New capsman explicitly doesn't support provisioning local devices (MT is very clear on that).
This was actually very much unclear to me when I was setting up new CAPsMAN for the first time. I can't even find a mention of local interfaces with regards to CAPsMAN in the docs.
Old capsman apparently did[*] support that but MT (AFAIK) never really advertised this as a feature ... so it might be an unsupported glitch they just let working all these years.
MikroTik may have never advertised this as a feature, but they did put a firewall entry into default config seemingly just for local CAPsMAN to work, the one with the comment "defconf: accept to local loopback (for CAPsMAN)". They may have done this to dissuade unwary forum users from just turning off "drop all input not from LAN" rule. But still.
Statistics: Posted by Nullcaller — Sun Jan 07, 2024 3:53 am