Category: software

During my day job we use some MikroTik CHR deployments for (among other things) VPN session termination. The CHR’s are easy to spin up, offer a wide variety of VPN types, and for low traffic sessions can support upwards of 10,000 sessions on a single device. In the event of an outage though, you would … Continue reading Scriptlet: Bulk VPN connections on MikroTik with connection rate limiting →

Greg, Mike, Tomas, and Tom talk about Unimus, Tomas’ new backup application for Network equipment. It’s dead simple, so you no longer have an excuse NOT to have proper backups for your infrastructure. It’s the “up and running in less than 10 minutes” system! Here’s the video:(if you don’t see it, hit refresh)

TD of Pebkac.io – At the time of writing, Mikrotik’s current CHR build is 6.35rc49.

While purported to work in a Hyper-V VM, there are no instructions I could find at the time to get one up and running in Microsoft Azure (with ARM).

Knowing that it should be theoretically possible, given Azure utilises a hypervisor with the same origins as Hyper-V, I went down the rabbit hole.

I’ve been playing around with v6.13rc12 over the last week on a CRS125-24G-1S and have put together a an example script for provisioning the unit with a user-vlan and an admin-vlan that are trunked back via the SFP port. I’ve been waiting for a long time to have a usable and readable switch chip config … Continue reading CRS Basic Vlan Configuration →

Contained in this post is a free copy of my 2013 QoS tree (compatible with v6.0) for anyone to do what they want with, I only ask that if you republish this you include a link to this post. It is intended to work on a per-interface basis; with you specifying the WAN interface and … Continue reading The Mother of all QoS Trees – v6.0 →

Janis M. from MikroTik was kind enough to point me to a copy of his presentation from the Russian MUM which I feel is an incredible helpful document and well worth a read by all of the current CCR users out there. I would highly encourage anyone running (or thinking of running) CCR’s on their … Continue reading CloudCoreRouter and RouterOS v6.x (linked post) →

I was recently looking for a simpler alternative to something like RANCID to periodically backup all our MikroTik configs. RANCID is great and all, but I didn’t really need the diff copies of each file, and I was plenty happy just knowing that I have a .backup and .rsc file for each router I manage. … Continue reading Gmail + Google Drive + MikroTik scripting = Automated Backups Folder →

I found myself having to review some VoIP traffic related queries this week and while viewing a few packet captures realised there wasn’t and easy way to see what traffic was being tagged with different DSCP values. I googled around for a little while and found that you can actually add a DSCP column to … Continue reading Enabling DSCP (ToS) Display Column in Wireshark →

Given v6.0 stable is now upon us I’ve taken some time to collate some of the posts I’ve been familiarising myself with over the last few weeks to understand the major changes that have been implemented in this release and how to best upgrade and make use of these. I’ve tagged some videos and forum posts … Continue reading Study guide: Moving up to RouterOS v6 →

1. Download Notepad++: http://www.notepadplusplus.org 2. Install Notepad++ 3. Download file RouterOS Syntax-Highlighter and extract the notepad++ xml file within. 4. Open Notepad++ 5. Click Language > User-Defined > click Import button. Import the xml file you unzipped. 6. Close and reopen Notepad++ 7a. Open an .rsc script, and syntax highlighting will be visible. 7b. Alternatively open any … Continue reading ROS Syntax highlights in Notepad++ →

Just a couple of quick screen shots of the new “Quick Set” mode available in some of the newest releases. As you can see the dropdown box top left lets you select the mode for the device and puts all the basic configuration options in one place. AP mode:   And CPE mode: The addition … Continue reading Quick Set Preview →

MikroTik supports exporting NetFlow traffic data via /ip traffic-flow, which can be read using free or paid software. This guide shows you how to setup ntop (a free option) on a fresh CentOS 6 (or RedHat) install and assumes you have setup a CentOS 6 server that has a connection to the internet.

New toys you say?   Noticed this little gem in the MikroTik wiki this morning while reviewing Queue Types. Note: Starting from v5.8 there is new kind none and new default queue only-hardware-queue. All RouterBOARDS will have this new queue type set as default interface queue only-hardware-queue leaves interface with only hw transmit descriptor ring buffer which acts as a queue … Continue reading Queue outside please! →

This is a bit of a different post based on some configuration I did just recently to enable the bridging of a Virtual Switch between 2 ESX hosts. There is an VMWare option for this called a “VMware vSphere Distributed Switch” however this requires one of the higher end licencing packages so isn’t available on … Continue reading Bridging ESX Virtual Switch Networks using MikroTik and EoIP/Vlan/VPLS →

After discussion on the unofficial MikroTik mailing list, I’ve decided to create a bugtracker for helping keep a list of known outstanding MikroTik bugs. I would’ve hoped that MikroTik could do something like this themselves to help out those of us relying day to day on the ability to keep a network running, however until such … Continue reading Welcome to the jungle, mind all the bugs. →

Subnetting:   Given my general lazyness in all things requiring pen and pencil; I like many others am prone to using a subnet calculator in day to day network building. That and when you think about it.. which is more likely to be correct, a computer with static algorithms or a coffee-fueled network administrator adding … Continue reading Subnetting and Serial over SSH →

Came across an interesting (yet to be verified) bug today. The info: RouterOS v4.10 running on x86 server Site runs both a hotspot and PPPoE server on the same interface. Users can decide to login via the captive portal (which most do) or for those who understand and wish to use a pppoe connection, they … Continue reading Bug spotting – PPPoE and Hotspot →

Please note this guide assumes some basic knowledge of IPv4 and IPv6 address space. Many of you may know of the impending doom that surrounds the IPv4 network and lack of remaining IP ranges. The question is, how many people are actually doing anything about it? Given the slow take up worldwide I thought it … Continue reading IPv6 and Mikrotik – Using 6to4 →

In the state of Australia I currently live in, there are 2 major ISP’s – Internode and Adam Internet. Being a typical nerd and living with other typical nerds we of course have 2 ADSL connections, 1 to each of these providers which are shared out amongst the house. However each of these providers have … Continue reading Freebies in SA (or How to download IP address lists to a Mikrotik) →

In preparation for some IPv6 testing of our hotspot systems, I’ve come up with the following temporary authentication method for dual-stacked users. Seeing as the login redirect goes via an IPv4 webserver, if enabled IPv6 traffic passes by the hotspot unhindered. This is my work on enabling the IPv6 side of things when a user … Continue reading Mikrotik Hotspot Authentication for IPv6 dual-stacked clients →

The short of it I’ve had a few times where I’ve wanted to make a secure tunnel between 2 locations but have only had connections with dynamic IP addresses to work with. Sure it’s easy enough to setup a dynamic dns script for each router, but how about getting one to connect back to the … Continue reading Using a dynamic dns name for a VPN server →

Current version: v1.5 If you have any questions you can also email me: admin ( at ) mikrotik-routeros ( dot ) com Summary I wrote a usage tracking script based on the original Automated Billing Script The way I run it is using a routed Mikrotik box setup to pass everything through transparently then I generated … Continue reading Automated Usage Script – without usermanager →

This is my ongoing work at using multiple ADSL services and the Mikrotik PCC rules along with some inbound mangling to allow a single router to load balance traffic across as many non bonded links as required.