Trying to learn Mikrotik as quickly as possible...

Hello everyone!

I’m working as a volunteer and am trying to help an organization using mikrotik equipment improve the speed on their network among other things. I have a computer science degree, but have very little networking experience (read one class in university, but I’m the most qualified to be doing this). I’ve been browsing through the wiki, manual, and the forums and still have several questions:

Do you know of a way to verify the speed of the connection we have purchased from the ISP?

How do you identify the slow points in the network? Currently we are doing no QoS and I’m guessing that this has a lot to do with it, but I’d like some way to verify.

How do you manage users? Currently we have an open network and a proxy server connected at the end determines, based on mac address and IP combination, if they can be forwarded to the internet. This seems like a bad way to do it. Would there be a problem with securing each ap (WPA2?) and testing the mac address there? I would also like to stop having each client be manually configured with an IP address, is there any problem with using DCHP?

I would also like to set up some sort of monitering. I have tried “the dude”, but it’s not exactly what i am looking for. I would like to be sent an email or sms if there is some sort of connection issue. Is there anything like this?

Is there a way to back up settings so I can configure an AP the way I think it should be working and if I make a mistake I can restore the old settings?

How did you learn about managing these devices? I’m also looking for more resources to learn.

Thank you all for your time! I can use any help you’re willing to give!

Hi David.

You’ve asked quite a few questions in one place which is pretty hectic to try and answer. In truth it actually would be pretty near impossible for one person to answer them all in one go!!!

1. To test your internet speed you need to know a couple of real quick things . . . I’m assuming you know your internet speed and if that’s a guaranteed connection speed. Read up on contention ratios if your at all unsure http://en.wikipedia.org/wiki/Contention_ratio.

You then need to set up a simple queue grabbing all the traffic and set a limit on the traffic WAY in excess of what is currently going through. This should give you the speed on the internet, if you’ve set up the queues correctly.

This will tell you what your able to pull and push ‘to the internet’ . . .

2. How do you identify ‘slow’ points in your network? Well this is hard to answer because it could be the actual hardware (are you running 10GB/s through a 100mb/s switch?!) or it could be poor network layout. They way I personally test and I’m not a trained expert is to move through the network one piece at a time, find out what EXACTLY each piece is doing and question if it’s doing EXACTLY what is should EXACTLY as it should. If it’s not then I take it out.

3. How do you manage users? How many users doing what? Are you running a 500 terminal render farm for 1000 users doing video editing wired and wireless across a 200km field, do you have 10 computer users (wired only) who are browsing the web for facebook and email only?!

3.b. Would WPA2 work? Well it could but if you have 200AP’s over 200km of buildings and you have to enter each password in manually then that’s not going to work, if you have one AP then that could work. However most people like to centralise their workload and run user management on a single solution. WPA won’t work for wired connection authentication, but you haven’t said if this is important.

I set up my mikrotik RB’s using command line and I keep a command line copyable text file so if I need to reformat and reinstall the board I just copy from the text file. There is no backup / restore function as seen on many consumer products but mikrotik assume their professional products are being set up by professionals who should be able to either script their setup (or file it like mine) and set any AP up in a matter of minutes that way. In addition I’ve had AP’s up and running for several years without needed the backup and restore function and the only reason I needed to log into them was add / remove functions.

It sounds like your learning the same way I did and that is the hard way. You can get your organisation to send you on Mikrotik courses which would really help, additionally there is a mikrotik book on sale http://www.routerosbook.com/.

The best thing to do in my mind is simplify your network completely by asking yourself a number of questions, which can direct you further.

What EXACTLY is “it” you are trying to do?
How EXACTLY do you see “it” working?
What EXACTLY do I need to do EXACTLY “it”?

Obviously this may give you more questions, but will direct you more specifically.

I.e. “I need to manage 250 users from a central location, limiting internet access to specific users, specific times and specific sites / ports, using ONLY 35 wifi AP’s across 5000sq meters of office space. I will use DHCP server and Garden wall. I will need an RB600 for user manager and internet sharing, 35 RB411 with R52h cards and 2 24port 100Mb/s switches.”