全模式的时候所有的设置在你退出安全模式的时候将全部还原,这样哪怕你修改了所有的设置,而且是错的,当你退出safe模式的时候都还原了,直接关闭掉远程终端也算是退出了/quit也算是退出了,[Ctrl]+[D]同样也算

      当第二个同等权限用户登陆的时候,会出现如下信息
Hijacking Safe Mode from someone - unroll/release/don't take it [u/r/d]:
我这里说一下后面的三个参数,
[u] - undoes all safe mode changes, and puts the current session in safe mode.
取消所有的修改,并且让当前会话进入到安全模式,也就是说你上一个用户做的修改不管他有没 退出安全模式都让他的改动取消并且让他退出安全模式而让自己的会话进入安全模式
[d] - leaves everything as-is.
放弃进入安全模式
[r] - keeps all current safe mode changes, and puts current session in a safe mode. Previous
保存前者的改动,并且让当前会话进入安全模式,记住,前面的用户的改动被永久保存了,你后面进入的用户退出安全模式前面的用户修改的也不会还原了,也就是说这样可以让修改被保存下来

[[i] 本帖最后由 情灭缘尽 于 2005-9-14 09:38 AM 编辑 [/i]]

情灭缘尽

2.8的支持的网卡详细列表如下
3Com 509 Series
Chipset type: 3Com 509 Series ISA 10Base
Compatibility:
3Com EtherLink III
3Com FastEtherLink
Chipset type: 3Com 3c590/3c900 (3Com FastEtherLink and FastEtherLink XL) PCI 10/100Base
Compatibility:
3c590 Vortex 10BaseT
3c592 chip
3c595 Vortex 100BaseTX
3c595 Vortex 100BaseT4
3c595 Vortex 100Base-MII
3c597 chip
3Com Vortex
3c900 Boomerang 10BaseT
3c900 Boomerang 10Mbit/s Combo
3c900 Cyclone 10Mbit/s Combo
3c900B-FL Cyclone 10Base-FL
3c905 Boomerang 100BaseTX
3c905 Boomerang 100BaseT4
3c905B Cyclone 100BaseTX
Page 36 of 568
Copyright 1999-2005, MikroTik. All rights reserved. Mikrotik, RouterOS and RouterBOARD are trademarks of Mikrotikls SIA.
Other trademarks and registred trademarks mentioned herein are properties of their respective owners.
3c905B Cyclone 10/100/BNC
3c905B-FX Cyclone 100BaseFX
3c905C Tornado
3c980 Cyclone
3cSOHO100-TX Hurricane
3CSOHO100B-TX
3c555 Laptop Hurricane
3c575 Boomerang CardBus
3CCFE575 Cyclone CardBus
3CCFE656 Cyclone CardBus
3c575 series CardBus
3Com Boomerang
ADMtek Pegasus
Chipset type: ADMtek Pegasus/Pegasus II USB 10/100BaseT
Compatibility:
Planet 10/100Base-TX USB Ethernet Adapter UE-9500
Linksys Instant EtherFast 10/100 USB Network Adapter USB100TX
AMD PCnet
Chipset type: AMD PCnet/PCnet II ISA/PCI 10BaseT
Compatibility:
AMD PCnet-ISA
AMD PCnet-ISA II
AMD PCnet-PCI II
AMD 79C960 based cards
AMD PCnet32
Chipset type: AMD PCnet32 PCI 10BaseT and 10/100BaseT
Compatibility:
AMD PCnet-PCI
AMD PCnet-32
AMD PCnet-Fast
Page 37 of 568
Copyright 1999-2005, MikroTik. All rights reserved. Mikrotik, RouterOS and RouterBOARD are trademarks of Mikrotikls SIA.
Other trademarks and registred trademarks mentioned herein are properties of their respective owners.
Broadcom Tigon3
Chipset type: Broadcom Tigon3 PCI 10/100/1000BaseT
Compatibility:
Broadcom Tigon3 570x
Broadcom Tigon3 5782
Broadcom Tigon3 5788
Broadcom Tigon3 5901
Broadcom Tigon3 5901-2
SysKonnect SK-9Dxx Gigabit Ethernet
SysKonnect SK-9Mxx Gigabit Ethernet
Altima AC100x
Altima AC9100
Davicom DM9102
Chipset type: Davicom DM9102 PCI 10/100Base
Compatibility:
Davicom DM9102
Davicom DM9102A
Davicom DM9102A+DM9801
Davicom DM9102A+DM9802
DEC 21x4x 'Tulip'
Chipset type: DEC 21x4x "Tulip" PCI 10/100Base
Compatibility:
Digital DC21040 Tulip
Digital DC21041 Tulip
Digital DS21140 Tulip
21140A chip
21142 chip
Digital DS21143 Tulip
D-Link DFE 570TX 4-port
Lite-On 82c168 PNIC
Macronix 98713 PMAC
Page 38 of 568
Copyright 1999-2005, MikroTik. All rights reserved. Mikrotik, RouterOS and RouterBOARD are trademarks of Mikrotikls SIA.
Other trademarks and registred trademarks mentioned herein are properties of their respective owners.
Macronix 98715 PMAC
Macronix 98725 PMAC
ASIX AX88140
Lite-On LC82C115 PNIC-II
ADMtek AN981 Comet
Compex RL100-TX
Intel 21145 Tulip
IMC QuikNic FX
Conexant LANfinity
Intel EtherExpressPro
Chipset type: Intel i82557 "Speedo3" (Intel EtherExpressPro) PCI 10/100Base
Compatibility:
Intel i82557/i82558/i82559ER/i82801BA-7 EtherExpressPro PCI cards
Intel PRO/1000
Chipset type: Intel i8254x (Intel PRO/1000) PCI 10/100/1000Base
Compatibility:
Intel PRO/1000 Gigabit Server Adapter (i82542, Board IDs: 700262-xxx, 717037-xxx)
Intel PRO/1000 F Server Adapter (i82543, Board IDs: 738640-xxx, A38888-xxx)
Intel PRO/1000 T Server Adapter (i82543, Board IDs: A19845-xxx, A33948-xxx)
Intel PRO/1000 XT Server Adapter (i82544, Board IDs: A51580-xxx)
Intel PRO/1000 XF Server Adapter (i82544, Board IDs: A50484-xxx)
Intel PRO/1000 T Desktop Adapter (i82544, Board IDs: A62947-xxx)
Intel PRO/1000 MT Desktop Adapter (i82540, Board IDs: A78408-xxx, C91016-xxx)
Intel PRO/1000 MT Server Adapter (i82545, Board IDs: A92165-xxx, C31527-xxx)
Intel PRO/1000 MT Dual Port Server Adapter (i82546, Board IDs: A92111-xxx, C29887-xxx)
Intel PRO/1000 MT Quad Port Server Adapter (i82546, Board IDs: C32199-xxx)
Intel PRO/1000 MF Server Adapter (i82545, Board IDs: A91622-xxx, C33915-xxx)
Intel PRO/1000 MF Server Adapter (LX) (i82545, Board IDs: A91624-xxx, C33916-xxx)
Intel PRO/1000 MF Dual Port Server Adapter (i82546, Board IDs: A91620-xxx, C30848-xxx)
Marvell Yukon
Chipset type: Marvell Yukon 88E80xx PCI 10/100/1000Base
Page 39 of 568
Copyright 1999-2005, MikroTik. All rights reserved. Mikrotik, RouterOS and RouterBOARD are trademarks of Mikrotikls SIA.
Other trademarks and registred trademarks mentioned herein are properties of their respective owners.
Compatibility:
3Com 3C940 Gigabit LOM Ethernet Adapter
3Com 3C941 Gigabit LOM Ethernet Adapter
Allied Telesyn AT-2970LX Gigabit Ethernet Adapter
Allied Telesyn AT-2970LX/2SC Gigabit Ethernet Adapter
Allied Telesyn AT-2970SX Gigabit Ethernet Adapter
Allied Telesyn AT-2970SX/2SC Gigabit Ethernet Adapter
Allied Telesyn AT-2970TX Gigabit Ethernet Adapter
Allied Telesyn AT-2970TX/2TX Gigabit Ethernet Adapter
Allied Telesyn AT-2971SX Gigabit Ethernet Adapter
Allied Telesyn AT-2971T Gigabit Ethernet Adapter
DGE-530T Gigabit Ethernet Adapter
EG1032 v2 Instant Gigabit Network Adapter
EG1064 v2 Instant Gigabit Network Adapter
Marvell 88E8001 Gigabit LOM Ethernet Adapter
Marvell RDK-80xx Adapter
Marvell Yukon Gigabit Ethernet 10/100/1000Base-T Adapter
N-Way PCI-Bus Giga-Card 1000/100/10Mbps(L)
SK-9521 10/100/1000Base-T Adapter
SK-98xx Gigabit Ethernet Server Adapter
SMC EZ Card 1000
Marvell Yukon 88E8010 based
Marvell Yukon 88E8003 based
Marvell Yukon 88E8001 based
National Semiconductor DP83810
Chipset type: National Semiconductor DP83810 PCI 10/100BaseT
Compatibility:
RouterBoard 200 built-in Ethernet
RouterBoard 24 4-port Ethernet
NS DP8381x-based cards
National Semiconductor DP83820
Chipset type: National Semiconductor DP83820 PCI 10/100/1000BaseT
Page 40 of 568
Copyright 1999-2005, MikroTik. All rights reserved. Mikrotik, RouterOS and RouterBOARD are trademarks of Mikrotikls SIA.
Other trademarks and registred trademarks mentioned herein are properties of their respective owners.
Compatibility:
Planet ENW-9601T
NS DP8382x-based cards
NE2000 ISA
Chipset type: NE2000 ISA 10Base
Compatibility:
various ISA cards
NE2000 PCI
Chipset type: NE2000 PCI 10Base
Compatibility:
RealTek RTL-8029
Winbond 89C940 and 89C940F
Compex RL2000
KTI ET32P2
NetVin NV5000SC
Via 86C926
SureCom NE34
Holtek HT80232
Holtek HT80229
IMC EtherNic/PCI FO
NS8390
Chipset type: NS8390 PCMCIA/CardBus 10Base
Compatibility:
D-Link DE-660 Ethernet
NE-2000 Compatible PCMCIA Ethernet
NS8390-based PCMCIA cards
RealTek RTL8129
Chipset type: RealTek RTL8129 PCI 10/100Base
Compatibility:
Page 41 of 568
Copyright 1999-2005, MikroTik. All rights reserved. Mikrotik, RouterOS and RouterBOARD are trademarks of Mikrotikls SIA.
Other trademarks and registred trademarks mentioned herein are properties of their respective owners.
RealTek RTL8129 Fast Ethernet
RealTek RTL8139 Fast Ethernet
RTL8139A/B/C chip
RTL8130 chip
SMC1211TX EZCard 10/100 (RealTek RTL8139)
Accton MPX5030 (RealTek RTL8139)
D-Link DFE 538TX
RealTek RTL8169
Chipset type: RealTek RTL8169 PCI 10/100/1000Base
Compatibility:
RealTek RTL8169 Gigabit Ethernet (not recommended: may lock up the router)
Sundance ST201 'Alta'
Chipset type: Sundance ST201 "Alta" PCI 10/100Base
Compatibility:
D-Link DFE-550TX Fast Ethernet Adapter
D-Link DFE-550FX 100Mbps Fiber-optics Adapter
D-Link DFE-580TX 4-port Server Adapter (not recommended: may lock up the system)
D-Link DFE-530TXS Fast Ethernet Adapter
D-Link DL10050-based FAST Ethernet Adapter
Sundance ST201 "Alta" chip
Kendin KS8723 chip
TI ThunderLAN
Chipset type: TI ThunderLAN PCI 10/100Base
Compatibility:
Compaq Netelligent 10 T
Compaq Netelligent 10 T/2
Compaq Netelligent 10/100 TX
Compaq NetFlex-3/P
Olicom OC-2183
Olicom OC-2185
Olicom OC-2325
Page 42 of 568
Copyright 1999-2005, MikroTik. All rights reserved. Mikrotik, RouterOS and RouterBOARD are trademarks of Mikrotikls SIA.
Other trademarks and registred trademarks mentioned herein are properties of their respective owners.
Olicom OC-2326
VIA vt612x 'Velocity'
Chipset type: VIA vt612x "Velocity" PCI 10/100/1000Base
Compatibility:
VIA VT6120
VIA VT6121
VIA VT6122
VIA vt86c100 'Rhine'
Chipset type: VIA vt86c100 "Rhine" PCI 10/100Base
Compatibility:
VIA Rhine (vt3043)
VIA Rhine II (vt3065 AKA vt86c100)
VIA VT86C100A Rhine
VIA VT6102 Rhine-II
VIA VT6105 Rhine-III
VIA VT6105M Rhine-III
RouterBOARD 44 4-port Fast Ethernet card
D-Link DFE 530TX
Winbond w89c840
Chipset type: Winbond w89c840 PCI 10/100Base
Compatibility:
Winbond W89c840
Compex RL100-ATX

zhanghui

很好，很好

ttsee

支持！

lzbnet

顶,不错,好文收下了.

lovellh

不错,,,,学习中

笛子

大家好，才是真的好，顶~~

iceicq

好东西

lyd2004888

好东西 收了

ivven

偶像派人物

情灭缘尽

General Interface Settings
一般接口设置

ros支持多种网络接口，同样也支持多种虚拟接口，比如vlan，和桥
他们都有各自的子菜单栏目，但是也有一个统一的接口列表方便我们设置某些全局的参数
Related Documents
Wireless Client and Wireless Access Point Manual
Bridge Interfaces
ARLAN 655 Wireless Client Card
CISCO/Aironet 2.4GHz 11Mbps Wireless Interface
Cyclades PC300 PCI Adapters
Ethernet Interfaces
EoIP Tunnel Interface
FarSync X.21 Interface
FrameRelay (PVC, Private Virtual Circuit) Interface
IPIP Tunnel Interfaces
ISDN (Integrated Services Digital Network) Interface
L2TP Interface
MOXA C101 Synchronous Interface
Page 53 of 568
Copyright 1999-2005, MikroTik. All rights reserved. Mikrotik, RouterOS and RouterBOARD are trademarks of Mikrotikls SIA.
Other trademarks and registred trademarks mentioned herein are properties of their respective owners.
MOXA C502 Dual-port Synchronous Interface
PPP and Asynchronous Interfaces
PPPoE Interface
PPTP Interface
RadioLAN 5.8GHz Wireless Interface
VLAN Interface
Xpeed SDSL Interface
Description
The Manual describes general settings of MikroTik RouterOS interfaces.
Interface Status
接口状况

Home menu level: /interface
主菜单为/interface

Property Description
属性描述

name (text) - the name of the interface
接口名称

status - shows the interface status
显示接口状况

type (read-only: arlan | bridge | cyclades | eoip | ethernet | farsync | ipip | isdn-client | isdn-server |
l2tp-client | l2tp-server | moxa-c101 | moxa-c502 | mtsync | pc | ppp-client | ppp-server | pppoe-client
| pppoe-server | pptp-client | pptp-server | pvc | radiolan | sbe | vlan | wavelan | wireless | xpeed) -
interface type
接口类型列表，为只读的

mtu (integer) - maximum transmission unit for the interface (in bytes)
改接口的最大传输单元，单位字节

rx-rate (integer; default: 0) - maximum data rate for receiving data
0 - no limits
接收速率限制，默认为0，表示不限制

tx-rate (integer; default: 0) - maximum data rate for transmitting data
0 - no limits
发送速率限制，默认为0，表示 不限制

Example
举例
To see the list of all available interfaces:
查看所有的可用接口
[admin@MikroTik] interface> print
上面的命令等同于 /in pr或者是/interface print 或者是/interface pr等简写
Flags: X - disabled, D - dynamic, R - running
旗标
X 表示已经禁用
D 表示动态的接口
R 表示正处在工作状态的
# NAME TYPE RX-RATE TX-RATE MTU
#名称 类型  接收速率限制 发送速率限制 最大传输单元
0 R ether1 ether 0 0 1500
1 R bridge1 bridge 0 0 1500
2 R ether2 ether 0 0 1500
3 R wlan1 wlan 0 0 1500
[admin@MikroTik] interface>
Traffic Monitoring
传输监控
Command name: /interface monitor-traffic
监控所有接口的命令
Page 54 of 568
Copyright 1999-2005, MikroTik. All rights reserved. Mikrotik, RouterOS and RouterBOARD are trademarks of Mikrotikls SIA.
Other trademarks and registred trademarks mentioned herein are properties of their respective owners.
Description
The traffic passing through any interface can be monitored.
Notes
One or more interfaces can be monitored at the same time.
Example
Multiple interface monitoring:
[admin@MikroTik] interface> monitor-traffic ether1,wlan1
只监控某些接口的命令
received-packets-per-second: 1 0
每秒接收的包的数量
received-bits-per-second: 475bps 0bps
每秒接收的比特位的数量
sent-packets-per-second: 1 1
每秒发送的包数量
sent-bits-per-second: 2.43kbps 198bps
每秒发送的比特量
-- [Q quit|D dump|C-z pause]
q 退出
d 抓取某一时刻的来显示
c 暂停

[ 本帖最后由 情灭缘尽 于 2005-9-23 08:30 AM 编辑 ]

pangjin521

我正需要呢，我今天没有弄明白的那个安全模式，在这看到了会了。

wudidaidai

很多知识 谢谢

木木

好贴，支持