Mikrotik loopback ip address10/19/2023 ![]() queue simple add max-limit=50M/50M name="Limit Public to 50Mbps" target="ether1: Public" add max-limit=100M/100M name="Limit Private to 100Mbps" target="ether2: Private" routing ospf instance set router-id=10.0.0.1 /routing ospf area add area-id=0.0.0.1 name=area1 /routing ospf network add area=area1 disabled=yes network=196.168.1.0/24 add area=area1 disabled=yes network=172.16.0.0/24 add area=area1 disabled=yes network=10.0.1.0/27Īdd a queue to interfaces to simulate real world network bandwidth because all the interfaces are running at gigabit speeds in the lab I’m limiting the interfaces to the specific connection speeds for a more realistic experience. Note for point-to-point interfaces the address of the remote endpoint must be used. Add all the local IP address ranges to the network OSPF you have to define the networks on which OSPF will run and associate a area for each of these networks. You can use the default area id network but I prefer to create a new one. Please note that networks are disabled the OSPF router ID will get the same IP as the loopback we created earlier. ppp secret add disabled=yes name="JHB-USA" password=test123 profile="VPN PPTP" remote-address=10.0.1.5 add disabled=yes name="JHB-UK" password=test123 profile="VPN PPTP" remote-address=10.0.1.6 add disabled=yes name="JHB-NZ" password=test123 profile="VPN PPTP" remote-address=10.0.1.7 add disabled=yes name="JHB-CPT" password=test123 profile="VPN PPTP" remote-address=10.0.1.2Įnable OSPF, and create area and networks. Please note the PPTPs are set to disabled. L2TP can also be used and I would recommend it. The PPTP profiles below are used by the remote “Internet" sites to connect to both Router 1 JHB and Router 2 CPT. interface pptp-server server set enabled=yes /ppp profile add change-tcp-mss=yes local-address=10.0.0.1 name="VPN PPTP" remote-address=PPTP-VPN use-encryption=yesĬreate PPTP secrets for Internet sites. This ensures minimal IP range and subnet usage and ease of management. ![]() ![]() ip pool add name=PPTP-VPN ranges=10.0.1.1-10.0.1.30Įnable the PPTP server and add the VPN Profile The VPN profile will be used by remote internet sites connecting to the router via PPTP, we use the same IP address as the OSPF loopback and router ID. I always create IP pools to ensure the IPs never get used (Reservation). ip address add address=1.1.1.1/27 interface="ether1: Public" network=1.1.1.0 add address=172.16.0.1/24 interface="ether2: Private" network=172.16.0.0 add address=196.168.1.10/24 interface="ether3: LAN" network=196.168.1.0 add address=10.0.0.1/32 interface="OSPF Loopback" network=10.0.0.1Ĭreate an IP pool for VPN IPs this step is not necessary as all the VPN PPTP profiles will be configured with statics. interface bridge add name="OSPF Loopback" /interface ethernet set 0 name="ether1: Public" set 1 name="ether2: Private" set 2 name="ether3: LAN"Īssign the IP address to the routers Ethernet interfaces and OSPF loopback bridge For this reason, IP packets may still be addressed to an interface in loopback state. However, it is still available for testing like ICMP pings. In this state, the interface is unavailable for regular data traffic. OSPF treats loopback interfaces as stub networks and advertises them as host routes. ![]() Give your router a name this makes it easier to identify as all routers will have default name of “Mikrotik”Ĭreate the OSPF loopback interface and rename the Ethernet ports I’m using a loopback interface because it is reliable and will never go down like other interfaces, unless the router is dead. Let’s start with JHB = Router1 I will explain the first router in more detail. My goal was to have failover (redundancy) between JHB (Router 1) and CPT (Router 2) on both the Internet and the private network and if either side of the link where to drop, OSPF would find the best route and restore connectivity via another link/connection and at the same time distribute the new route to all other connect routers. The middle sites are connected to both Internet and the private network. On the left we have three sites connected to the Internet and on the right we have two sites connected via a private multiprotocol label switching (MPLS) network. Attached is a simple network diagram with basic network configuration.įrom the above diagram you can see that there are seven sites. In this article I will be using a lab of virtual Mikrotik routers. After weeks of having issues on my network with numerous outages I decided to build in some kind of automatic failover using an Open Shortest Path First (OSPF) network.
0 Comments
Leave a Reply.AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |