Mikrotik Router Advance Setup Guide

MikroTik RouterOS Training Advanced Class Sharm el Sheikh, Egypt November 17-20, 2007

© MikroTik 2007

Schedule 09:00 – 10:30 Morning Session I 10:30 – 11:00 Morning Break

11:00 – 12:30 Morning Session II 12:30 – 13:30 Lunch Break

13:30 – 15:00 Afternoon Session I 15:00 – 15:30 Afternoon Break

15:30 – 17:00 (18.00) Afternoon Session II

© MikroTik 2007

2

Instructors Jānis Meģis, MikroTik Working as Support and Training Engineer at Mikrotikls SIA (MikroTik) Specialization: Firewall, QoS, Basic, VPN, OSPF

Uldis Čerņevskis, MikroTik Working as Support and Testing Engineer at Mikrotikls SIA (MikroTik) Specialization: Wireless, Hotspot, User Manager, Dude

© MikroTik 2007

3

Housekeeping Course materials Routers, cables Break times and lunch Restrooms and smoking area locations

© MikroTik 2007

4

Course Objective Provide knowledge about advanced features of MikroTik RouterOS and hands-on training configuring, maintaining and troubleshooting networks built using RouterOS software and RouterBoard hardware Upon completion of the course you will be able to plan and implement advanced network configurations using RouterOS

© MikroTik 2007

5

About MikroTik Mission Statement MikroTik is router software and hardware manufacturer, that offers most user friendly up to carrier-class routing and network management solutions. Our products are used by ISPs, individual users and companies for building data network infrastructures.

Our goal is to make existing Internet technologies faster, more powerful and affordable to wider range of users

© MikroTik 2007

6

MikroTik's History Active in WISP solutions since 1995 Incorporated in 1996 Wireless ISP Projects around the World Since 1997 Development of own Software for Intel (PC) based routing solutions Since 2002 Development of own Hardware 2007: 60 employees

© MikroTik 2007

7

Where is MikroTik? We are on the World Wide Web at www.mikrotik.com Located in Riga, Latvia, Eastern Europe, EU

© MikroTik 2007

8

Introduce Yourself Please, introduce yourself to the class Your name Your Company Your previous knowledge about RouterOS Your previous knowledge about networking What do you expect from this course?

Please, remember your class XY number. (X is number of the row, Y is your seat number in the row)

is:_________

My number © MikroTik 2007

9

Class Setup Lab

Create an 192.168.XY.0/24 Ethernet net w ork between the laptop (.1) and the router (.254)‫‏‬ Connect your routers to the access point SSID “ap_rb532” Assign IP address 10.1.1.XY/24 to the wireless interface Gain access to the internet from your laptops GW and DNS address is 10.1.1.254 Create new user for your router and change “admin” access rights to “read” © MikroTik 2007

10

© MikroTik 2007

11

Class setup Lab (cont.)‫‏‬ Set system identity of the board to “XY_”. Example: “00_Janis” Set wireless cards radio name to “XY__”. Example: “00_Janis_wlan1” Upgrade your router to the latest Mikrotik RouterOS 3.0 version Upgrade your Winbox loader version Create a configuration backup and co p y it to the laptop (it will be default configuration)‫‏‬ © MikroTik 2007

12

Routing

Simple Routing, ECMP, OSPF, Policy Routing, © MikroTik 2007

13

Simple Static Route Only one gateway for a single network More specific routes in the routing table have higher priority than less specific Route with destination network 0.0.0.0/0 basically means “everything else” © MikroTik 2007

14

Simple Routing Lab Ask teacher to join you in a group of 4 and assign specific group number “Z” Use any means necessary (cables, wireless) to create IP network structure from the next slide Remove any NAT (masquerade) rules from your routers By using simple static routes only ensure connectivity between laptops, and gain access to the internet. © MikroTik 2007

15

IP Network Structure To Main AP

9

8 6 1

/2

.0

.

To Laptop

6

2 9 1

26 / 2

Z 8. 16 2. 19

To Laptop

.1 Z .

To Laptop

10.1.Z.0/30

2.

19

Z – your group number

6

16

/2 4 .6

8. 1 Z.

Z

28

. 68

1

6

/2

. 92

1

To Laptop

© MikroTik 2007

16

ECMP Routes ECMP (Equal Cost Multi Path) routes have more than one gateway to the same remote network Gateways will be used in Round Robin per SRC/DST address combination

© MikroTik 2007

17

“Check-gateway” option It is possible to force router to check gateway reachability using ICMP (ping) or ARP protocols If gateway is unreachable in a simple route – the route will become inactive If one gateway is unreachable in an ECMP route, only the reachable gateways will be used in the Round Robin algorithm

© MikroTik 2007

18

“Distance” option It is possible to prioritize one route over another if they both point to the same network using “distance” option. When forwarding a packet, the router will use the route with the lowest distance and reachable gateway

© MikroTik 2007

19

ECMP Routing Lab Remake your previously created routes, so that there are two gateways to each of the other participant's local networks 192.168.XY.0/24 and to the Internet Also ensure that “backup link” (next slide) will be used only when all other ways are not accessible

© MikroTik 2007

20

Advanced Routing To Main AP

To Laptop

To Laptop

BACKUP LINK

To Laptop

To Laptop

© MikroTik 2007

21

Open Shortest Path First (OSPF)‫‏‬ Areas, Costs, Virtual links, Route Redistribution and Aggregation

© MikroTik 2007

OSPF Protocol Open Shortest Path First protocol uses a link-state and Dijkstra algorithm to build and calculate the shortest path to all known destination networks OSPF routers use IP protocol 89 for communication with each other OSPF distributes routing information between the router s belonging to a single autonomous system (AS)‫‏‬ © MikroTik 2007

23

Autonomous System (AS)‫‏‬ An autonomous system is a collection of IP networks and routers under the control of one entity (OSPF, iBGP ,RIP) that presents a common routing policy to rest of the network AS is identified by 16 bit number (0 - 65535)‫‏‬ Range from 1 to 64511 for use in the Internet Range from 64512 to 65535 for private use

© MikroTik 2007

24

OSPF Areas OSPF allows collections of routers to be grouped together (