Versions Compared


  • This line was added.
  • This line was removed.
  • Formatting was changed.

Table of Contents


MQTT is an open OASIS and ISO standard lightweight, publish-subscribe network protocol that transports messages between devices


. A typical MQTT communication topology consists of:

  • an MQTT publisher → a device that sends information to the server;
  • an MQTT broker → a server where the data is stored;
  • an MQTT subscriber → a device that reads/monitors the data published on the server.

RouterOS can act as an MQTT publisher and subscriber (starting with 7.11beta2). You can also run an MQTT broker/server via the container feature. For Mosquitto MQTT broker configuration visit the link here.

You can find application examples for MQTT publish scenarios below:

a) MQTT/HTTPS example with AWS cloud platform

b) MQTT example with Azure cloud platform

c) MQTT and ThingsBoard configuration

Please note that AWS and Azure examples (scripts) showcase publishing Bluetooth tag data. Currently, only the KNOT has a Bluetooth chip built-in.


Sub-menu: /iot mqtt

noteiot package is required.

IoT package is available with RouterOS version 6.48.3. You can get it from our download page - under "Extra packages".

brokersA list of configured MQTT brokers.
connectA command that specifies, which broker to connect to.
disconnectA command that specifies, which broker to disconnect from.
A command that defines the MQTT message that needs to be published.


A command that defines MQTT topics to subscribe to.


A list of subscribed topics and received messages.


A command that specifies, which topic to unsubscribe from.


To add a new MQTT broker (or an MQTT server), run the following command:

Code Block
[admin@device] /iot mqtt brokers add

Configurable properties are shown below:

address (IP|hostname; Default: )IP address or
FQDN name of
hostname of the broker.
auto-connect (yes | no; Default: no)When enabled, after the connection with the MQTT broker
without ssl:// or tcp:// prefix
goes down/gets interrupted, RouterOS will try to re-establish the connection over and over again.
certificate (string; Default: )
Select a certificate from the list if SSL is used
The certificate that is going to be used for the SSL connection.

client-id (string; Default: )

A unique ID used for the connection. The broker uses this ID to identify the client.

keep-alive (integer:30..64800; Default: 60)

A parameter that defines the time (in seconds), after which the client should "ping" the MQTT broker that it is "alive", to ensure the connection stays ongoing. This value should be set according to MQTT broker settings.

name (string; Default: )

Name of a broker
Descriptive name of the broker.

parallel-scripts-limit (integer:3..1000; Default: off)

A parameter that defines how many scripts the on-message feature for this broker is allowed to run at the exact same time. Can be useful to reduce CPU, in cases when a large number of messages are constantly published.

password (string; Default: )

Password for the
MQTT broker
broker (if required by the broker).

port (integer:0..4294967295; Default: 1883)

Network port
used by the broker.

ssl (yes | no; Default: no)

Secure Socket Layer configuration.
username (string; Default: )Username for the broker (if required by the broker).

An example of adding a broker:

Code Block
/iot mqtt brokers add name="broker" address="" port=1883 ssl=no client-id="test-client" auto-connect=no keep-alive=60

The result:

Code Block
/iot mqtt brokers print
 0 name="broker" address="" port=1883 ssl=no client-id="test-client" auto-connect=no keep-alive=60 connected=no 


To connect to the pre-configured MQTT broker, issue the command:

Code Block
/iot mqtt connect broker




If the connection is successful, the "connected" parameter should change to "yes":

Code Block
/iot mqtt brokers print
 0 name="broker" address="" port=1883 ssl=no client-id="test-client" auto-connect=no keep-alive=60 connected=yes


To disconnect from the MQTT broker, issue the command:

Code Block
/iot mqtt disconnect broker="broker"

To confirm that the broker was disconnected, issue the command below and it should indicate "connected=no":

Code Block
/iot mqtt brokers print            
 0 name="broker" address="" port=1883 ssl=no client-id="test-client" auto-connect=no keep-alive=60 connected=no 


Publish menu is used to send MQTT messages to the MQTT broker.Sub-menu: /iot mqtt

broker (string; Default: )
Select the broker, where to publish the message.
disconnect-after (yes | no; Default: no)Parameter, that ensures that the connection with the broker will be automatically disconnected after the publish message is sent.
force (yes | no; Default: yes)
If set to "yes", when the connection with the broker is not yet established ("connected=no"), and the message is attempted to be published, RouterOS will try to establish an MQTT connection with the specified broker first and then publish the message. If set to "no", RouterOS will not be able to send the message, unless the connection is already established beforehand ("connected=yes").

message (string; Default: )

The message that you wish to publish to the broker.

qos (integer:0..4294967295; Default: 0)

Quality of service parameter, as defined by the broker.

retain (yes | no; Default: no)

Whether to retain the message or to discard it if no one is subscribed to the topic. This parameter is defined by the broker.

topic (string; Default: )

Topic, as defined by the broker.

An example of MQTT publish would look like thispublishing the message:

Code Block
/iot mqtt publish message="test-message" broker="broker" topic="my/test/topic"



Please remember that if you have an on-going connection with the broker (the connection is in the "connected=yes" status) and you subscribe to the topic via that broker, you have to re-establish the connection!

This menu is used to subscribe to MQTT topics from the broker.

broker (string; Default: )
Select the broker, where to subscribe to.
force (yes | no; Default: yes)
If set to "yes", when the connection with the broker is not yet established ("connected=no"), and subscription is attempted, RouterOS will try to establish an MQTT connection with the specified broker first and then subscribe to the topic. If set to "no", RouterOS will not be able to subscribe to the topic, unless the connection is already established beforehand ("connected=yes").

qos (integer:0..4294967295; Default: 0)

Quality of service parameter, as defined by the broker.

topic (string; Default: )

Topic, as defined by the broker, where to subscribe to.

An example of a subscription:

Code Block
/iot mqtt subscribe broker="broker" topic="my/test/topic"

Wildcard (single level "+" and multi-level "#") subscriptions are also supported (RouterOS does not allow publishing to wildcard topics but allows subscribing to them):

Code Block
/iot mqtt subscribe broker="broker" topic="my/test/#"
/iot mqtt subscribe broker="broker" topic="my/test/+"

This means that if you subscribe to topic="my/test/#", you will be able to receive messages published to any topic that begins with the pattern before the wildcard symbol "#" (e.g., "my/test/topic", "my/test/topic/something").

And, if you subscribe to topic="my/test/+", you will be able to receive messages published on the topic +1 level (e.g., "my/test/topic", "my/test/something").


This section is used to manage already-added subscriptions (that were previously added via the Subscribe section).

It has the same properties as the Subscribe section.

Starting with v7.12beta9, this menu allows you to add the "on-message" setting to your subscriptions.
on-message (string; Default: )
Configure a script that will be automatically initiated/run whenever a new message is received in the subscribed topic.

To check already subscribed topics, issue the command:

Code Block
/iot mqtt subscriptions print
0 broker=broker topic="my/test/topic" qos=0

After you publish a test message as shown in the Publish section above:

Code Block
[admin@device] /iot mqtt> publish broker=x topic=y message=z  mqtt publish message="test-message" broker="broker" topic="my/test/topic"

You should be able to check the received message under:

Code Block
/iot mqtt subscriptions recv print
 0 broker=broker topic="my/test/topic" data="test-message" time=2023-05-22 16:57:00 

Received message list is limited to 1024 entries. After which, older entries will get overwritten with the new ones.

To clear stored messages, issue the command:

Code Block
/iot mqtt subscriptions recv clear

To run a script (for example, a basic "log" script) whenever any new message appears in the subscribed topic, you can use the on-message feature:

Code Block
/iot mqtt subscriptions set on-message={:log info "Got data {$msgData} from topic {$msgTopic}"} broker=broker 0

The script can use $msgData and $msgTopic variables. $msgData defines the MQTT message that was published and $msgTopic defines the MQTT topic, where the message was published. Both variables are automatically generated when a new message appears.

  • $msgData and $msgTopic variables will not work when used in the "System>Script" section created scripts, meaning, they will not work inside "/iot mqtt subscriptions set on-message={/system script run x}" added scripts. Both variables will work only when they are used inside the "on-message={}" written script, like, for example, "on-message={:log info "Got data {$msgData} from topic {$msgTopic}"}".
  • The same applies to global variable usage. If there are global variables that are "generated" using other scripts (variables that appear under System>Script>Environment section), they will not work inside the "on-message" script.

After you publish a new MQTT message to the subscribed topic, a new log entry should appear:

Code Block
/log print
10:19:15 script,info Got data {test-message} from topic {my/test/topic}

A second example shows how to run a script whenever a specific message (keywords from the message) appears. To achieve a scenario, where we want to run a script only when the MQTT message has specific content or a keyword, we can utilize the if condition statement:

Code Block
/iot mqtt subscriptions set 0 on-messag={:if ($msgData~"\\{\"test\":\"123\"\\}") do={:log info "Got data {$msgData} from topic {$msgTopic}"}}


Code Block
/iot mqtt subscriptions set 0 on-messag={:if ($msgData~"test") do={:log info "Got data {$msgData} from topic {$msgTopic}"}}

As a result, on every received MQTT message, the script will check whether the if condition is true. If it is true (if $msgData contains the JSON string {"test":"123"} or if $msgData contains the string "test"), the log entry will be generated. Otherwise, nothing will happen.

Meaning, the script will be run only when you publish a message like this:

Code Block
/iot mqtt publish broker=broker topic="my/test/topic" message="{\"test\":\"123\"}"

When you receive a message from a topic that falls under multiple subscriptions with on-message configuration, only x1 on-message script will be run. RouterOS will choose which on-meesage script to run using the following logic/priority:

  1. If the topic configured for the subscription is an exact match →  first priority;
  2. If the topic name is not an exact match (wildcard is used) → the second priority is for single 1v1 wildcard topics;
  3. If the topic does not fall under the single 1v1 wildcard category → the third priority is for multi-level wildcard topics based on the topic level.

An example:

Code Block
/iot mqtt subscriptions print
 0 broker=broker topic="some/sort/of/topic" qos=0 on-message="/system script run script1" 

 1 broker=broker topic="some/#" qos=0 on-message="/system script run script2" 

 2 broker=broker topic="some/sort/of/+" qos=0 on-message="/system script run script3"  

 3 broker=broker topic="some/thing/#" qos=0 on-message="/system script run script4"   

When you publish the data to some/sort/of/topic, script1 will be initiated → because the topic is an exact match.

When you publish the data to some/sort/of/thing, scrtip3 will be initiated → because it falls under the single 1v1 wildcard topic name.

When you publish the data to some/name, script2 will be initiated →  because it falls under the multi-level wildcard topic name.

When you publish the data to some/thing/else, script 4 will be initiated → because it falls under the multi-level wildcard topic name (even though it is also matched by some/# wildcard, it is a level closer to some/thing/# entry).


broker (string; Default: )
Select the broker to unsubscribe from.

topic (string; Default: )

Select a topic, as defined by the broker, to unsubscribe from.

An example of unsubscribing from the broker and the topic is shown below:

Code Block
/iot mqtt unsubscribe broker="broker" topic="my/test/topic"

Publishing RouterOS statistics using scripts

You can also use scripts to structure MQTT messages that contain RouterOS statistics. Then, you can apply the scheduler to run the script whenever you like.

For example, you can run a script like this (copy the content of the RouterOS code shown below into a new terminal and press "enter"):

Code Block
/system script add dont-require-permissions=no name=mqttpublish owner=admin policy=\
    ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon source="#\
    \_Required packages: iot\r\
    \n################################ Configuration #########################\
    \n# Name of an existing MQTT broker that should be used for publishing\r\
    \n:local broker \"broker\"\r\
    \n# MQTT topic where the message should be published\r\
    \n:local topic \"my/test/topic\"\r\
    \n#################################### System ############################\
    \n:put (\"[*] Gathering system info...\")\r\
    \n:local cpuLoad [/system resource get cpu-load]\r\
    \n:local freeMemory [/system resource get free-memory]\r\
    \n:local usedMemory ([/system resource get total-memory] - \$freeMemory)\r\
    \n:local rosVersion [/system package get value-name=version \\\r\
    \n\A0 \A0 [/system package find where name ~ \"^routeros\"]]\r\
    \n:local model [/system routerboard get value-name=model]\r\
    \n:local serialNumber [/system routerboard get value-name=serial-number]\r\
    \n:local upTime [/system resource get uptime]\r\
    \n#################################### MQTT ##############################\
    \n:local message \\\r\
    \n\A0 \A0 \"{\\\"model\\\":\\\"\$model\\\",\\\r\
    \n\A0 \A0 \A0 \A0 \A0 \A0 \A0 \A0 \\\"sn\\\":\\\"\$serialNumber\\\",\\\r\
    \n\A0 \A0 \A0 \A0 \A0 \A0 \A0 \A0 \\\"ros\\\":\\\"\$rosVersion\\\",\\\r\
    \n\A0 \A0 \A0 \A0 \A0 \A0 \A0 \A0 \\\"cpu\\\":\$cpuLoad,\\\r\
    \n\A0 \A0 \A0 \A0 \A0 \A0 \A0 \A0 \\\"umem\\\":\$usedMemory,\\\r\
    \n\A0 \A0 \A0 \A0 \A0 \A0 \A0 \A0 \\\"fmem\\\":\$freeMemory,\\\r\
    \n\A0 \A0 \A0 \A0 \A0 \A0 \A0 \A0 \\\"uptime\\\":\\\"\$upTime\\\"}\"\r\
    \n:log info \"\$message\";\r\
    \n:put (\"[*] Total message size: \$[:len \$message] bytes\")\r\
    \n:put (\"[*] Sending message to MQTT broker...\")\r\
    \n/iot mqtt publish broker=\$broker topic=\$topic message=\$message\r\
    \n:put (\"[*] Done\")"

The script collects the data from the RouterOS (model name, serial number, RouterOS version, current CPU, used memory, free memory, and uptime) and publishes the message (the data) to the broker in the JSON format:

Code Block
/system script run mqttpublish
[*] Gathering system info...
[*] Total message size: 125 bytes
[*] Sending message to MQTT broker...

[*] Done

You can subscribe to the topic to check the results:

Code Block
/iot mqtt subscriptions recv  print
 0 broker=broker topic="my/test/topic" data="{"model":"RB924i-2nD-BT5&BG77","sn":"E9C80EAEXXXX","ros":"7.9","cpu":13,"umem":47476736,
   time=2023-05-22 17:03:52 

Do not forget to change the "Configuration" part of the script (topic and the broker) based on your settingswhere x is an actual broker's name configured in the broker section, y is a topic (as it is configured on the server-side/on the broker itself) and z is the message you wish to publish.