...
| Code Block | ||
|---|---|---|
| ||
[admin@MikroTik] > /tool sniffer/quick failure: configuration flagged, check all router configuration for unauthorized changes and update device-mode [admin@MikroTik] > /int l2tp-client/add connect-to=1.1.1.1 user=user failure: configuration flagged, check all router configuration for unauthorized changes and update device-mode |
To exit the the flagged state, you must perform the command "/system/device-mode/update flagged=no", but you can only permanently exit flagged state, if you have completely removed the malicious configuration rules that triggered it. If you try to remove flagged state, but after the reboot procedure your device still has the config which triggered it, the flagged state will automatically be set again. The system will ask to either press a button, or issue a hard reboot (cut power physically or do a hard reboot of the virtual machine).
Important! Although the system has disabled any malicious looking rules, which triggered the flagged state, it is crucial to inspect all of your configuration for other unknown things, before exiting the flagged state. If your system has been flagged, assume that your system has been compromised and do a full audit of all settings before re-enabling the system for use. After completing the audit, change all the system passwords and upgrade to the latest RouterOS version.