MikroTik

IPAsupport

That's cool, now I will like to see a screenshot of the VMs config and probably you can paste the MikroTik config here also?

IPAsupport

Hi, what is the IP of the VMware host? Please share the config of the CHR, a screenshot of the properties of the VM showing the network ports config, and a screenshot of the config of all the involved virtual switches

IPAsupport

Hi Marco, before saying anything about the MikroTik config, will you share with us the configuration of the VM in Virtual Box?

IPAsupport

What are you using to authenticate the users? A billing software? FreeRADIUS? Can you start using a username/password instead of validating the connections by the IP address?

IPAsupport

We have provided service for some islands before. The main problem has been to get the internet there and to optimize the bandwidth, but you didn't mention that so I assume we are OK on that matter. Since the area you have to cover is small I will consider 2 options: 1) A mesh: Changing to a mesh to...

IPAsupport

The VLANs are for managing your broadcast domains. In the article there is only one computer in the diagram but the VLAN is actually for the wireless tower. In your case I think You can assing a VLAN to each server rack, if we are talking about 5000 physical servers will be what? 100+ racks?

IPAsupport

@esunarto When working with blades, getting to the outside world with the network could be done by modular switches or Pass-Through Modules. What will be the case for the Cisco and the Dell blades? If it is a switch what is the model?

IPAsupport

Hola José, veo que estás familiarizado con Cisco, te comparto unos artículos que escribió uno de nuestros Arquitectos de Red Senior Cisco to MikroTik – command translation – BGP https://stubarea51.net/2015/11/09/cisco-to-mikrotik-command-translation-bgp/ Cisco to MikroTik – command translation – OSP...

IPAsupport

Hola Luis, no te recomiendo ninguno de los 2. El rendimiento mejora muchísimo al usar BGP en un CHR, pero algo que hacemos nosotros con nuestros clientes es que filtramos las tablas de BGP, en realidad no necesitas la tabla completa. Un servidor HP debería ser de 3 dígitos para que te sirva, un DL16...

IPAsupport

There are ways to do what you are asking for using MPLS, but before that I will like to know more about what are you trying to do. What are you using to authenticate the users? FreeRADIUS? When you say you need to send the PPPoE traffic to a Cisco switch, what do you have connected there? Is it the ...

IPAsupport

I think you need to specify the tagged and untagged ports Try this: /interface bridge vlan add bridge=bridge_14 untagged=ether3 vlan-ids=14 add bridge=bridge_18 tagged=ether3 vlan-ids=18 also try activating VLAN filtering /interface bridge set bridge_14 vlan-filtering=yes set bridge_18 vlan-filterin...

IPAsupport

You should have a new interface everytime a new remote host connects to the router. Can you check that?

IPAsupport

To create a VLAN go to the /interface vlan menu use the following command [admin@MikroTik] /interface vlan> add name=vlan100 vlan-id=100 interface=ether1 This is the tricky part in MikroTik, the vlan will become an interface. In order to comunicate between VLANs assign IP addresses to each one of th...

IPAsupport

Are you using a Hypervisor? HyperV, VMware, Proxmox?

IPAsupport

We did a live presentation in the MUM in Berlin in 2018 and we got the best performance in HyperV using the CHR as an edge router

Check out the video here

https://www.youtube.com/watch?v=xcgdGA1 ... e=youtu.be

IPAsupport

but when i create a bridge on routeros only one port at a time works (for dhcp giving ip's etc) if i have more than one port on the bridge only the first port works, if i delete the first port on the bridge then the second works and so on... What do you mean? What are you using the ports for? Where...

IPAsupport

We have installed MikroTik on very demanding scenarios: a customer with 1k+ wireless access points, ISPs providing service to any amount of subscribers, data centers with critical applications running, communicating 2 or more cities and supporting thousands of users, and so on. If you are a Cisco gu...

IPAsupport

In that scenario I will use the 10g port for everything, and I will disable the 1g port. Since you understand Cisco, this "Cisco to Mikrotik dictionary" from one of our senior Network Architects might help you understand how to do things wiht your switch, it is based in RouterOS. Good luck with your...

IPAsupport

We haven´t tested that yet, but as soon as we do, we'll share the results

IPAsupport

Why do you need access to the 2 VLANs, what are you connecting there? Is it a hypervisor?

IPAsupport

*) added support for CTRL+ and CTRL- keyboard shortcuts for Zoom in and Zoom out;

That's something I can be thankful for with my lazy eyes

IPAsupport

What router model are you using?

IPAsupport

Would you share with us your bridge config?

IPAsupport

There are a couple ways but first I need to know if you have a way to connect the printer directly to the router, or if the printer is connected to a switch tha can use VLANs

IPAsupport

You need to go to IP>Pool and create one first. Then make a reference to that Pool you just created

IPAsupport

Your config is putting the pool in the trunk port, not in the VLAN

IPAsupport

If you understand Cisco VLANs, this document will help you

https://stubarea51.net/2019/02/06/cisco ... and-vlans/

And plese fell free to ask me questions

IPAsupport

This won't work on Mikrotik. You can get some of this if you use BGP, but Mikrotik's implementation of TE can't allow for the same destination or endpoint. A good solution for this will be a switch that supports ERPS for example.

IPAsupport

Are the VPNs the same speed? You can use PCQ, but you will have different source/destination IPs and that could be a problem for you. You can use BGP also.

IPAsupport

Have you upgraded the RouterBoard firmware also?

IPAsupport

Usually there are 2 versions available, the stable and long term. The “current” versions are intended to add new features, that, to be honest, we don’t know if will work. We will recommend you to use the long term version 6.45.9, because they put more attention on fixing bugs than deploying new feat...

IPAsupport

You can use a dual stack, check out this article from one of our senior Network Architects

https://stubarea51.net/2018/09/14/wisp- ... your-wisp/

IPAsupport

We have clients that also need PPPoE + PD + Radius, please consider implementing this feature

IPAsupport

Please check out this article from one of our Senior Network Architects. It will give you a general idea. It is oriented to ISPs but the dual stacking and the DHCPv6 and Prefix Delegation apply to your case too. It is possible it will generate more questions than answers :-) but I think it is a good...

IPAsupport

What brand and model is the switch? Can you share the LACP config?

IPAsupport

5. Yes. The client has to decide how much they want to invest in their security posture. It is ultimately up to them. My job is to advise them of their options, risks, etc, so they can make informed decisions. I've been involved in the security planning and execution for a number of large companies...

IPAsupport

I think to some degree be careful what you wish for.... MikroTik is successful because they understand that large support organizations cost a lot of money which means the cost of the product goes up. So MT puts resources into hardware and software development and uses e-mail and forum support to ke...

IPAsupport

Hy Franky, we will need more information to help you. What is the network segment of your ouside network? Do you have a DHCP server for that network or is it a manual config? What are you going to use the CHR for?

IPAsupport

Olá Sérgio

I can't access your drawings, it says I'm not allowed to see the content.

It sounds like you need to check your routes in your Mikrotik router, but I will have a better idea if I can see your diagrams.

Please let me know if you find a way to share them

IPAsupport

I just want to be clear. When you say my router only knows about an 192.168.x.x address What does it mean? Do you have a different segment for you internal network? The public IP is configured in your router or do you have a device provided by your ISP connected to your router? I think it will be go...

IPAsupport

Hey man, 192.168.10.0 can't be used, I won't extend myself on this but you can google some network subneting if you want to know more about it So change it to add address=192.168.10.1/24 interface=wlan1 network=192.168.10.0 Then the gateway for that network should be also that IP address 192.168.10.1

IPAsupport

Hi, please check out this article writen by one of our Senior Architects https://stubarea51.net/2018/06/01/wisp-design-ospf-leapfrog-path-for-traffic-engineering/ https://stubarea51.net/wp-content/uploads/2018/08/opsf-leapfrog-pic3.png The example uses only one internet provider but it is focused on...

IPAsupport

Instead of combining VRRP and BGP which normally isn't recommended, consider using this design with BFD which is simlilar to what you're asking for

IPAsupport

1) The very first thing to check when BGP routes are not propagating especially when moving from iBGP to eBGP is to see if the next hop is reachable. The border router in the iBGP ASN needs to either set next hop self for the peering towards other iBGP routers or a Route Reflector.....or the subnet ...

IPAsupport

That's right, we need to see what are you doing with the other Tik, There are so meany possible ocnfigs and the result in all of them is the combination of the configs of the 2 devices Hmm, I thought it was simply this error...... /ip address add address=**.***.***.***/24 comment=defconf interface=e...

IPAsupport

Hi there, before I give you my opinion I will like to ask you some questons: How many upstreams will you have to go to the internet? Are you multi-home? What is the bandwidth you’re planning to provide for your clients? If I understand correctly you will have 9 clients, right? Do you need to have hi...

IPAsupport

We designed a solution for HA BRAS that works well. You can actually split the pool in half across each BRAS and it will dynamically load balance users. Then redistribute the connected /32 routes into BGP. https://stubarea51.net/wp-content/uploads/2018/08/2.png https://stubarea51.net/2018/04/23/pppo...

IPAsupport

This level 3 offloading looks very interesting. Do we have any numbers to show what it can mean as this has the potential to put emphasis on the R in CRS :-) Here is the preliminary testing we have done on this version with two CHRs on ProxMox that are each on a different VLAN and the CRS317 routes...

IPAsupport

Any time frame to move off development phase and make it ready for production / stable? They still have to implement MPLS - I think that is the one major feature still missing from the current beta. Otherwise, there are probably many small fixes needed here and there. Totally agree! I will love to ...

IPAsupport

I'd use HyperV....I haven't seen any notification this has been fixed.

I've heard other people mention that ProxMox with Open Vswitch works but I haven't tested or confirmed that.

IPAsupport

I would probably consider MPLS with VPLS if you know that you need L2 adjacency. EoIP is great for very simple applications but if i'm going to be running an L2 overlay for any length of time, I use VPLS for stability and scalability.

IPAsupport

MikroTik has not yet implemented any variant of FQ Codel

IPAsupport

I did the testing in the YouTube video referenced above, and we found ProxMox to be in the middle as compared to VM Ware and HyperV. Part of the reason for this is driver support. In talking with MIkroTik at the MUM, there were existing drivers for ESXi and KVM that could be used. However, there wer...

IPAsupport

The first thing I would do is connect a router locally to Site 80 that isn't over the wireless link, enable MPLS and see i it's still an issue.

Does this hapen to all HTTP/HTTPs sites or only some of them?

IPAsupport

Good luck....also you may want to consider using a highly available PPPoE design with hardware or for better scale CHR

https://www.stubarea51.net/2018/04/23/p ... atorsbras/

IPAsupport

Can you post your configuration and the output of

ip route print

Search found 56 matches