The main product of MikroTik is a Linux-based operating system

known as MikroTik RouterOS. It lets users turn a selected PC-

based machine into a software router, allowing features such as
firewall rules, VPN Server and Client, bandwidth shaper Quality of
Service, wireless access point and other commonly used features
for routing and connecting networks together. The system is also
able to serve as a captive-portal based hotspot system. The
operating system is licensed in escalating levels, each releasing
more of the available RouterOS features as the level number rises.
Licensing is fee based and escalates with the released features.
There is a software called Winbox which provides a sophisticated
GUI for the RouterOS operating system. The software also allows
connections via FTP and telnet, and SSH shell access. There is
also an API which allows creating customised applications for
management and monitoring.
[edit] Features

RouterOS supports many applications that can be used by medium

size to large ISP, for example OSPF, BGP, VPLS/MPLS. All in one,
RouterOS is a versatile system, and is very well supported by
Mikrotik, both through a forum and a Wiki providing assorted and
thematic examples of configurations.

The software provides support for virtually all the network interfaces
that the Linux kernel 2.6.16 supports, excepting wireless, where the
Atheros and Prism are the only supported chipsets, as of 3.x
version. Mikrotik is also working on upgrades to the software which
will enable full compatibility between the Mikrotik-specific services
and newer networking developments such as IPv6 and MPLS[1]
[edit] RouterBOARD

The RouterOS, combined with their hardware product line, known

as MikroTik RouterBOARD, is marketed at small to medium sized
wireless Internet service providers, typically providing broadband
wireless access in remote areas.
[edit] Developing IT markets
See also: Information and communication technologies for
development
A recent project to build low-cost internet infrastructure in Mali
chose MikroTik routers and operating systems because of the
system's cost, flexibility, the fact that the system already had "a
substantial user base in Mali", and had a user interface deemed
"superior to other products".[2] MikroTik routers were also preferred
for a WLAN project in Burkina Faso,[3] and MikroTik's proprietary
Nstreme protocol performed better than IEEE 802.11 under the
project's conditions.[4]

In 2008, it was decided that MikroTik routers would also be used

exclusively by the Municipality of Piripiri, Piauí State, Brazil, to build
the infrastructure for providing free internet access.[5] MikroTik
routers are also popular in the Czech Republic, where they enjoy a
good reputation.[6]

Under OLPC program, Uruguay deployed a Nation-wide wireless

network in Schools. Probaby the largest Mikrotik deployment in a
Country with a total population of 3 Million. Aproximatelly 200.000
Students received a small laptop which connected to Mikrotik
Access Points.
[edit] References

1. ^ http://wiki.mikrotik.com/wiki/MPLS
2. ^ Flickenger, Rob; et al. (December 2007) (PDF). Wireless
Networking in the Developing World: A practical guide to planning
and building low-cost telecommunications infrastructure (2nd ed.
ed.). wndw.net. p. 321. OCLC 227819886.
http://wndw.net/pdf/wndw2-en/wndw2-ebook.pdf. Retrieved 19
November 2008.
3. ^ Langobardi, Federico (2007) (PDF). BoulSat Project: Radio
network implementation by low cost technology. Master's Thesis,
Politecnico di Torino. p. 78. http://isf-pisa.org/attivita/tesi/tesi-
federico-longobardi/Final_Thesis.pdf.
4. ^ Bartalesi, R.; Catusian, S; Langobardi, F. (8 August 2007).
"Radio Network Implementation by Low Cost Technology: a Case of
Study" (PDF). Pisa: Ingegneria Senza Frontiere, University of Pisa.
pp. 3–4. http://isf-pisa.org:9673/isf-
pisa/Members/rph/wlan_article.pdf. Retrieved 19 November 2008.
 5. ^ Filho, Paiva (16 October 2008). "Secretário fala da
implantação da internet grátis" (in Portuguese). meionorte.com
(Jornal Meio Norte).
http://www.meionorte.com/piaui,piripiri,Secretario--fala-da-
implantacao-da-internet-gratis,62894.html. Retrieved 19 November
2008. "Diga-se de passagem, o que há de mais moderno em
equipamentos para este seguimento, onde utilizaremos os rádios
da Mikrotik."
6. ^ Štrauch, Adam (7 November 2008). "Mikrotik: seznámení s
Wi-Fi krabičkou" (in Czech). Root.cz.
http://www.root.cz/clanky/mikrotik-seznameni-s-wi-fi-krabickou/.
Retrieved 19 November 2008. "Mikrotiky jsou velmi populární u
poskytovatelů bezdrátového připojení a ohlasy od uživatelů jsou
většinu kladné."

[edit] External links

* Company home page

* RouterBOARD home page
* Official support forum
* MikroTik Wiki
* Want Wireless Broadband Today? Try a WISP
* Setup your Own Hotspot with Mikrotik Routerboards (free or
pay-per-use)
* Mikrotik Tech Site (How To & Documentation)

Retrieved from "http://en.wikipedia.org/wiki/MikroTik"

Categories: Networking hardware companies | Software companies
of Latvia | Companies based in Riga
Personal tools

* New features
* Log in / create account

Namespaces

* Article
* Discussion
Variants

Views

* Read
* Edit
* View history

Actions

Search
Search
Navigation

* Main page
* Contents
* Featured content
* Current events
* Random article

Interaction

* About Wikipedia
* Community portal
* Recent changes
* Contact Wikipedia
* Donate to Wikipedia
* Help

Toolbox

* What links here

* Related changes
* Upload file
* Special pages
* Permanent link
* Cite this page

Print/export
 * Create a book
* Download as PDF
* Printable version

Languages

* Български
* Česky
* Español
* ‫فارسی‬
* Bahasa Indonesia
* Italiano
* Latviešu
* Magyar
* Polski
* Português
* Српски / Srpski

* This page was last modified on 23 May 2010 at 18:09.

* Text is available under the Creative Commons Attribution-
ShareAlike License; additional terms may apply. See Terms of Use
for details.
Wikipedia® is a registered trademark of the Wikimedia
Foundation, Inc., a non-profit organization.Basic router setup guide/
tutorial ?

Page 1 of 2
[ 95 posts ] Go to page 1, 2 Next
Print view Previous topic | Next topic

Author Message
tomiso Post subject: Basic router setup guide/tutorial ?Posted:
Wed Nov 18, 2009 7:37 pm

just joined
Joined: Tue Mar 04, 2008 2:32 pm
Posts: 10
Karma: 0
I've been looking for a basic router setup guide/tutorial.

I don't know about you guys, but i have a girlfriend that will beat me
with a stick if the network is down So i need a quick way to get
everything going.

So, can someone please point me in the right direction or is there

someone kind enough who will write a basic guide for us newbies.

The only thing i need is a basic router setup with NAT and firewall
rules.
I've got a DSL connection and get a public IP from the ISP, and
there is no need to ppoe login.

There rest i can figure out along the way.

Top

DannyZ Post subject: Re: Basic router setup guide/tutorial ?

Posted: Wed Nov 18, 2009 9:45 pm

Member Candidate

Joined: Mon Sep 07, 2009 2:21 pm

Posts: 176
Karma: 0

Location: Latvia Scan for AP, then connect. Setup dhcp server,
pool, route and NAT

Top

tomiso Post subject: Re: Basic router setup guide/tutorial ?Posted:

Wed Nov 18, 2009 9:47 pm

just joined

Joined: Tue Mar 04, 2008 2:32 pm

Posts: 10
Karma: 0
In little more detail, please?

Top

fewi Post subject: Re: Basic router setup guide/tutorial ?Posted:

Wed Nov 18, 2009 10:08 pm

Forum Guru

Joined: Tue Aug 11, 2009 3:19 am

Posts: 1652
Karma: 13
Adding IP addresses: http://wiki.mikrotik.com/wiki/IP/Address
DHCP basic example:
http://wiki.mikrotik.com/wiki/DHCP_Server#Basic_examples
NAT basic example:
http://wiki.mikrotik.com/wiki/Firewall_nat#Basic_examples

Top

Zapnologica Post subject: Re: Basic router setup guide/tutorial ?

Posted: Wed Nov 18, 2009 11:07 pm

Member Candidate

Joined: Fri Sep 25, 2009 8:15 pm

Posts: 227
Karma: 0
i am alos having simelar problems. i can get my modem to connect
but when i try acces the web from my pc it just says connecting.

where do i act set the RB to be a Gateway/router?

Top

fewi Post subject: Re: Basic router setup guide/tutorial ?Posted:

Wed Nov 18, 2009 11:19 pm

Forum Guru

Joined: Tue Aug 11, 2009 3:19 am

Posts: 1652
Karma: 13
It's a router out of the box.

Top

tomiso Post subject: Re: Basic router setup guide/tutorial ?Posted:

Thu Nov 19, 2009 12:08 am

just joined

Joined: Tue Mar 04, 2008 2:32 pm

Posts: 10
Karma: 0
-

Last edited by tomiso on Thu Nov 19, 2009 7:28 pm, edited 1 time
in total.

Top

Zapnologica Post subject: Re: Basic router setup guide/tutorial ?

Posted: Thu Nov 19, 2009 8:34 am

Member Candidate

Joined: Fri Sep 25, 2009 8:15 pm

Posts: 227
Karma: 0
i have a RB750 ( Router out of the box right?)
if i put in my PPPoE details and plug modem into ether 1 and pc
into 2-5.

Nothing happens. when i go into the web browser it just says

connecting.

Top

normis Post subject: Re: Basic router setup guide/tutorial ?Posted:

Thu Nov 19, 2009 5:19 pm

Staff

Joined: Fri May 28, 2004 11:04 am

Posts: 10123
Karma: 9

Location: Riga, Latvia where did you put those pppoe details? it's a
router out of the box, but you want pppoe we don't even use that
here in our country

_________________
Don't forget to give karma

Top

Zapnologica Post subject: Re: Basic router setup guide/tutorial ?

Posted: Thu Nov 19, 2009 6:07 pm
Member Candidate

Joined: Fri Sep 25, 2009 8:15 pm

Posts: 227
Karma: 0
if you login to 192.168.88.1 and go to PPPoE then you put in
username and password.
I have also tried in winbox but it still dont work?

What do you use to login to then, in your country?

Top

THG Post subject: Re: Basic router setup guide/tutorial ?Posted:

Thu Nov 19, 2009 6:51 pm

Member Candidate

Joined: Thu Oct 15, 2009 1:05 am

Posts: 155
Karma: 1
Zapnologica wrote:
What do you use to login to then, in your country?

It's probably like it is in my country, a pure ethernet connection to

internet.
Top

Zapnologica Post subject: Re: Basic router setup guide/tutorial ?

Posted: Thu Nov 19, 2009 11:29 pm

Member Candidate

Joined: Fri Sep 25, 2009 8:15 pm

Posts: 227
Karma: 0
so dont you login to an account????

you just connect up and away yo go. free internet for every one??

Top

THG Post subject: Re: Basic router setup guide/tutorial ?Posted:

Fri Nov 20, 2009 2:13 am

Member Candidate

Joined: Thu Oct 15, 2009 1:05 am

Posts: 155
Karma: 1
Free, why do you think it is free when we do not need to login?
Top

Zapnologica Post subject: Re: Basic router setup guide/tutorial ?

Posted: Fri Nov 20, 2009 1:10 pm

Member Candidate

Joined: Fri Sep 25, 2009 8:15 pm

Posts: 227
Karma: 0
cause then how do they track your usage? if there is no login
details or accounts that can identify who you are and how much you
have used

Top

normis Post subject: Re: Basic router setup guide/tutorial ?Posted:

Fri Nov 20, 2009 1:13 pm

Staff

Joined: Fri May 28, 2004 11:04 am

Posts: 10123
Karma: 9

Location: Riga, Latvia you don't even want to know i have an

optics terminal in my apartment, and 100Mbit connection with
30Mbit both ways guaranteed (international traffic), no filters, no
limitations. It costs something like 25$ per month.
We don't have logins, the ISP uses VLAN to control customers.

the ISP also offers 500Mbit, but my computer doesn't work so fast,
so I didn't take that plan

_________________
Don't forget to give karma

Top

Zapnologica Post subject: Re: Basic router setup guide/tutorial ?

Posted: Fri Nov 20, 2009 1:35 pm

Member Candidate

Joined: Fri Sep 25, 2009 8:15 pm

Posts: 227
Karma: 0
wish i could get that here is sa.

I have a 1mb wireless connection with a 3gb cap for R500.00

$67.00

Now im jelious.

Ok i still cant get this dam router to work.

I wish mikrotiks where made with the main idea in mind (to work).
Top

normis Post subject: Re: Basic router setup guide/tutorial ?Posted:

Fri Nov 20, 2009 1:37 pm

Staff

Joined: Fri May 28, 2004 11:04 am

Posts: 10123
Karma: 9

Location: Riga, Latvia you probably mistconfigured your PPPOE

client

open INTERFACES window

there click PLUS icon

there choose PPPOE CLIENT

there select the GW PORT

and in DIAL OUT SET USER, PASS and SERVICE NAME. don't
forget also to tick "ADD DEFAULT ROUTE"

_________________
Don't forget to give karma

Top

Zapnologica Post subject: Re: Basic router setup guide/tutorial ?

Posted: Fri Nov 20, 2009 1:41 pm
Member Candidate

Joined: Fri Sep 25, 2009 8:15 pm

Posts: 227
Karma: 0
thats what i have done,

and i have tried clicking use peers dns too?

dont i have to add any firewal settigns or anything? surely just

adding a pppoe client wont turn it on a gateway?

And hows Vlan work,

cause i am trying to set up a small ISP but i cant find a way to give
users a CAP. eg 3GB ??? could Vlan work

Last edited by Zapnologica on Fri Nov 20, 2009 1:46 pm, edited 1
time in total.

Top

normis Post subject: Re: Basic router setup guide/tutorial ?Posted:

Fri Nov 20, 2009 1:46 pm

Staff

Joined: Fri May 28, 2004 11:04 am

Posts: 10123
Karma: 9

Location: Riga, Latvia yes, it will. post your configuration

_________________
Don't forget to give karma

Top

Zapnologica Post subject: Re: Basic router setup guide/tutorial ?

Posted: Fri Nov 20, 2009 1:48 pm

Member Candidate

Joined: Fri Sep 25, 2009 8:15 pm

Posts: 227
Karma: 0
k let me just reset the Rb and start from scratch to make sure i a
doing it right

Top

Zapnologica Post subject: Re: Basic router setup guide/tutorial ?

Posted: Fri Nov 20, 2009 1:52 pm

Member Candidate
Joined: Fri Sep 25, 2009 8:15 pm
Posts: 227
Karma: 0
K i added ip to lacal side (ether2)

added PPPoE client to (ether1) with peerdns and default route

Code:
/interface ethernet
set 0 arp=enabled auto-negotiation=yes comment="" disabled=no
full-duplex=yes \
l2mtu=1526 mac-address=00:0C:42:55:C4:8E mtu=1500
name=ether1 speed=\
100Mbps
set 1 arp=enabled auto-negotiation=yes
bandwidth=unlimited/unlimited comment=\
"" disabled=no full-duplex=yes l2mtu=1524 mac-
address=00:0C:42:55:C4:8F \
master-port=none mtu=1500 name=ether2 speed=100Mbps
set 2 arp=enabled auto-negotiation=yes
bandwidth=unlimited/unlimited comment=\
"" disabled=no full-duplex=yes l2mtu=1524 mac-
address=00:0C:42:55:C4:90 \
master-port=none mtu=1500 name=ether3 speed=100Mbps
set 3 arp=enabled auto-negotiation=yes
bandwidth=unlimited/unlimited comment=\
"" disabled=no full-duplex=yes l2mtu=1524 mac-
address=00:0C:42:55:C4:91 \
master-port=none mtu=1500 name=ether4 speed=100Mbps
set 4 arp=enabled auto-negotiation=yes
bandwidth=unlimited/unlimited comment=\
"" disabled=no full-duplex=yes l2mtu=1524 mac-
address=00:0C:42:55:C4:92 \
master-port=none mtu=1500 name=ether5 speed=100Mbps
/interface wireless security-profiles
set default authentication-types="" eap-methods=passthrough
group-ciphers="" \
 group-key-update=5m interim-update=0s mode=none
name=default \
radius-eap-accounting=no radius-mac-accounting=no \
radius-mac-authentication=no radius-mac-caching=disabled \
radius-mac-format=XX:XX:XX:XX:XX:XX radius-mac-mode=as-
username \
static-algo-0=none static-algo-1=none static-algo-2=none static-
algo-3=\
none static-key-0="" static-key-1="" static-key-2="" static-key-3=""
\
static-sta-private-algo=none static-sta-private-key="" \
static-transmit-key=key-0 supplicant-identity=MikroTik tls-
certificate=\
none tls-mode=no-certificates unicast-ciphers="" wpa-pre-
shared-key="" \
wpa2-pre-shared-key=""
/ip hotspot profile
set default dns-name="" hotspot-address=0.0.0.0 html-
directory=hotspot \
http-cookie-lifetime=3d http-proxy=0.0.0.0:0 login-by=cookie,http-
chap \
name=default rate-limit="" smtp-server=0.0.0.0 split-user-
domain=no \
use-radius=no
/ip hotspot user profile
set default idle-timeout=none keepalive-timeout=2m name=default
shared-users=\
1 status-autorefresh=1m transparent-proxy=no
/ip ipsec proposal
set default auth-algorithms=sha1 disabled=no enc-algorithms=3des
lifetime=30m \
name=default pfs-group=modp1024
/ppp profile
set default change-tcp-mss=yes comment="" name=default only-
one=default \
use-compression=default use-encryption=default use-vj-
compression=default
set default-encryption change-tcp-mss=yes comment=""
name=default-encryption \
 only-one=default use-compression=default use-encryption=yes \
use-vj-compression=default
/interface pppoe-client
add ac-name="" add-default-route=yes
allow=pap,chap,mschap1,mschap2 comment=\
"" dial-on-demand=no disabled=no interface=ether1 max-
mru=1480 max-mtu=\
1480 mrru=disabled name=pppoe-out1 password=password
profile=default \
service-name="" use-peer-dns=yes
user=davehyslop@iburst.co.zaa
/queue type
set default kind=pfifo name=default pfifo-limit=50
set ethernet-default kind=pfifo name=ethernet-default pfifo-limit=50
set wireless-default kind=sfq name=wireless-default sfq-allot=1514 \
sfq-perturb=5
set synchronous-default kind=red name=synchronous-default red-
avg-packet=1000 \
red-burst=20 red-limit=60 red-max-threshold=50 red-min-
threshold=10
set hotspot-default kind=sfq name=hotspot-default sfq-allot=1514
sfq-perturb=\
5
set default-small kind=pfifo name=default-small pfifo-limit=10
/routing bgp instance
set default as=65530 client-to-client-reflection=yes comment=""
disabled=no \
ignore-as-path-len=no name=default out-filter="" redistribute-
connected=\
no redistribute-ospf=no redistribute-other-bgp=no redistribute-
rip=no \
redistribute-static=no router-id=0.0.0.0
/routing ospf area
set backbone area-id=0.0.0.0 authentication=none disabled=no
name=backbone \
type=default
/snmp
set contact="" enabled=no engine-boots=0 engine-id=""
location="" \
 time-window=15 trap-sink=0.0.0.0 trap-version=1
/snmp community
set public address=0.0.0.0/0 authentication-password="" \
authentication-protocol=MD5 encryption-password="" encryption-
protocol=\
DES name=public read-access=yes security=none write-
access=no
/system logging action
set memory memory-lines=100 memory-stop-on-full=no
name=memory target=memory
set disk disk-file-count=2 disk-file-name=log disk-lines-per-file=100 \
disk-stop-on-full=no name=disk target=disk
set echo name=echo remember=yes target=echo
set remote bsd-syslog=no name=remote remote=0.0.0.0:514 src-
address=0.0.0.0 \
syslog-facility=daemon syslog-severity=auto target=remote
/system routerboard settings
set boot-device=nand-if-fail-then-ethernet boot-protocol=bootp cpu-
frequency=\
400MHz force-backup-booter=no
set boot-device=nand-if-fail-then-ethernet boot-protocol=bootp cpu-
frequency=\
400MHz force-backup-booter=no
/user group
add comment="" name=read
policy="local,telnet,ssh,reboot,read,test,winbox,pass\
word,web,sniff,sensitive,!ftp,!write,!policy"
add comment="" name=write
policy="local,telnet,ssh,reboot,read,write,test,winb\
ox,password,web,sniff,sensitive,!ftp,!policy"
add comment="" name=full
policy="local,telnet,ssh,ftp,reboot,read,write,policy\
,test,winbox,password,web,sniff,sensitive"
/interface bridge settings
set use-ip-firewall=no use-ip-firewall-for-pppoe=no use-ip-firewall-for-vlan=\
no
/interface ethernet mirror
set mirror-port=none source-port=none
/interface l2tp-server server
set authentication=pap,chap,mschap1,mschap2 default-profile=\
default-encryption enabled=no max-mru=1460 max-mtu=1460 mrru=disabled
/interface ovpn-server server
set auth=sha1,md5 certificate=none cipher=blowfish128,aes128 default-profile=\
default enabled=no keepalive-timeout=60 mac-address=FE:45:58:CA:18:B7 \
max-mtu=1500 mode=ip netmask=24 port=1194 require-client-certificate=no
/interface pptp-server server
set authentication=mschap1,mschap2 default-profile=default-encryption \
enabled=no keepalive-timeout=30 max-mru=1460 max-mtu=1460 mrru=disabled
/interface wireless align
set active-mode=yes audio-max=-20 audio-min=-100 audio-monitor=\
00:00:00:00:00:00 filter-mac=00:00:00:00:00:00 frame-size=300 \
frames-per-second=25 receive-all=no ssid-all=no
/interface wireless sniffer
set channel-time=200ms file-limit=10 file-name="" memory-limit=10 \
multiple-channels=no only-headers=no receive-errors=no streaming-enabled=\
no streaming-max-rate=0 streaming-server=0.0.0.0
/interface wireless snooper
set channel-time=200ms multiple-channels=yes receive-errors=no
/ip accounting
set account-local-traffic=no enabled=no threshold=256
/ip accounting web-access
set accessible-via-web=no address=0.0.0.0/0
/ip address
add address=192.168.9.1/24 broadcast=192.168.0.250 comment="" disabled=no \
interface=ether2 network=192.168.0.0
/ip dhcp-server config
set store-leases-disk=5m
/ip dns
set allow-remote-requests=no cache-max-ttl=1w cache-size=2048KiB \
max-udp-packet-size=512 primary-dns=0.0.0.0 secondary-dns=0.0.0.0
/ip firewall connection tracking
set enabled=yes generic-timeout=10m icmp-timeout=10s tcp-close-timeout=10s \
tcp-close-wait-timeout=10s tcp-established-timeout=1d \
tcp-fin-wait-timeout=10s tcp-last-ack-timeout=10s \
tcp-syn-received-timeout=5s tcp-syn-sent-timeout=5s tcp-syncookie=no \
tcp-time-wait-timeout=10s udp-stream-timeout=3m udp-timeout=10s
/ip firewall service-port
set ftp disabled=no ports=21
set tftp disabled=no ports=69
set irc disabled=no ports=6667
set h323 disabled=no
set sip disabled=no ports=5060,5061
set pptp disabled=no
/ip hotspot service-port
set ftp disabled=no ports=21
/ip neighbor discovery
set ether1 discover=yes
set ether2 discover=yes
set ether3 discover=yes
set ether4 discover=yes
set ether5 discover=yes
set pppoe-out1 discover=no
/ip proxy
set always-from-cache=no cache-administrator=webmaster cache-hit-dscp=4 \
cache-on-disk=no enabled=no max-cache-size=none max-client-connections=\
600 max-fresh-time=3d max-server-connections=600 parent-proxy=0.0.0.0 \
parent-proxy-port=0 port=8080 serialize-connections=no src-address=\
0.0.0.0
/ip service
set telnet address=0.0.0.0/0 disabled=no port=23
set ftp address=0.0.0.0/0 disabled=no port=21
set www address=0.0.0.0/0 disabled=no port=80
set ssh address=0.0.0.0/0 disabled=no port=22
set www-ssl address=0.0.0.0/0 certificate=none disabled=yes port=443
set api address=0.0.0.0/0 disabled=yes port=8728
set winbox address=0.0.0.0/0 disabled=no port=8291
/ip socks
set connection-idle-timeout=2m enabled=no max-connections=200 port=1080
/ip traffic-flow
set active-flow-timeout=30m cache-entries=4k enabled=no \
inactive-flow-timeout=15s interfaces=all
/ip upnp
set allow-disable-external-interface=yes enabled=no show-dummy-rule=yes
/ppp aaa
set accounting=yes interim-update=0s use-radius=no
/queue interface
set ether1 queue=ethernet-default
set ether2 queue=ethernet-default
set ether3 queue=ethernet-default
set ether4 queue=ethernet-default
set ether5 queue=ethernet-default
set pppoe-out1 queue=default
/radius incoming
set accept=no port=3799
/routing mme
set bidirectional-timeout=2 gateway-class=none gateway-keepalive=1m \
gateway-selection=no-gateway origination-interval=5s preferred-gateway=\
0.0.0.0 timeout=1m ttl=50
/routing ospf
set distribute-default=never metric-bgp=20 metric-connected=20 \
metric-default=1 metric-rip=20 metric-static=20 mpls-te-area=unspecified \
mpls-te-router-id=unspecified redistribute-bgp=no redistribute-connected=\
no redistribute-rip=no redistribute-static=no router-id=0.0.0.0
/routing rip
set distribute-default=never garbage-timer=2m metric-bgp=1 metric-connected=1 \
metric-default=1 metric-ospf=1 metric-static=1 redistribute-bgp=no \
redistribute-connected=no redistribute-ospf=no redistribute-static=no \
timeout-timer=3m update-timer=30s
/store
add comment="" disabled=no disk=system name=web-proxy1 type=web-proxy
/system clock
set time-zone-name=manual
/system clock manual
set dst-delta=+00:00 dst-end="jan/01/1970 00:00:00" dst-start=\
"jan/01/1970 00:00:00" time-zone=+00:00
/system console
add disabled=no term=vt102
/system health
set
/system identity
set name=MikroTik
/system logging
add action=memory disabled=no prefix="" topics=info
add action=memory disabled=no prefix="" topics=error
add action=memory disabled=no prefix="" topics=warning
add action=echo disabled=no prefix="" topics=critical
/system note
set note="" show-at-login=yes
/system ntp client
set enabled=no mode=broadcast primary-ntp=0.0.0.0 secondary-ntp=0.0.0.0
/system upgrade mirror
set check-interval=1d enabled=no primary-server=0.0.0.0 secondary-server=\
0.0.0.0 user=""
/system watchdog
set auto-send-supout=no automatic-supout=yes no-ping-delay=5m watch-address=\
none watchdog-timer=yes
/tool bandwidth-server
set allocate-udp-ports-from=2000 authenticate=yes enabled=yes max-sessions=\
100
/tool e-mail
set from=<> password="" server=0.0.0.0:25 username=""
/tool graphing
set page-refresh=300 store-every=5min
/tool mac-server
add disabled=no interface=all
/tool mac-server ping
set enabled=yes
/tool sms
set allowed-number="" channel=0 keep-max-sms=0 receive-enabled=no secret=""
/tool sniffer
set file-limit=10 file-name="" filter-address1=0.0.0.0/0:0-65535 \
filter-address2=0.0.0.0/0:0-65535 filter-protocol=ip-only filter-stream=\
yes interface=all memory-limit=10 only-headers=no streaming-enabled=no \
streaming-server=0.0.0.0
/user aaa
set accounting=yes default-group=read interim-update=0s use-radius=no

Top

Pilgrim Post subject: Re: Basic router setup guide/tutorial ?Posted: Sat Nov 21, 2009 1:58 pm
Member Candidate

Joined: Sun Mar 30, 2008 1:04 pm

Posts: 165
Karma: 1
The modem you have in front of your RB750 should be set up in a bridge configuration, so you
don't have a router-on-router situation.

This set up (see attached file) of the PPPoE connection works for me in my RB750 (@Mikrotik -
compliments, the RB750, is simply a great router).

I can sent you the rest of the screen dumbs that you will need to set up your router, but i will take a
lot of time to alter and hide all the information, like real IP's. password etc. that should not be
posted on the internet. So if you would like I can make the screen dumps and sent them to you by
mail.

I went through a long learning process myself to get me RB750 going.

rgs Pilgrim

Attachments:
RB750 PPPoE connection.xls [318.5 KiB]
Downloaded 143 times

Top

Pilgrim Post subject: Re: Basic router setup guide/tutorial ?Posted: Sat Nov 21, 2009 2:11 pm

Member Candidate

Joined: Sun Mar 30, 2008 1:04 pm

Posts: 165
Karma: 1
DHCP, DNS, NAT see attached xls.

for firewall I would suggest below as a min.

/ip firewall filter

add action=drop chain=forward comment="" connection-state=invalid disabled=no
add action=accept chain=forward comment="" connection-state=established disabled=no
add action=accept chain=forward comment="" connection-state=related disabled=no
add action=accept chain=forward comment="" disabled=no dst-port=7345-7346 protocol=tcp
add action=accept chain=forward comment="" disabled=no dst-port=20-21 protocol=tcp
add action=accept chain=forward comment="" connection-state=new disabled=no src-
address=192.168.0.0/24
add action=log chain=forward comment="" disabled=no dst-address=192.168.0.0/24 log-
prefix=UNWANTED src-address=\
!192.168.0.0/24
add action=drop chain=forward comment="" disabled=no dst-address=192.168.0.0/24 src-
address=192.168.0.0/24
add action=accept chain=input comment="" disabled=no dst-port=22 protocol=tcp src-
address=192.168.0.0/24
add action=log chain=input comment="" disabled=no dst-port=22 log-prefix="" protocol=tcp
add action=drop chain=input comment="" disabled=no dst-port=22 protocol=tcp

Attachments:
RB750 DHCP DNS and NAT.xls [272 KiB]
Downloaded 117 times

Top

Pilgrim Post subject: Re: Basic router setup guide/tutorial ?Posted: Sat Nov 21, 2009 2:24 pm

Member Candidate

Joined: Sun Mar 30, 2008 1:04 pm

Posts: 165
Karma: 1
Attachment:

RB 750 address and route list.jpg [ 150.05 KiB | Viewed 3356 times ]

finally, this is how the route and address list should look like. most of the rules are added
automatically (don't forget to tick off "add default route" in your PPPoE connection.

I can't remember which rules needs to entered by hand, so set up this as the last point and check
what is missing.

Top

Zapnologica Post subject: Re: Basic router setup guide/tutorial ?Posted: Sat Nov 21, 2009 2:36 pm

Member Candidate

Joined: Fri Sep 25, 2009 8:15 pm

Posts: 227
Karma: 0
Thanks so much i will give that a try

Top