I would like some help with my Mikrotik devices, in order to configure them properly.
I REALLY, REALLY don't want to eat-up your time, but I will try to be as precise as possible in describing my situation, as to avoid any confusion.
You can SKIP most of the post. My question is rounded-up in the end in RED !!
- How much do I know ? // (you can skip this)
I've setup very general and simple networks before for my Home or sites where I installed IP cameras, but this is my first time using Mikrotik and I'm not a network-guy. I need to state this. (newbie)
- What devices I want to connect together? // (you can skip this)
- I have the usual suspects (PCs, Laptops, Phones, Consoles, TVs etc)
- I have an unRaid server where I run many dockers for different things, my Home Assistant, and obviously my File NAS.
- I have quite a lot of IoT devices, at the momment 100% on WiFi. I plan on upgrading to ZigBee, but everything is still on WiFi. 90% DIY devices using ESPHome.
- My Home network, also extends to my Restaurant/Coffee shop using Access Points, where my customers need Wi-Fi access. (20-50 users)
- Which network Devices to I have and plan to use ?
- My "modem" is an LHG-LTE18 which I LOVE. <3 (I use 4G LTE as my Internet connection due to ultra low DSL speeds in my area) (DSL 4Mbps, LHG achieves 450/90Mbps)
- As a Router, I've JUST bought the RB5009UG+S+IN
- And for a Switch I got the CSS326-24G-2S+
- For Access Points I use my old UniFi AC AP LRs
- Some History ! // (you can skip this)
Up till now, I had just the LHG, connected to an old switch, and in turn, to a couple of computers and the Access Points. Everything worked great and I had no problems.
Obviously, the LHG was also on Router-Duty.
Then I also bought the CSS326 and I ran UTP cables to every device I could. Again, followed the guides online, and everything works GREAT.
Then, I cut my land-line all together, since the LHG and my 4G connection seem to be handling everything, even heavy-gaming without a sweat. In order to keep my home's phone number, I registered with a VoIP provider. And here is the first problem.
- Some Problems !
Problem 1:
My ISP in Greece, (COSMOTE) has two different APNs I can use.
- "internet" // Gives me full-speed, but I'm sitting behind a CG-NAT apparently.
- "vpn-internet" // Gives my a Public IP so I can port forward to my server (and I quite need that) but limits my speed to 150/50Mbps. Which is a lot slower than the 450/90Mbps I get normally.
Other than the bandwidth limitations, when I use the "internet" APN, sitting behind the CG-NAT, my VoIP client devices work 20% of the time. Switching to 'vpn-internet' solves the problem immediately.
Problem 2:
When I use the "internet" APN and I'm sitting behind a CG-NAT, I can't access my network using normal port-forwarding. I found a work-arround using Cloudflared Tunnels, and nGinx Proxy Manager, but still, that's not the ultimate solution I'd wish for. Outside (public) access to my Server, is almost PARAMOUNT to me, as I self-host my password managers, media managers, NVR software, cloud storage, home assistant, etc.
(Using VPN was also a solution, up to a point when I decided to share my apps (like my Media Library) with my friends. I can't setup my VPN for everyone that wants to access my server.)
It needs to be as simple as going to www.mysite123.com.
I've seen a guide, on how to setup SOME devices in my network to use a different APN (simultaneously) giving me the best of both worlds.
But still, I went a step further and bought the RB5009 wishing to achieve something I don't know how to build or IF POSSIBLE at all yet.
The experienced guy from whom I learned the "Dual APN" trick, told me that I can't use it if I want to use my RB5009 as a Router, and I would have to stay with the LHG only.
- How I would like things to be:
- I want to use the RB5009 as my main Router.
- I want to use the LHG-LTE18 as a "Modem-only". I don't want it to do routing or DHCP or anything else.
- If DUAL APNs isn't possible with a seperate router, I was thinking if it's possible using a USB 4G Modem on the RB5009, with the "vpn-internet" APN, so I can have outside access to my network using port forwarding. (I currently use Cloudflare Tunnels)
- I also want my VoIP phone to work all the time, so I have to use that "vpn-internet" APN somehow but without sacrificing my speed. (same as above)
- I want to buy another LHG in the possibly near-future (if the wife agrees ) to do some load balancing or replace the USB Modem all-together. Load Balancing is something I want to dive into.
- I would like my Server to have a 2.5G (or 10G in the future) connection to my computer. But most importantly, I want to be able to access my network and especially this server from the outside.
- If I could somehow get advantage of the high-speed "internet" APNs, and the public-ip properties of the "vpn-internet" that would be great.
So, without (sorry for the expression) busting your balls any more, is there a way to achieve "Dual APNs" on the LHG, still use the RB5009 as a router, or use a second LTE modem on USB ?
Or both ? Or what would you suggest.
And How do I setup the LHG as a modem only, using "Passthrough Mode" ? I've read here on the forum that I have to enable VLANS for management, but I'm really confused and don't want to break something on my lovely devices.
PS. If someone wants to take the time, to solve my issue, as I am aware that time isn't free, I would be willing to buy you a coffee. <3
Thanks in advance, and I'm sorry for the long post.
PS2. I KNOW I could buy UniFi devices, or TP-Link devices, since I am quite the noob, and I would have better luck with setting up those, but I REALLY want to learn RouterOS, at least on a basic level, cause not only does it seem interesting to me, but also I'd like to use Mikrotik devices from now on, when I'm setting up NVRs and cameras, for friends. (I do this as a Hobby)
That being said, I don't think the others have the power that RouterOS has from what I've seen up till now.
Please feel free to ask me anything. <3 May you have a good day !