is there somewhere a tutorial how to configure MikroTik routerOS based MikroTik's routers? I have checked some docs but was not really successful.
Just examples starting from simplest configs up to L2HW/LACP based HA clusters with two router boxes etc.
Thank you in advance for all hints,
Best regards, Mark
---
Redundancy based on L2HW / LACP cluster of two CCR2116-12G-4S+ routers and one CRS310-1G-5S-4S+IN switch
Switch SW1 (10GBit Uplink)
CRS310-1G-5S-4S+IN
SFP+ Port 1 connected to 10GBit Internet Uplink
SFP+ Port 2 connected to router R01 / 10GBit SFP+ Port 1
SFP+ Port 3 connected to router R02 / 10GBit SFP+ Port 1
Router R01
CCR2116-12G-4S+
SFP+ Port 1 connected to switch SW1 / 10GBit SFP+ Port 2
SFP+ Port 2 connected to router R02 / 10GBit SFP+ Port 2 (routers R01 and R02 are connected together on SFP+ Ports 2)
SFP+ Ports 3 and 4 as well as 1G Ports 1 - 12 are connected to LAN (NAT)
Router R02
CCR2116-12G-4S+
SFP+ Port 1 connected to switch SW1 / 10GBit SFP+ Port 3
SFP+ Port 2 connected to router R01 / 10GBit SFP+ Port 2 (routers R01 and R02 are connected together on SFP+ Ports 2)
SFP+ Ports 3 and 4 as well as 1G Ports 1 - 12 are connected to LAN (NAT)
Are there some examples of configuration for such HA cluster?
They help me to better understand the capabilities of the routerOS and the router hardware.
I hoped somehow to find more config examples but already have got some ideas how to deal with this stuff.
I do not see any HA if you do not have 2 (two) different internet sources from different directions (yes, directions…).
You still have only one breaking point and if the switch breaks everything stops.
Yes, you are right about the switch.
The connector socket has to fiber channels but currently only one is connected to an internet provider.
The other channel can be used for another provider later.
The uplink-switch belongs to the provider. I own both routers and it is more important for me to get such a little bit “faked” HA configuration running to avoid breaks if one of routers goes down.
I am checking docs to get familiar with the config syntax and the capabilities of CR2116-12G-4S (interface bonding etc.)
If doing VRRP and you have two boxes and two internet connections suggest two sets of MASTER - SECONDARY setups.
In this manner router A is the master and serves its local users and Router B can be a master and serve its local users, and then if one of the WANs goes down, the losing users will start using the other WAN as planned etc…
I have got only one fixed IP-address from my provider so due to my understanding it is not possible to use VRRP (two or three IPs are required)
MikroTik’s support recommended me CCR2116-12G-4S+ routers as they support L2HW.
Probably interface bonding is the possible solution (in case the CRS310-1G-5S-4S+IN switch also supports L2HW - my 10Gbit fiber provider assured, that they can configure LACP on their CRS310-1G-5S-4S+IN switch).
I will be fine with interface bonding of my two routers and one switch of the provider, but have to check how to achieve interface bonding of two router boxes (syntax of the configuration).
My idea is just to assign SFP+ port1 ports of both routers to a bridge (physically they are connected to different switch ports) as well as the SFP+ port2 ports of both routers to the same bridge (physically they are connected to each other - router1 / router2)
I don’t think (but I may well be wrong) that two different ISP connections are actually needed for VRRP.
From what I understand the whole stuff revolves around the concept of redundancy and transparent or almost transparent transition from the normally “master” router to the normally “slave” one when, for whatever reason the master is not available.
Point is that in (say) 99% of cases the connection issue happens outside your setup (at cable, cabinet, ISP, or whatever level, outside of your control) so having a redundant router with just one ISP connection may only be useful in that 1% of cases where someone disconnects the cable from master to ISP.
If doing VRRoP and you have two boxes and two internet connections suggest two sets of MASTER - SECONDARY setups.
Currently I have only one internet connection. Furthermore the external IP-address (internal servers behind) should be available on internet.
No idea if both providers can provide (and want) a kind of BGP / OSPF routing for singular IPs or small networks.
