Scribd
Upload
136 views56 pages

MikroTik Network Configuration Guide

The document discusses several networking topics: - Bridge allows connecting network segments together at layer 2 without using IP. - NTP synchronizes clocks between systems over packet networks. - VLANs create multiple broadcast domains on a single physical interface. - Bonding aggregates interfaces for higher throughput and failover. - VRRP provides a virtual gateway for high availability.

Uploaded by

Alo Chaya
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
136 views56 pages

MikroTik Network Configuration Guide

The document discusses several networking topics: - Bridge allows connecting network segments together at layer 2 without using IP. - NTP synchronizes clocks between systems over packet networks. - VLANs create multiple broadcast domains on a single physical interface. - Bonding aggregates interfaces for higher throughput and failover. - VRRP provides a virtual gateway for high availability.

Uploaded by

Alo Chaya
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 56

CLASS- 07

B R I D G E , N T P, V L A N , V R R P

M.T.M. Monty
Topics we cover
 Bridge
 NTP
 VLAN
 Bonding
 VRRP
 LAB Work

Prepared by: M.T.M. Monty ([email protected])


Bridge
Bridge is a way to connect a number of network segment together in a
protocol itself. The bridge feature allows the interconnection of hosts
connected to separate LANs (using EoIP, geographically distributed
networks can be bridged as well if any kind of IP network
interconnection exists between them) as if they were attached to a
single LAN. Packets that forwarded based on Ethernet address, no IP
address. Because the packet forwarding done at Layer-2, all protocol
can be via a bridge.

Prepared by: M.T.M. Monty ([email protected])


Bridge
Why Use Bridges?

1. Bridges are important in some networks because the networks are


divided into many parts geographically remote from one another.
Something is required to join these networks so that they can become
part of the whole network.
2. LAN (for example Ethernet) can be limited in its transmission
distance. We can eliminate this problem using bridges as repeaters, so
that we can connect a geographically extensive network within the
building or campus using bridges. Hence geographically challenged
networks can be created using Bridges.
3. The network administrator can control the amount of traffic going
through bridges sent across the expensive network media.

Prepared by: M.T.M. Monty ([email protected])


NTP
Network Time Protocol (NTP) is a networking protocol for clock
synchronization between systems/routers over packet-switched,
variable-latency data networks. In operation since before 1985, NTP is
one of the oldest Internet Protocols. NTP was designed by David L.
Mills of the University of Delaware.

Prepared by: M.T.M. Monty ([email protected])


VLAN
A VLAN is a group of devices on one or more LANs that are configured
to communicate as if they were attached to the same wire, when in fact
they are located on a number of different LAN segments. Because
VLANs are based on logical instead of physical connections, they are
extremely flexible. Each VLANs is treated as separate subnet/broadcast
domain.

It is can be set the following parameters for creating a VLAN

 VLAN number
 VLAN name
 VLAN state (active or suspended)
 Maximum transmission unit (MTU) for the VLAN
 VLAN on Interface

Prepared by: M.T.M. Monty ([email protected])


VLAN
WHY?

o Multiple LAN in a single physical interface


o Make the local network more simple
o Multiple broadcast domain in a single physical interface
o VLANs can increase security and management of different network
in one single interface
o Priority

Prepared by: M.T.M. Monty ([email protected])


Interface Bonding
Bonding is a technology that allows aggregation of multiple Ethernet-
like interfaces into a single virtual link, thus getting higher data rates
and providing failover. Provided High Available and Maximum
Throughput.

Balance-rr Round-robin load balancing. Slaves in bonding interface


will transmit and receive data sequential order. Provides load balancing
and fault tolerance.

Balance-xor: This mode balance outgoing traffic across the active


ports based on the hashed protocol header information and accepts
incoming traffic from any active port.
Active Backup: provides link backup. Online one slave can be active
at a time. Another slave becomes active only, if first one fails.

Prepared by: M.T.M. Monty ([email protected])


Interface Bonding

Link Monitoring: method to use for monitoring the link (Whether it


is up or down)

ARP Monitoring: ARP monitoring sends ARP queries and uses the
response as an indication that the link is operational.

MII Monitoring: Media Independent Interface is an abstract layer


between the operating system and the NIC which detects whether the
link is running (It performs also other functions, but in our case this is
the most important.

Prepared by: M.T.M. Monty ([email protected])


VRRP
VRRP ( Virtual Router Redundancy Protocol ) is a virtual (interface) interface of
RouterOS MikroTik which enables us to create multiple routers as gateways from
one segment's local network. Communication between routers will use a Virtual
Router ID and on the VRRP interface on each router will be installed a single IP
Address which will be used as a gateway of the local network.
A node of a virtual router can be in one of the following states:
MASTER state, when the node answers all the requests to the instance's IP
addresses. There may only be one MASTER node in a virtual router. This node
sends VRRP advertisement packets to all the backup routers (using multicast
address) every once in a while (set in interval property).
BACKUP state, when the VRRP router monitors the availability and state of the
Master Router. It does not answer any requests to the instance's IP addresses.
Should master become unavailable (if at least three sequential VRRP packets are
lost), election process happens, and new master is proclaimed based on its priority.
For more details on virtual routers, see RFC2338.

The principle of finding the Master is the highest Priority is Active. The rest of the
group is Standby. If the Active device dies, the Standby acts as Active.
Prepared by: M.T.M. Monty ([email protected])
Prepared by: M.T.M. Monty ([email protected])
 Bridge
 NTP
 VLAN
 Bonding
 VRRP

Prepared by: M.T.M. Monty ([email protected])


Bridge

Prepared by: M.T.M. Monty ([email protected])


Bridge

Creating Bridge for Bridge-1


Prepared by: M.T.M. Monty ([email protected])
Bridge

Creating Bridge for Bridge-2

Prepared by: M.T.M. Monty ([email protected])


Bridge

Prepared by: M.T.M. Monty ([email protected])


Bridge
Before assigning interfaces on bridge port, we must check the interfaces Master port.

Here ether3’s Master port is ether2 Let’s assign all the ports without any
Master ports
Prepared by: M.T.M. Monty ([email protected])
Bridge
Assign Interfaces on Bridge Interface. According to
our topology ether-2 & 3 will be under Bridge-1,
and ether-4 & 5 will be under Bridge-2

Prepared by: M.T.M. Monty ([email protected])


Bridge

In this portion if you use Master Port of


any interface, than you need not to
assign interfaces individually. Only
Master port will be assign and slaves
interfaces will be automatically added.

Prepared by: M.T.M. Monty ([email protected])


Bridge

IP Setup on Bridge Interfaces

Prepared by: M.T.M. Monty ([email protected])


Bridge
Now lets check from Downside…

Host connected from port-2/3

Prepared by: M.T.M. Monty ([email protected])


Bridge
Now lets check from Downside…

Host connected from port-4/5

Prepared by: M.T.M. Monty ([email protected])


Bridge
Now lets check the reachability from Network-1 to Network-2 …

So, it is reachable
Prepared by: M.T.M. Monty ([email protected])
NTP

Prepared by: M.T.M. Monty ([email protected])


VLAN

ROUTER-01 ROUTER-02
If we think this kind of topology, then what we need to do:
1. Create VLAN
2. Set IP addresses on VLAN

Prepared by: M.T.M. Monty ([email protected])


VLAN

Prepared by: M.T.M. Monty ([email protected])


VLAN

Check the Interfaces List

Prepared by: M.T.M. Monty ([email protected])


VLAN

Set the IP Address on VLAN-100 interface

Prepared by: M.T.M. Monty ([email protected])


VLAN
The same procedure will be for Router-2

Prepared by: M.T.M. Monty ([email protected])


VLAN
The same procedure will be for Router-2

Prepared by: M.T.M. Monty ([email protected])


VLAN
Configuration Done. Lets check the point to point connectivity.

Its pinging. So the Point to point connectivity has been established. And
traffic can be pass through VLAN.

Prepared by: M.T.M. Monty ([email protected])


VLAN

If we think this kind of topology, then what we need to do:


1. Create VLAN
2. Create Bridge
3. Assigning ports on Bridge
4. Assigning IP addresses
5. DHCP Setup
6. Check from Downside
Prepared by: M.T.M. Monty ([email protected])
VLAN

1. VLAN Creation Done

Prepared by: M.T.M. Monty ([email protected])


VLAN

2. Bridge Creation Done

Prepared by: M.T.M. Monty ([email protected])


VLAN

3. Port
assigning
on bridge
done

Prepared by: M.T.M. Monty ([email protected])


VLAN

4. IP Assigning has done

Prepared by: M.T.M. Monty ([email protected])


VLAN

5. DHCP setup has done

Prepared by: M.T.M. Monty ([email protected])


VLAN
6. Now let’s check from LAN side

IP Obtained from port 3 of Mikrotik


Prepared by: M.T.M. Monty ([email protected])
VLAN
6. Now let’s check from LAN side

IP Obtained from port 4 of Mikrotik


Prepared by: M.T.M. Monty ([email protected])
Interface Bonding

Bonding IP Network is: 192.168.100.0/30

Prepared by: M.T.M. Monty ([email protected])


Interface Bonding

1. Creating Bonding by
assigning interfaces to be
bond

Prepared by: M.T.M. Monty ([email protected])


Interface Bonding

2. Create a bridge and assign


bonding interface on bridge port

Prepared by: M.T.M. Monty ([email protected])


Interface Bonding

Mikrotik-01 configuration has been done. Now the same procedure


will needed to do in Mikrotik-02 also.
Prepared by: M.T.M. Monty ([email protected])
Interface Bonding

Prepared by: M.T.M. Monty ([email protected])


Interface Bonding

Prepared by: M.T.M. Monty ([email protected])


Interface Bonding

Mikrotik-02 configuration also has been done.

Prepared by: M.T.M. Monty ([email protected])


Interface Bonding
Now check the point to point rechability from both Mikrotik 1 & 2

Prepared by: M.T.M. Monty ([email protected])


Interface Bonding
Now check the traffic

Prepared by: M.T.M. Monty ([email protected])


VRRP

Prepared by: M.T.M. Monty ([email protected])


VRRP

Creating VRRP Interface on Mikrotik-01

Prepared by: M.T.M. Monty ([email protected])


VRRP

Add the IP address according to the topology in Mikoritk-1

Prepared by: M.T.M. Monty ([email protected])


VRRP

Creating VRRP Interface on Mikrotik-02

Prepared by: M.T.M. Monty ([email protected])


VRRP

Add the IP address according to the topology in Mikrotik-2

Prepared by: M.T.M. Monty ([email protected])


VRRP

Now check from Router-01. VRRP is in Master mode, because its value (120) is
greater than Router-2
Prepared by: M.T.M. Monty ([email protected])
VRRP

Router-2 is in Backup Mode. If Router-1 is failure, Than the Router-2 VRRP will
be in action.
Prepared by: M.T.M. Monty ([email protected])
Thank You Very Much!!

Prepared by: M.T.M. Monty ([email protected])

You might also like