I currently have a MikroTik CCR1009-7G-1C-1S+ supporting our services and our equipment in Hetzner's datacenter, where we have a 1/3 rack, 14U. We are currently having a 1 gigabit connection from Hetzner (copper/ethernet) and our IPv4 and IPv6 subnets (we are RIPE members) are announced by Hetzner. Because of that, the IPs are shown with their AS number and they are getting blacklisted every time Hetzner's ASN is blacklisted by "UCE Protect". This has happened already 3-4 times in less than a year and that shitty situation affects our services, even if our IPs are crystal clear and our customers are not spamming.
In order to avoid that, Hetzner has suggested us to upgrade our connection with a redundant Internet upstream with two 1Gbit/s fiber optic connection and personal BGP Session. In order to do that, we will have to upgrade our rack, because it's full already and there is no space for the fiber optics patch panel, but we will also most probably need a second router as well. I am not sure if the current router (MikroTik CCR1009-7G-1C-1S+) is good enough for that and if it would be okay to buy a second one same model or should I upgrade to something better, like MikroTik CCR2116-12G-4S+.
The subnets we own and which we would like to announce ourselves are a /24 IPv4 and a /29 IPv6. The real traffic is usually no more than 50-100 Mbps. There may be some picks with higher bandwidth, but these are just for a few moments of a few seconds.
In truth I have several questions about all this. Here are the most important that comes in my mind:
- Is the old router (CCR1009-7G-1C-1S+) good enough for my needs?
- Should the two routers be the same model or could I keep the old one as secondary and just buy a new one as primary selecting a better and newer model, like CCR2116-12G-4S+?
- Will they operate on a failover scenario or will they operate like load balancing?
- How could I configure something like that (redundancy) for this purpose of use? Are there instructions, tutorial or videos that you would suggest me?
- How difficult is to configure that BGP and make the announcement yourself? Are there instructions, tutorial or videos that you would suggest me?
Thank you so much in advance for your support and your answers, which are always very much appreciated.
With kind regards,
Angelos Pitsos