MikroTik RouterOS ™, a Linux operating system which is applied as a base
network routers. Designed to provide convenience to users. Administration could
done through the Windows application (WinBox). In addition, the installation can be done on
Standard computer PC. PC that will be used as a router does not require resource mikrotikpun
large enough to use standard, for example, only the gateway. For
for large load (complex networks, complex routing, etc.) is recommended for
consider the selection of an adequate resource PCs.
Facilities on the proxy are as follows:
- Protokoll Routing RIP, OSPF, BGP.
- Statefull firewall
- HotSpot for Plug-and-Play access
- Winbox GUI remote admin
More can be found at www.mikrotik.com.
However Mikrotik is not free software, meaning we have to buy licenses to
all facilities provided. Free trial only for 24 hours. We can buy software
proxy in the form of a CD that is installed on the hard disk or disk on module (DOM). If we
buy DOM does not need to install the DOM but stay stuck on our PC IDE slot.
The following steps are the basics of setup mikrotik configured for the network
simple as a gateway server.
1. The first step is to install RouterOS on a PC or connect the DOM.
2. Log In Mikrotik Routers via console:
MikroTik v2.9.7
Login: admin
Password:
Until this step we can go on Mikrotik machine. The default user is admin
and without a password, just type admin and press the enter key.
3. To change the default password security
password" onmouseover="this.style.backgroundColor='#ebeff9'" onmouseout="this.style.backgroundColor='#fff'">[Admin @ Mikrotik]> password
old password: *****
New password: *****
Retype new password: *****
" onmouseover="this.style.backgroundColor='#ebeff9'" onmouseout="this.style.backgroundColor='#fff'">[Admin @ Mikrotik]]>
4. Changing the name of the Mikrotik Router, in this step the server name will be changed to "Waton"
system identity set name=Waton" onmouseover="this.style.backgroundColor='#ebeff9'" onmouseout="this.style.backgroundColor='#fff'">[Admin @ Mikrotik]> system identity set name = Waton
" onmouseover="this.style.backgroundColor='#ebeff9'" onmouseout="this.style.backgroundColor='#fff'">[Admin @ Waton]>
5. Viewing interface on Router Mikrotik
interface print" onmouseover="this.style.backgroundColor='#ebeff9'" onmouseout="this.style.backgroundColor='#fff'">[Admin @ Mikrotik]> interface print
Flags: X - disabled, D - dynamic, R - running
# NAME TYPE RX-RATE TX-RATE MTU
0 R ether1 ether 0 0 1500
1 R ether2 ether 0 0 1500
" onmouseover="this.style.backgroundColor='#ebeff9'" onmouseout="this.style.backgroundColor='#fff'">[Admin @ Mikrotik]>
6. Provides the IP address on the interface Mikrotik. Suppose ether1 we will use to
connection to the Internet with IP 192.168.0.1 and ether2 we will use to local network
us with IP 172.16.0.1
ip address add address=192.168.0.1" onmouseover="this.style.backgroundColor='#ebeff9'" onmouseout="this.style.backgroundColor='#fff'">[Admin @ Waton]> ip address add address = 192.168.0.1
netmask = 255.255.255.0 interfac
e = ether1
ip address add address=172.16.0.1" onmouseover="this.style.backgroundColor='#ebeff9'" onmouseout="this.style.backgroundColor='#fff'">[Admin @ Waton]> ip address add address = 172.16.0.1
netmask = 255.255.255.0 interfac
e = ether2
7. Viewing the configuration IP address that we have given
ip address print" onmouseover="this.style.backgroundColor='#ebeff9'" onmouseout="this.style.backgroundColor='#fff'">[Admin @ Waton]> ip address print
Flags: X - disabled, I - invalid, D - dynamic
# ADDRESS NETWORK BROADCAST INTERFACE
0 192.168.0.1/24 192.168.0.0 192.168.0.63 ether1
1 172.16.0.1/24 172.16.0.0 172.16.0.255 ether2
" onmouseover="this.style.backgroundColor='#ebeff9'" onmouseout="this.style.backgroundColor='#fff'">[Admin @ Waton]>
8. Provide default gateway, it is assumed gateway for internet connection is
192.168.0.254
/ip route add gateway=192.168.0.254" onmouseover="this.style.backgroundColor='#ebeff9'" onmouseout="this.style.backgroundColor='#fff'">[Admin @ Waton]> / ip route add gateway = 192.168.0.254
9. Viewing the routing table on Mikrotik Routers
ip route print" onmouseover="this.style.backgroundColor='#ebeff9'" onmouseout="this.style.backgroundColor='#fff'">[Admin @ Waton]> ip route print
Flags: X - disabled, A - active, D - dynamic,
C - connect, S - static, r - rip, b - bgp, o - OSPF
# DST-ADDRESS G GATEWAY DISTANCE INTERFACE PREFSRC
0 ADC 172.16.0.0/24 172.16.0.1 ether2
1 ADC 192.168.0.0/26 192.168.0.1 ether1
2 A S 0.0.0.0 / 0 r 192.168.0.254 ether1
" onmouseover="this.style.backgroundColor='#ebeff9'" onmouseout="this.style.backgroundColor='#fff'">[Admin @ Waton]>
10. Ping test to the Gateway to ensure correct configuration
ping 192.168.0.254" onmouseover="this.style.backgroundColor='#ebeff9'" onmouseout="this.style.backgroundColor='#fff'">[Admin @ Waton]> ping 192.168.0.254
" onmouseover="this.style.backgroundColor='#ebeff9'" onmouseout="this.style.backgroundColor='#fff'">192.168.0.254 64 byte ping: ttl = 64 time <1 ttl = "64" max = "0/0.0/0">
11. Setup DNS on Mikrotik Routers
ip dns set primary-dns=192.168.0.10 allow-remoterequests=" onmouseover="this.style.backgroundColor='#ebeff9'" onmouseout="this.style.backgroundColor='#fff'">[Admin @ Waton]> ip dns set primary-dns = 192.168.0.10 allow-remoterequests =
no
ip dns set secondary-dns=192.168.0.11 allow-remoterequests=" onmouseover="this.style.backgroundColor='#ebeff9'" onmouseout="this.style.backgroundColor='#fff'">[Admin @ Waton]> ip dns set secondary-dns = 192.168.0.11 allow-remoterequests =
no
12. Looking at the DNS configuration
ip dns print" onmouseover="this.style.backgroundColor='#ebeff9'" onmouseout="this.style.backgroundColor='#fff'">[Admin @ Waton]> ip dns print
primary-dns: 192.168.0.10
secondary-dns: 192.168.0.11
allow-remote-requests: no
cache-size: 2048KiB
cache-max-ttl: 1W
cache-Used: 16KiB
" onmouseover="this.style.backgroundColor='#ebeff9'" onmouseout="this.style.backgroundColor='#fff'">[Admin @ Waton]>
13. Tests for domain access, for example by pinging a domain name
ping yahoo.com" onmouseover="this.style.backgroundColor='#ebeff9'" onmouseout="this.style.backgroundColor='#fff'">[Admin @ Waton]> ping yahoo.com
64 216 109 112 135 byte ping: ttl = 48 time = 250 ms
10 packets transmitted, 10 packets received, 0% packet loss
round-trip min / avg / max = 571/571.0/571 ms
" onmouseover="this.style.backgroundColor='#ebeff9'" onmouseout="this.style.backgroundColor='#fff'">[Admin @ Waton]>
If you have successfully reply mean DNS settings are correct.
14. Setup Masquerading, if Mikrotik will we use as a gateway server then for
client computer on the network can be connected to the internet we need to masquerading.
ip firewall nat add action=masquerade outinterface=" onmouseover="this.style.backgroundColor='#ebeff9'" onmouseout="this.style.backgroundColor='#fff'">[Admin @ Waton]> ip firewall nat add action = masquerade outinterface =
ether1
chain: srcnat
" onmouseover="this.style.backgroundColor='#ebeff9'" onmouseout="this.style.backgroundColor='#fff'">[Admin @ Waton]>
15. Looking at the configuration Masquerading
[Admin @ Waton] ip firewall nat print
Flags: X - disabled, I - invalid, D - dynamic
0 chain = srcnat out-interface = ether1 action = masquerade
" onmouseover="this.style.backgroundColor='#ebeff9'" onmouseout="this.style.backgroundColor='#fff'">[Admin @ Waton]>
After this step can be carried out checks for connections from local network. And if
means we have successfully managed to install Mikrotik as Gateway Router
server. After connecting to the network using Mikrotik can dimanage WinBox
which can be downloaded from Mikrotik.com or from our proxy server. Eg Ip address server
our proxy 192.168.0.1, via a browser and open http://192.168.0.1 WinBox download from there.
If we want the client get the IP address automatically then we need to setup
dhcp server on the Mikrotik. Here are the steps:
1.Buat IP address pool
/ Ip pool add name = dhcp-pool ranges = 172.16.0.10-172.16.0.20
2. Add a DHCP Network and gateway that will be distributed to the client
In this example networknya is 172.16.0.0/24 and gateway 172.16.0.1
/ Ip dhcp-server network add address = 172.16.0.0/24 gateway = 172.16.0.1
3. Add a DHCP server (in this example applied to the interface dhcp ether2)
/ Ip dhcp-server add interface = ether2 address-pool = dhcp-pool
4. See the status of the DHCP server
ip dhcp-server print" onmouseover="this.style.backgroundColor='#ebeff9'" onmouseout="this.style.backgroundColor='#fff'">[Admin @ Waton]> ip dhcp-server print
Flags: X - disabled, I - invalid
# NAME INTERFACE RELAY ADDRESS-POOL LEASE-TIME ADD-ARP
0 X dhcp1 ether2
X states that the DHCP server has not enabled it is necessary first dienablekan
advance in step 5.
5. Do not Forget made first enable dhcp server
/ Ip dhcp-server enable 0
then check back to dhcp-server such as step 4, if an X has no meaning
already active.
6. Test From Client
Bibliography
http://mikrotik.com

Mikrotik RouterOS is the operating system and software that can be used to make ordinary computer into a powerful network router, includes many features designed for IP networks and wireless networks.

These features include: Firewall & Nat, Routing, Hotspot, Point to Point Tunneling Protocol, DNS servers, DHCP servers, Hotspot, and many other features.
Mikrotik can be used in 2 types, namely in the form of hardware and software. In the form of hardware, Mikrotik usually already installed on a particular board, while in the form of software, Mikrotik is a Linux distribution that is devoted to the function of the router.

Mikrotik 2

MikroTik RouterOS ™, is the base Linux operating system which is applied as a network router. Designed to provide convenience to users. Administration can be done through a Windows Application (WinBox). In addition, the installation can be done on the Standard PC (Personal
Computer). PC that will be used as a router mikrotik did not require substantial resources for the use of standards, for example, only the gateway. For the purposes of a large load (complex networks, complex routing) is recommended to consider the selection of an adequate resource PCs.


1.4.1 History of MikroTik RouterOS


MikroTik is a small company headquartered in Latvia, adjacent to Russia. Formation initiated by John Trully and Arnis Riekstins. John Trully is an American citizen who immigrated to Latvia. In Latvia he bejumpa with Arnis, A darjana Physics and Mechanical around 1995. John and Arnis began routing the world in 1996 (the mission is merouting MikroTik worldwide). Starting with the Linux system and MS-DOS technology combined with Wireless-LAN (WLAN) Aeronet speed of 2 Mbps in Moldova, neighboring Latvia, then serving five customers in Latvia. Their basic principle is not to make the Wireless ISP (W-ISP), but making the program a reliable router and can be run throughout the world. Latvia is the only place John and Arnis experiment, because now they have helped other countries including Sri Lanka which serves about 400 users.
First used Linux Kernel 2.2 is developed jointly denag 5-15 staff assistance Research and Development (R & D) which now rules the world MikroTik routing in developing countries. According to Arnis, in addition to staffs of the MikroTik, they also recruit tenega-freelancers and third parties to develop an intensive marathon MikroTik.


2.3.2 TYPES OF MIKROTIK


1. MikroTik RouterOS the form of software that can be downloaded at www.mikrotik.com. Can be installed on a home kompuetr (PC).
2. BUILT-IN MikroTik Hardware in the form of special hardware that is packaged in a board inside the router that was installed MikroTik RouterOS.


2.3.4 FEATURES MIKROTIK
1. Address List: The grouping of IP addresses by name
2. Asynchronous: Supports serial PPP dial-in / dial-out, with CHAP authentication,
PAP, MSCHAPv1 and MSCHAPv2, Radius, dial on demand, a modem pool to 128 ports.
3. Bonding: Supports in combining multiple Ethernet interfaces into 1 pipe on a fast connection.
4. Bridge: Supports the function of bridge spinning tree, multiple bridge interfaces, bridging firewalling.
5. Data Rate Management: HTB-based QoS with the use of burst, pcq, RED, SFQ, FIFO queue, CIR, MIR, limit between peer to peer
6. DHCP: Supports DHCP per interface, DHCP Relay, DHCP Client, multiple DHCP networks; static and dynamic DHCP leases.
7. Firewall and NAT: Supports peer to peer connection filtering, source NAT and destination NAT. Able to filter based on MAC, IP address, port range, IP protocols, protocol options selection such as ICMP, TCP Flags and MSS.
8. Hotspot: Hotspot Gateway with RADIUS authentication. Supports data rate limit, SSL, HTTPS.
9. IPSec: AH and ESP protocols for IPSec, Diffie-Hellmann MODP groups 1, 2, 5; MD5 and SHA1 hashing algorithms; enkirpsi algorithm using DES, 3DES, AES-128, AES-192, AES-256; Perfect Forwarding Secresy (PFS ) MODP groups 1, 2.5
10. ISDN: ISDN dial-in/dial-out support. With authentication PAP, CHAP, MSCHAPv2 MSCHAPv1 and, Radius. Supports 128K bundle, Cisco HDLC, x751, x75ui, x75bui line protocol.
11. M3P: MikroTik Packet Packer Protocol for Wireless links and Ethernet.
12. MNDP: MikroTik Discovery Protocol neighbor, also supports Cisco Discovery Protocol (CDP).
13. Monitoring / Accounting: IP Traffic Reports, logs, statistics graphs accessible via HTTP.
14. NTP: Network Time Protocol for servers and clients; synchronization using GPS systems.
15. Point to Point Tunneling Protocol: PPTP, PPPoE and L2TP Access Consentrator; protocol authentication using PAP, CHAP, MSCHAPv1, MSCHAPv2; authentication and Radius reports; MPPE encryption, compression for PPPOE; limit the data rate.
16. Proxy: cache for FTP and HTTP proxy server, HTTPS proxy, transparent proxy for DNS and HTTP; supports the SOCKS protocol; support the parent proxy; static control.
17. Routing: Static and dynamic routing, RIP v1/v2, OSPF v2, BGP v4.
18. SDSL: Supports Single Line DSL; mode line termination and network connections.
19. Simple Tunnel: Tunnel ipip and EoIP (Ethernet over IP).
20. SNMP: Simple Network Monitoring Protocol read-only access mode.
21. Synchronous: V.35, V.24, E1/T1, X21, DS3 (T3) media ttypes; sync-PPP, Cisco HDLC, Frame Relay line protocols; ANSI-617d (ANDI or annex D) and Q933a (CCITT or annex A); Frame Relay LMI types.
22. Tool: Ping, Traceroute, bandwidth test, ping flood, telnet, SSH, packet sniffer; Dynamic DNS updates.
23. UPnP: Supports Universal Plug and Play interface.
24. VLANs: Supports IEEE 802.1q Virtual LAN for ethernet and wireless networks, multiple VLANs, VLAN bridging.
25. VoIP: Support for voice over IP applications.
26. VRRP: Virtual Router Support Redudant Protocol.
27. WinBox: Application GUI mode to remotely and configure MikroTik
RouterOS.