Greetings.
First let me give a little background on where I'm at. I basically fell into this job head first with my eyes closed because the last guy left (leaving no up-to-date documentation, no network diagrams, and no method of contact) and I just happen to be the guy who knows a little about Linux and computers. I have no formal training in system or network administration, except for two years of high-school CCNA courses. Sadly, I haven't used that knowledge for several years and much of it is gone from memory. I have insisted several times that I am not qualified, yet here I am... Is it trust? Ignorance? (I don't know for sure)
Anyway, we are a small town WISP with about 30 customers. At the office, there is a single ADSL line going to the MT box, which serves DHCP leases to two private networks: office and customer. The last MikroTik box that ran the show crashed shortly after I started helping out at the office (no redundancy). One technician replaced MT with Smoothwall, which didn't work out so well. My "on-the-job training" consisted of learning enough about MikroTik from the manuals to piece together a spare server, install MT on it, configure the interfaces and DHCP server, set up a basic firewall, and swap out the Smoothwall server live during the afternoon. I can safely say I was stressed out, but everything worked just fine.
So, now I am here asking how to implement a hardware failover setup after dealing with a motherboard failure today. I would like to have two MT boxes, both hot, with the same configuration. I plan to implement Hotspot authentication and accounting by MAC address soon, mainly for the security (we're wide open), but also to help ease the burden of per-user bandwidth control (mangling and queue trees work, but are not ideal). The version of MT I'm running is 2.9.49.
Is there a simple way to maintain the same configuration between the two boxes, including Hotspot user lists, and also provide a failover solution in case one dies? I've read about VRRP in the manuals and forums, but it seems to deal mainly with situations where there are two Internet connections. We only have the one DSL line.
How can I ensure a quick re-authentication of clients after a failover? With our current DHCP setup, even after I remove a DHCP lease, the client must either reboot their CPE or wait for the lease to expire. Shouldn't it expire immediately upon removing the lease? More to the point, is Hotspot any better at releasing and renewing?
I'm am sure there will be scripts to write to implement this. That is fine. I just need some pointers to get me started.
Any help is appreciated. If more information is needed, let me know. I'll make sure my replies are less verbose.