SSTP (Secure Socket Tunneling Protocol) is a form of VPN (Virtual Private Network) that uses TLS 1.0 channel and runs on TCP port 443 (SSL) protocol. In order to use SSTP with optimal security, we must add an SSL certificate for connection between Server and Client. This makes SSTP VPN more secure (secure) than PPTP VPN. But if…
Lees verder
Instellen Port Forwarding op een MikroTik router doe je als volgt : Open de browser en ga naar 192.168.88.1. Default (Mikrotik config) IP-adres MikroTik: 192.168.88.1 Gebruikersnaam: admin Wachtwoord: Geen (Verander dit) Ga naar IP → Firewall → NAT Klik “Add New” om een nieuwe NAT regel aan te maken. Verander de “Chain” naar “dstnat”, “Protocol”…
Lees verder
# ################################################ # Author: Pascal # # Email: Info@wifinederland.nl # ################################################## /ip firewall address-list # # This defines the WAN interfaces for load balancing. :global WANIF1 “Wan1” :global WANIF2 “Wan2” # # This defines the LAN interface :global LANIF “Lan” # #This defines the default gateways # :global GW1 “5.5.5.1” :global GW2 “4.4.4.1” # # # Set…
Lees verder
/ ip address add address=1.1.1.50/24 network=1.1.1.0 broadcast=1.1.1.255 interface=Local comment=”” \ disabled=no add address=10.111.0.2/24 network=10.111.0.0 broadcast=10.111.0.255 interface=wlan2 \ comment=”” disabled=no add address=10.112.0.2/24 network=10.112.0.0 broadcast=10.112.0.255 interface=wlan1 \ comment=”” disabled=no / ip firewall mangle add chain=prerouting in-interface=Local connection-state=new nth=1,1,0 \ action=mark-connection new-connection-mark=odd passthrough=yes comment=”” \ disabled=no add chain=prerouting in-interface=Local connection-mark=odd action=mark-routing \ new-routing-mark=odd passthrough=no comment=”” disabled=no add chain=prerouting…
Lees verder
This is an example shows how the bridge be done using MPLS instead of WDS. Bridge: /interface wireless set wlan1 adaptive-noise-immunity=ap-and-client-mode band=5ghz-onlyn basic-rates-a/g=”” country=australia disabled=no frequency=5180 frequency-mode=manual-txpower ht-ampdu-priorities=0,1,2,3,4,5,6,7 ht-extension-channel=below-control ht-rxchains=0,1 ht-txchains=0,1 mode=bridge rate-set=configured ssid=wifinederland.nl supported-rates-a/g=”” wireless-protocol=nv2 /ip address add address=172.16.0.1/30 interface=wlan1 /mpls ldp set enabled=yes lsr-id=172.16.0.1 transport-address=172.16.0.1 /mpls ldp interface add interface=wlan1 /interface vpls add…
Lees verder
Bridge config – Master /interface bridge add mtu=1500 name=bridge1 /interface wireless security-profiles set [ find default=yes ] supplicant-identity=master add authentication-types=wpa-psk,wpa2-psk eap-methods=”” \ management-protection=allowed management-protection-key=12345 \ mode=dynamic-keys name=profile1 supplicant-identity=”” \ wpa-pre-shared-key=12345 wpa2-pre-shared-key=12345 /interface wireless set [ find default-name=wlan1 ] band=5ghz-a/n channel-width=20/40mhz-Ce \ country=netherlands disabled=no frequency=5200 mode=bridge rx-chains=0,1 \ security-profile=profile1 ssid=wifinederland_5ghz_lijn1 tx-chains=0,1 /ip ipsec proposal set […
Lees verder
Hier is een configuratie van mijn mikrotik i.c.m. provider tweak internet-tv-telefoon Let op de mac adressen gebruik je eigen. Voor vragen kan je altijd mailen naar info@wifinederland.nl Telefoon sip account heb ik in een los toestel geprogrammeerd en dit werkt goed. De standaard zyxel router van provider Tweak heb ik er tussen uitgehaald . #…
Lees verder
If separate VLANs are implemented on a switch, then a router is required to provide communication between VLANs. Switch works at OSI layer 2 so it uses only Ethernet header to forward and does not check IP header. For this reason we must use the router that is working as a gateway for each VLAN.…
Lees verder
Original 802.1Q allows only one vlan header, Q-in-Q on the other hand allows two or more vlan headers. In RouterOS Q-in-Q can be configured by adding one vlan interface over another. Example: /interface vlan add name=vlan1 vlan-id=11 interface=ether1 add name=vlan2 vlan-id=12 interface=vlan1 If any packet is sent over ‘vlan2′ interface, two vlan tags will be…
Lees verder
Add necessary VLAN interfaces on ethernet interface to make it as a VLAN trunk port. /interface vlan add interface=ether2 name=eth2-vlan200 vlan-id=200 add interface=ether2 name=eth2-vlan300 vlan-id=300 add interface=ether2 name=eth2-vlan400 vlan-id=400 Add bridges for each VLAN /interface bridge add name=bridge-vlan200 add name=bridge-vlan300 add name=bridge-vlan400 Add VLAN interfaces to their corresponding bridges and ethernet interfaces where untagged traffic…
Lees verder
