MikroTik Other Features


Backup/Restore
Binary configuration backup saving and loading
Configuration export and import in human readable text format

Firewall
Statefull filtering
Source and destination NAT
NAT helpers (h323, pptp, quake3, sip, ftp, irc, tftp)
Internal connection, routing and packet marks
Filtering by IP address and address range, port and port range, IP protocol, DSCP and many more
Address lists
Custom Layer7 matcher
IPv6 support
PCC – per connection classifier, used in load balancing configurations

Routing
Static routing
Virtual Routing and Forwarding (VRF)
Policy based routing
Interface routing
ECMP routing
IPv4 dynamic routing protocols: RIP v1/v2, OSPFv2, BGP v4
IPv6 dynamic routing protocols: RIPng, OSPFv3, BGP
Bidirectional Forwarding Detection ( BFD)

MPLS
Static Label bindings for IPv4
Label Distribution protocol for IPv4
RSVP Traffic Engineering tunnels
VPLS MP-BGP based autodiscovery and signaling
MP-BGP based MPLS IP VPN
Complete list of MPLS features

VPN
Ipsec – tunnel and transport mode, certificate or PSK, AH and ESP security protocols. Hardware encryption support on RouterBOARD 1000.
Point to point tunneling (OpenVPN, PPTP, PPPoE, L2TP, SSTP)
Advanced PPP features (MLPPP, BCP)
Simple tunnels ( IPIP, EoIP) IPv4 andIPv6 support
6to4 tunnel support (IPv6 over IPv4 network)
VLAN – IEEE802.1q Virtual LAN support, Q-in-Q support
MPLS based VPNs

Wireless
IEEE802.11a/b/g wireless client and access point
Full IEEE802.11n support
Nstreme and Nstreme2 proprietary protocols
NV2 protocol
Wireless Distribution System (WDS)
Virtual AP
WEP, WPA, WPA2
Access control list
Wireless client roaming
WMM
HWMP+ Wireless MESH protocol
MME wireless routing protocol

DHCP
Per interface DHCP server
DHCP client and relay
Static and dynamic DHCP leases
RADIUS support
Custom DHCP options
DHCPv6 Prefix Delegation (DHCPv6-PD)
DHCPv6 Client

Hotspot
Plug-n-Play access to the Network
Authentication of local Network Clients
Users Accounting
RADIUS support for Authentication and Accounting

QoS
Hierarchical Token Bucket ( HTB) QoS system with CIR, MIR, burst and priority support
Simple and fast solution for basic QoS implementation – Simple queues
Dynamic client rate equalization ( PCQ)

Proxy
HTTP caching proxy server
Transparent HTTP proxy
SOCKS protocol support
DNS static entries
Support for caching on a separate drive
Parent proxy support
Access control list
Caching list

Tools
Ping, traceroute
Bandwidth test, ping flood
Packet sniffer, torch
Telnet, ssh
E-mail and SMS send tools
Automated script execution tools
CALEA
File Fetch tool
Advanced traffic generator

Advertisements

MikroTik Hardware Support


Hardware Support
i386 compatible architecture
SMP – multi-core and multi-CPU compatible
Minimum 32MB of RAM (maximum supported 2GB, except on Cloud Core devices and CHR installations, where there is no maximum)
IDE, SATA, USB and flash storage medium with minimum of 64MB space
Network cards supported by linux v3.3.5 kernel (PCI, PCI-X)
Partial hardware compatibility list (user maintained)
Switch chip configuration support

Ethernet chipsets
The lists contain most common ethernet chipset drivers from the Linux kernel.

RouterOS version 5 (Linux 2.6.35)
1000: Intel(R) PRO/1000 Network Driver – version 7.3.21-k6-NAPI
e1000e: Intel(R) PRO/1000 Network Driver – 1.0.2-k4
igb: Intel(R) Gigabit Ethernet Network Driver – version 2.1.0-k2
bnx2: Broadcom NetXtreme II Gigabit Ethernet Driver bnx2 v2.0.15 (May 4, 2010)
tg3: c:v3.110 (April 9, 2010)
atl1c: version 1.0.0.2-NAPI
r8169: Gigabit Ethernet driver 2.3LK-NAPI
sky2: driver version 1.28

RouterOS version 6 (Linux 3.3.5)
e1000: Intel(R) PRO/1000 Network Driver – version 7.3.21-k8-NAPI
e1000e: Intel(R) PRO/1000 Network Driver – 1.5.1-k
igb: Intel(R) Gigabit Ethernet Network Driver – version 3.2.10-k
bnx2: Broadcom NetXtreme II Gigabit Ethernet Driver bnx2 v2.2.1 (Dec 18, 2011)
tg3: c:v3.122 (December 7, 2011)
atl1c: version 1.0.0.2-NAPI
r8169: Gigabit Ethernet driver 2.3LK-NAPI
sky2: driver version 1.30

RouterOS on x86 have these modules enabled
USB_PEGASUS
USB_RTL8150
USB_USBNET
USB_NET_AX8817X
USB_NET_CDCETHER
USB_HSO

RouterOS on mips have these modules enabled:
USB_NET_MCS7830
USB_NET_AX8817X
USB_NET_CDCETHER
USB_HSO
USB_USBNET

AX88178 (USB2.0 Gigabit Ethernet) recognized but Not working.

MikroTik Features


MikroTik Features
RouterOS supports many applications used by Internet service providers, for example OSPF, BGP, Multiprotocol Label Switching (VPLS/MPLS), OpenFlow. The product is supported by Mikrotik through a forum and a wiki, providing assorted and thematic examples of configurations. RouterOS supports Internet Protocol Version 4 (IPv4) as well as Internet Protocol Version 6 (IPv6).

The software provides support for virtually all network interfaces that the Linux kernel 3.3.5 supports, except wireless, where the Atheros chipsets are the only supported hardware, as of RouterOS version 6.3

Other Features
Samba support
OpenFlow support
Bridging – spanning tree protocol (STP, RSTP), bridge firewall and MAC natting.
Dynamic DNS update tool
NTP client/server and synchronization with GPS system
VRRP v2 and v3 support
SNMP
M3P – MikroTik Packet packer protocol for wireless links and ethernet
MNDP – MikroTik neighbor discovery protocol, supports CDP (Cisco discovery protocol)
RADIUS authentication and accounting
TFTP server
Synchronous interface support (Farsync cards only) (Removed in v5.x)
Asynchronous – serial PPP dial-in/dial-out, dial on demand
ISDN – dial-in/dial-out, 128K bundle support, Cisco HDLC, x75i, x75ui, x75bui line protocols, dial on demand

What is MikroTik


MikroTik
Mikrotīkls SIA, known internationally as MikroTik, is a Latvian manufacturer of computer networking equipment. It sells wireless products and routers. The company was founded in 1996, with the intent to sell in the emerging wireless technology market. As of 2015, the company has more than 160 employees. The company’s products are known for being low-priced alternatives to expensive routers and Ethernet radio relay lines.

topologi-mikrotik11

RouterOS
The main product of MikroTik is an operating system based on the Linux kernel, known as the MikroTik RouterOS. Installed on the company’s proprietary hardware (RouterBOARD series), or on standard x86-based computers, it turns a computer into a network router and implements various additional features, such as firewalling, virtual private network (VPN) service and client, bandwidth shaping and quality of service, wireless access point functions and other commonly used features when interconnecting networks. The system is also able to serve as a captive-portal-based hotspot system.

The operating system is licensed in increasing service levels, each releasing more of the available RouterOS features. A MS Windows application called Winbox provides a graphical user interface for the RouterOS configuration and monitoring, but RouterOS also allows access via FTP, telnet, and secure shell (SSH). An application programming interface is available for direct access from applications for management and monitoring.

image010

Radius Server is not Responding


NAS IP address or secret key is not defined in ACP (Radius Manager also updates clients.conf)
To determine the correct NAS IP1

Check NAS IP
Check Secret Name

2

Stop Freeradius Service
service radiusd stop
(or)
ps ax|grep radius
kill [pid]

Testing Freeradius
radiusd -X

Service Freeradius Details
Service radius stop  [Failed]
Service radius start [Failed]

Freeradius Status
If Service [Failed] Freeradius is not working

Re-Installation of Freeradius
Download Freeradius
www.dmasoftlab.com/cont/download/freeradius-server-2.2.0-dma-patch-2.tar.gz
cd freeradius-server-2.2.0
./configure
make
make install

Blank Screen Due to PHP Issue


Check PHP Version
php -v

Download & Install Ioncube
32 Bit Files
cd /usr/local
wget http://www.dmasoftlab.com/cont/download/ioncube_loaders_lin_x86.tar.gz
tar -xvf ioncube_loaders_lin_x86.tar.gz
cd /ioncube

64 Bit Files
cd /usr/local
wget http://www.dmasoftlab.com/cont/download/ioncube_loaders_lin_x86-64.tar.gz
tar -xvf ioncube_loaders_lin_x86-64.tar.gz
cd /ioncube

Check Ioncube Files in /usr/local
/usr/local/ioncube/loader-wizard.php

Copy loader File to Web Root
sudo cp loader-wizard.php /var/www (Ubuntu)
sudo cp loader-wizard.php /var/www/html/ (CentOS)

Edit php.ini Configure File & Add Ioncube File extension location
Ubuntu Version
vim /etc/php5/apache2/php.ini
zend_extension=/usr/local/ioncube/ioncube_loader_lin_5.3.so
CentOS Version
vim /etc/php.ini
zend_extension=/usr/local/ioncube/ioncube_loader_lin_5.3.so

Re-Start Apache Service
service apache2 restart
(or)
service httpd restart

Check Ioncube Loader in Web Interface
http://IP-Address/loader-wizard.php
Click on Local Install
1

Loader Installed (PHP Will Work)2

Radius Manager Key Features


Radius Manager Key Features
WEB Interface
Easy to use and always available multi lingual WEB interface.

Fully Separated Code & Design
You can easily customize the GUI to fit your needs.

Compatibility
100% Compatible with FreeRadius & Mikrotik Router OS v 2.7 and Newer.

MySQL Database Integration
Utilizes a free MySQL database engine which is a part of every Linux distribution.

Account Management
All operations are realizable using the WEB GUI.

RADIUS & DOCSIS Support
Control multiple NAS and CMTS devices and DOCSIS compliant cable modems.

Traffic Statistics
You can easily track the user’s traffic on a yearly, monthly and daily basis.

Users Control Panel
Users can track their traffic, used and remaining MegaBytes, online time, they can change their RADIUS and Linux password, purchase credits online etc.

Online Users List
Detailed list of the connected users.

Find Users Easily
Search the database by various criterias.

Payment Tracking
Users and resellers can track the payments and generate reports.

IP Connection Tracking
CTS module logs the source and destination IP addresses, ports, the used protocol, date and time.

Services
You can group the accounts using freely definable services and user groups.

Clear Design
Clear and logical design helps You to control thousands of accounts easily.

Docsis Support


DOCSIS Support
Radius Manager DOCSIS version is capable of controlling DOCSIS compliant CMTS and cable modem based networks.
The system is DHCP based. Automatically manages the DHCP server records (CPE and CM entries). The supported Docsis Functions are as follows Below

Fully WEB based account and service management
Detailed overview of registered cable modems
Multiple CMTS support
Controlling the data rate of each CM via regular services
Account expiry control; automatically disables the expired accounts
Support for postpaid and prepaid billing plans
Connection Tracking System (CTS) support for cable users

Please note a DHCP based DOCSIS system has no accounting data available like RADIUS systems, so there is no support for traffic and online time based services. The automatic disconnection of expired accounts (date) function is available for prepaid flat accounts.

The DOCSIS cable modem TFTP boot file is generated automatically. The administrator defines a cable service like regular RADIUS service. The data rate can be entered directly in the WEB form. The system uses a predefined DOCSIS TFTP boot file template for generating the boot file which is customizable globally or per service.