How I learned to love BGP communities and so can you
For the purpose of part one of this article we will talk about communities and how they can be utilized for traffic coming into your network
mikrotik
Common Questions:difference between Masquerade and SRC-NAT
One of the common questions I get is what is the difference between Masquerade and SRC-NAt? Which should I use? The quick answer is to use SRC-NAT if your gateway IP is static, and use masquerade if it can change. The Mikrotik Wiki Entry Firewall NAT action=masquerade is unique subversion of action=srcnat, it was designed for specific … Read more
Mikrotik and Letsencrypt
Recently there has been some activity on integration with LetsEncrypt and Mikrotik. WHile Mikrotik does not directly support Letsencrypt directly yet, you can make it work with this setup https://github.com/gitpel/letsencrypt-routeros
Mikrotik passing multiple subnets across a tunnel with multiple policies
Recently we had an issue with an IPsec tunnel on Mikrotik passing multiple subnets across a tunnel with multiple policies
Mikrotik advanced tools
Become a Patreon
Mikrotik chains explained
From the Mikrotik Wiki input – used to process packets entering the router through one of the interfaces with the destination IP address which is one of the router’s addresses. Packets passing through the router are not processed against the rules of the input chain (DST address of the router) forward – used to process packets passing … Read more
Mikrotik releases some new certifications
Mikrotik has released some new certifications. https://mikrotik.com/training/about MTCNA – MikroTik Certified Network Associate (view outline) MTCRE – MikroTik Certified Routing Engineer (view outline) MTCWE – MikroTik Certified Wireless Engineer (view outline) MTCTCE – MikroTik Certified Traffic Control Engineer (view outline) MTCUME – MikroTik Certified User Management Engineer (view outline) MTCIPv6E – MikroTik Certified IPv6 Engineer (view outline) MTCINE – MikroTik Certified Inter-networking … Read more
MikroTik Router as a Vultr host
Recently I spun up a Mikrotik instance under Vultr for the purpose of doing some v6 testing. I was running into some problems with getting IPV6 to route properly. Vultr has IPV6 setup on their side to auto configure a gateway, etc. when it comes to IPV6. They are expecting a host, not a router. … Read more