Voici ma conf au cas ou vous trouveriez quelque chose d'anormal :
# dec/05/2022 11:28:34 by RouterOS 7.7beta8
# software id = LARI-JBZ5
#
# model = RB5009UPr+S+
# serial number = HDA08CSYSPT
/interface bridge
add name=br-wan
add name=bridgeDocker
add name=bridgeVLAN vlan-filtering=yes
/interface ethernet
set [ find default-name=ether1 ] name=ether1-desk
set [ find default-name=ether2 ] name=ether2-Living
set [ find default-name=ether3 ] name=ether3-WIFI
set [ find default-name=ether4 ] name=ether4-TVCh
set [ find default-name=ether5 ] disabled=yes name=ether5-unused
set [ find default-name=ether6 ] disabled=yes name=ether6-unused
set [ find default-name=ether7 ] disabled=yes name=ether7-unused
set [ find default-name=ether8 ] name=ether8-config
set [ find default-name=sfp-sfpplus1 ] name=sfp-WAN
/interface veth
add address=192.168.40.2/24 gateway=192.168.40.1 name=veth1-adguard
add address=192.168.40.3/24 gateway=192.168.40.1 name=veth2-unifi
/interface vlan
add interface=bridgeVLAN name=vlan10-work vlan-id=10
add interface=bridgeVLAN name=vlan20-public vlan-id=20
add interface=bridgeVLAN name=vlan30-server vlan-id=30
add comment="Internet ONT" interface=sfp-WAN loop-protect-disable-time=0s loop-protect-send-interval=1s name=vlan832-internet vlan-id=832
/container mounts
add dst=/opt/adguardhome/conf name=adguardhome-conf src=/disk2/docker/data/adguard/conf
add dst=/opt/adguardhome/work name=adguardhome-work src=/disk2/docker/data/adguard/work
add dst=/config name=unificonsole src=/disk2/docker/data/unifi
/disk
set usb1-part1 name=disk1
/interface list
add comment=defconf name=WAN
add comment=defconf name=LAN
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/ip dhcp-client option
add code=60 name=vendor-class-identifier value=0x736167656d
add code=77 name=userclass value=0x2b46535644534c5f6c697665626f782e496e7465726e65742e736f66746174686f6d652e4c697665626f7835
add code=90 name=authsend value=0x00000000000000000000001a0900000558010341010D6674692F6464717A7776643c123132333435363738393031323334353603134170826ed8db4004c7165047XXXXXXXXX
/ip dhcp-server option
add code=43 name=unifi value=0x0104c0a82803
/ip pool
add name=pool-server ranges=192.168.30.2-192.168.30.254
add name=pool-mgmt ranges=192.168.5.2-192.168.5.254
add name=pool-private ranges=192.168.10.2-192.168.10.254
add name=pool-public ranges=192.168.20.2-192.168.20.254
/ip dhcp-server
add address-pool=pool-server interface=vlan30-server name=dhcp-server
add address-pool=pool-mgmt interface=bridgeVLAN name=dhcp-mgmt
add address-pool=pool-private interface=vlan10-work name=dhcp-work
add address-pool=pool-public interface=vlan20-public name=dhcp-public
/container
add interface=veth1-adguard mounts=adguardhome-conf,adguardhome-work root-dir=disk2/adguardhome start-on-boot=yes workdir=/opt/adguardhome/work
add envlist=unifi interface=veth2-unifi logging=yes mounts=unificonsole root-dir=disk2/unifi start-on-boot=yes workdir=/usr/lib/unifi
/container config
set registry-url=https://registry-1.docker.io tmpdir=disk2/pull
/container envs
add key=PUID name=unifi value=1000
add key=PGID name=unifi value=1000
/interface bridge filter
add action=set-priority chain=output dst-port=67 ip-protocol=udp log=yes log-prefix="Set CoS6 on DHCP request" mac-protocol=ip new-priority=6 out-interface=vlan832-internet passthrough=yes
/interface bridge port
add bridge=bridgeDocker interface=veth1-adguard
add bridge=bridgeDocker interface=veth2-unifi
add bridge=bridgeVLAN interface=ether1-desk
add bridge=bridgeVLAN interface=ether2-Living
add bridge=bridgeVLAN interface=ether3-WIFI
add bridge=bridgeVLAN frame-types=admit-only-untagged-and-priority-tagged interface=ether4-TVCh pvid=20
add bridge=br-wan interface=vlan832-internet
/interface bridge settings
set use-ip-firewall-for-vlan=yes
/ipv6 settings
set disable-ipv6=yes
/interface bridge vlan
add bridge=bridgeVLAN tagged=bridgeVLAN,ether1-desk,ether3-WIFI vlan-ids=10
add bridge=bridgeVLAN tagged=bridgeVLAN,ether2-Living,ether3-WIFI,ether1-desk vlan-ids=20
add bridge=bridgeVLAN tagged=bridgeVLAN,ether1-desk vlan-ids=30
/interface list member
add interface=bridgeDocker list=LAN
add interface=bridgeVLAN list=LAN
add interface=br-wan list=WAN
/ip address
add address=192.168.111.1/24 interface=ether8-config network=192.168.111.0
add address=192.168.30.1/24 interface=vlan30-server network=192.168.30.0
add address=192.168.5.1/24 interface=bridgeVLAN network=192.168.5.0
add address=192.168.10.1/24 interface=vlan10-work network=192.168.10.0
add address=192.168.20.1/24 interface=vlan20-public network=192.168.20.0
add address=192.168.40.1/24 interface=bridgeDocker network=192.168.40.0
/ip dhcp-client
add dhcp-options=hostname,clientid,authsend,userclass,vendor-class-identifier interface=br-wan use-peer-dns=no
/ip dhcp-server lease
add address=192.168.10.100 client-id=1:a0:ce:c8:d7:a:e6 mac-address=A0:CE:C8:D7:0A:E6 server=dhcp-work
add address=192.168.10.101 client-id=1:0:e0:4c:68:1:56 mac-address=00:E0:4C:68:01:56 server=dhcp-work
add address=192.168.30.5 client-id=1:90:9:d0:20:b6:63 mac-address=90:09:D0:20:B6:63 server=dhcp-server
add address=192.168.20.10 client-id=1:a4:d7:3c:fa:17:7f mac-address=A4:D7:3C:FA:17:7F server=dhcp-public
/ip dhcp-server network
add dhcp-option=unifi
add address=192.168.5.0/24 dhcp-option=unifi dns-server=8.8.8.8 gateway=192.168.5.1
add address=192.168.10.0/24 dns-server=8.8.8.8 gateway=192.168.10.1
add address=192.168.20.0/24 dns-server=8.8.8.8 gateway=192.168.20.1
add address=192.168.30.0/24 dns-server=8.8.8.8 gateway=192.168.30.1
/ip dns
set servers=8.8.8.8
/ip firewall address-list
add address=192.168.10.0/24 list=support
add address=192.168.111.0/24 list=support
/ip firewall filter
add action=accept chain=input comment="defconf: accept established,related,untracked" connection-state=established,related,untracked
add action=accept chain=input in-interface=!br-wan protocol=icmp
add action=accept chain=forward comment="Allow port forwarding" connection-nat-state=dstnat
add action=fasttrack-connection chain=forward comment="defconf: fasttrack" connection-state=established,related hw-offload=yes
add action=accept chain=forward comment="defconf: accept established,related, untracked" connection-state=established,related
add action=drop chain=input comment="defconf: drop invalid" connection-state=invalid disabled=yes
add action=drop chain=forward comment="defconf: drop all from WAN not DSTNATed" connection-nat-state=!dstnat connection-state=new in-interface-list=WAN
add action=drop chain=input comment="Drop anything else!" in-interface=br-wan in-interface-list=WAN
/ip firewall nat
add action=masquerade chain=srcnat comment="docker internet access" src-address=192.168.40.0/24
add action=masquerade chain=srcnat comment="defconf: masquerade" ipsec-policy=out,none out-interface-list=WAN
add action=masquerade chain=srcnat
add action=dst-nat chain=dstnat comment="seedbox DHT port" dst-port=32383 log-prefix=seedbox: protocol=tcp to-addresses=192.168.30.5 to-ports=32383
add action=dst-nat chain=dstnat dst-port=32383 log-prefix=seedbox: protocol=udp to-addresses=192.168.30.5 to-ports=32383
/ip service
set telnet disabled=yes
set ftp disabled=yes
set www disabled=yes
set ssh port=22155
set www-ssl address=192.168.10.0/24,192.168.111.0/24 certificate=Webfig disabled=no
set api disabled=yes
set winbox address=192.168.10.0/24,192.168.111.0/24
set api-ssl disabled=yes
/system clock
set time-zone-name=Europe/Paris
/system identity
set name=MT-HOME
/system logging
add topics=firewall
add action=echo topics=interface,packet