Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

MikroTik Basic Training Class - Online Moduls - English

1,245 views

Published on

MikroTik Basic Training Class - Online Moduls - English

Published in: Internet
  • Be the first to comment

MikroTik Basic Training Class - Online Moduls - English

  1. 1. Introducing MikroTik MikroTik Basic Training Class
  2. 2. Overview of RouterOS software and RouterBoard capabilities Hands-on training for MikroTik router configuration, maintenance and basic troubleshooting Course Objective
  3. 3. Router software and hardware manufacturer Products used by ISPs, companies and individuals Make Internet technologies faster, powerful and affordable to wider range of users About MikroTik
  4. 4. 1995: Established 1997: RouterOS software for x86 (PC) 2002: RouterBOARD is born 2006: First MUM MikroTik's History
  5. 5. www.mikrotik.com www.routerboard.com Riga, Latvia, Northern Europe, EU Where is MikroTik?
  6. 6. Where is MikroTik ?
  7. 7. RouterOS is an operating system that will make your device: a dedicated router a bandwidth shaper a (transparent) packet filter any 802.11a,b/g/n/ac wireless device What is RouterOS ?
  8. 8. The operating system of RouterBOARD Can be also installed on a PC What is RouterOS ?
  9. 9. Hardware created by MikroTik Range from small home routers to carrier-class access concentrators What is RouterBOARD ?
  10. 10. First Time Access Null Modem Cable Ethernet cable
  11. 11. The application for configuring RouterOS It can be downloaded from www.mikrotik.com Winbox
  12. 12. Download Winbox
  13. 13. Click on the Mac-Address in Winbox Default username “admin” and no password Connecting Winbox Ethernet Cable
  14. 14. • Click on the [...] button to see your router Connecting
  15. 15. Process of communication is divided into seven layers Lowest is physical layer, highest is application layer Communication
  16. 16. 1 9 It is the unique physical address of a network device It’s used for communication within LAN Example: 00:0C:42:20:97:68 It is logical address of network device MAC address
  17. 17. It is used for communication over networks Example: 159.148.60.20 2 0 IP
  18. 18. Range of logical IP addresses that divides network into segments Example: 255.255.255.0 or /24 Subnets
  19. 19. Network address is the first IP address of the subnet Broadcast address is the last IP address of the subnet They are reserved and cannot be used Subnets
  20. 20. Select IP address from the same subnet on local networks Especially for big network with multiple subnets Selecting IP address
  21. 21. Clients use different subnet masks /25 and /26 A has 192.168.0.200/26 IP address B use subnet mask /25, available addresses 192.168.0.129- 192.168.0.254 B should not use 192.168.0.129-192.168.0.192 B should use IP address from 192.168.0.193 - 192.168.0.254/25 Selecting IP address Example
  22. 22. Use Combined RouterOS package Drag it to the Files window Upgrading Router
  23. 23.  RouterOS functions are enabled by packages Package Management
  24. 24. Package Information
  25. 25.  Option to set name for each router Router Identity
  26. 26.  Identity information is shown in different places Router Identity
  27. 27.  Network Time Protocol, to synchronize time  NTP Client and NTP Server support in RouterOS NTP
  28. 28. To get correct clock on router For routers without internal memory to save clock information For all RouterBOARDs Why NTP
  29. 29.  NTP package is not required NTP Client
  30. 30. You can backup and restore configuration in the Files menu of Winbox Backup file is not editable Configuration Backup
  31. 31. Additionally use export and import commands in CLI Export files are editable Passwords are not saved with export /export file=conf-august-2009 / ip firewall filter export file=firewall-aug-2009 / file print / import [Tab] Configuration Backup
  32. 32. Used for installing and reinstalling RouterOS Runs on Windows computers Direct network connection to router is required or over switched LAN Available at www.mikrotik.com Netinstall
  33. 33.  1.List of routers  2.Net Booting  3.Keep old configuration  4.Packages  5.Install Netinstall
  34. 34. All RouterBOARDs shipped with license Several levels available, no upgrades Can be viewed in system license menu License for PC can be purchased from mikrotik.com or from distributors RouterOS License
  35. 35. License
  36. 36. Obtain License Login to your account
  37. 37. www.mikrotik.com - manage licenses, documentation forum.mikrotik.com - share experience with other users www.forummikrotik.com - share experience with other users wiki.mikrotik.com - tons of examples Useful Links
  38. 38. Bandwidth test can be used to monitor throughput to remote device Bandwidth test works between two MikroTik routers Bandwidth test utility available for Windows Bandwidth test is available on MikroTik.com Bandwidth Test Utility
  39. 39. Set Test To as testing address Select protocol TCP supports multiple connections Authentication might be required Bandwidth Test on Router
  40. 40. Plan network design carefully Take care of user’s local access to the network Use RouterOS features to secure local network resources Access to Local Network
  41. 41. ARP joins together client’s IP address with MAC-address ARP operates dynamically, but can also be manually configured • Address Resolution Protocol
  42. 42. ARP Table ARP table provides: IP address, MAC- address and Interface
  43. 43. To increase network security ARP entries can be crated manually Router’s client will not be able to access Internet with changed IP address Static ARP table
  44. 44. Add Static Entry to ARP table Set for interface arp=reply- only to disable dynamic ARP creation Disable/enable interface or reboot router Static ARP configuration
  45. 45. Dynamic Host Configuration Protocol Used for automatic IP address distribution over local network Use DHCP only in secure networks DHCP Server
  46. 46. To setup DHCP server you should have IP address on the interface Use setup command to enable DHCP server It will ask you for necessary information DHCP Server
  47. 47. Click on DHCP Setup to run Setup Wizard Select interface for DHCP server Set Network for DHCP, offered automatically Set Gateway for DHCP clients Set Addresses that will be given to clients DNS server address that will be assigned to clients Time that client may use IP addressWe are done! DHCP-Server Setup
  48. 48. 4 To configure DHCP server on bridge, set server on bridge interface DHCP server will be invalid, when it is configured on bridge port Important
  49. 49.  Leases provide information about DHCP clients DHCP Server Information
  50. 50.  Show or hide different Winbox columns Winbox Configuration Tip
  51. 51. We can make lease to be static Client will not get other IP address Static Lease
  52. 52. DHCP-server could run without dynamic leases Clients will receive only preconfigured IP address Static Lease
  53. 53. ip route rules define where packets should be sent Let’s look at /ip route rules Route
  54. 54. Destination: networks which can be reached Gateway: IP of the next router to reach the destination Routes
  55. 55.  Default gateway: next hop router where all (0.0.0.0) traffic is sent Default Gateway
  56. 56. Look at the other routes Routes with DAC are added automatically DAC route comes from IP address configuration Dynamic Routes
  57. 57. A - active D - dynamic C - connected S - static Routes
  58. 58. Our goal is to ping neighbor laptop Static route will help us to achieve this Static Routes
  59. 59. Static route specifies how to reach specific destination network Default gateway is also static route, it sends all traffic (destination 0.0.0.0) to host - the gateway Static Route
  60. 60. Additional static route is required to reach your neighbor laptop Because gateway (teacher’s router) does not have information about student’s private network Static Route
  61. 61. Remember the network structure Neighbor’s local network is 192.168.x.0/24 Ask your neighbor the IP address of their wireless interface Route to Your Neighbor
  62. 62. Network Structure 2 2
  63. 63. Add static route Set Destination and Gateway Try to ping Neighbor’s Laptop Route Your Neighbor
  64. 64. The same configuration is possible with dynamic routes Imagine you have to add static routes to all neighbors networks Instead of adding tons of rules, dynamic routing protocols can be used Dynamic Routes
  65. 65. Easy in configuration, difficult in managing/troubleshooting Can use more router resources Dynamic Routes
  66. 66. We are going to use OSPF OSPF is very fast and optimal for dynamic routing Easy in configuration Dynamic Routes
  67. 67. Add correct network to OSPF OSPF protocol will be enabled OSPF configuration

×