Advanced Routing with RouterOS

Aqox

Aqox

Well-Known Member
Joined
Jul 28, 2005
Messages
197
Reaction score
7
The following thread will show you how to deploy not only 2 ADSL connections on your router, but an unshaped one aswell.

With this all pc's / devices will support the local / international / unshaped access with RouterOS.

Tested on the following platforms :

XBOX360
Windows 95
Windows 98
Windows 2000
Windows Server 2003
Windows XP
Windows VISTA
Linux
(add to list please...)

i found a way of using the routes and deploy it onto a routerboard, simmilar to a small pc

i made an .xsl file with the commands in, then in terminal i can copy and paste 150 routes at a time to my routerboard

im running wireless clients on my routerboard aswell, and everything is being routed to the right paths...

there is a few ways of loading routeros onto a pc.

1. and old pentium pc
2. routerboard
3. virtual pc

you can download it free, and use it for 1 day i think, the iso image from their website

http://www.mikrotik.com/

basicly the pc/routerboard becomes the ROUTER

ie. in my setup i have a 4mbps line, netgear dg834, lan connection, and routerboard

netgear = 192.168.0.1/24
pc = 192.168.0.53/24
pc2 = 192.168.0.60/24
etc....

router = 192.168.0.123/24

ip - dns: (opendns) [telkom and is dns servers get confused with each other, so i use external free provider]

1 : 208.67.222.222
2 : 208.67.220.220

and enable remote requests

so, in my windows, i set the gateway and primary dns to 192.168.0.123

voila !

http://img237.imageshack.us/img237/374/routerosqu3.jpg
 
Last edited:
Last edited:
Just incase you are the paranoid type, I would blurr out your real name in the title bar. :p
 
everyone is using routesentry right ?

well, what about taking it to the next step ?

in this thread i have succesfully demonstrated how to deploy andvanced routing on a router with pppoe connections, same thing routesentry does.

why do you ask me?

well, its simpler, better, faster, and multi platform independant. it just works !

alot of people still strugle with the rasppoe, adsl routers, windows vista, windows xp firewall, etc...

if you setup routesentry, your pc is open for firewall attacks from the internet, and yes, its vunreable. with routeros, the virtual pc / routerboard / old pentium pc is vunreable, and your pc is behind the firewall, making it some what secure.

i dont struggle at all, as a matter of fact, everything is being done with RouterOS, firewall, pppoe, wireless, hotspot login, proxy server, even pptp(vpn), dhcp server, dhcp client, dns server, ssh, the works

why not give it a try ? ive got the virtual pc that i can host on server if anyone wants to download it

i need more testers for this to work...

Codemaster, I'm not doing anything illegal here, so dont worry boet! I'll even give you my grandma's name if u want it?
 
I think codemaster is concerned about your security, not because of what you are doing, but because your real world name is on one of the images.

Not just Routesentry is being used. Some use an IPCOP Linux box, others have configured their routers.

So far all the routing solutions on this forum have been free. How much does RouterOS cost?

Routesentry is a good solution for a single box. On a network it is burdonsome. I tried using it on a single box acting as a proxy server. It worked for most things but for many non-http apps being run on the network, it fell over. Some I could fix, other I couldn't.

I've now added the routing directly to my router via a start-up script. This works completely tranparently. And it is both simple and free. I don't require any additional hardware or software.

What advantages would the RouterOS solution have over what I currently have? All the services you mention are already available on my router's open source firmware.
 
Last edited:
RouterOS can be bought from online retailers that specialize in the field of Wireless ISP's, ie www.miro.co.za and the rest of the guys

I think RouterOS costs in the region of +/- R 200 for a Level 4 license, or if you buy a Routerboard 112, you get RouterOS for free built into it. Routerboard is a little expensive, R 1 200, but you really get a full blown small form factor pc. This is a little more professional equipment than your average open source / unix type setups. Most of the Wireless ISP's in SA is also using Routerboards on their backbones.

Its like having a Software Firewall vs. Hardware firewall, which one will win in any situation?

Routerboard has expansion cards, you can add up to 8x ethernet cards onto it, like having a 8 port managed switch with a built in router. Secondly, you can add CompactFlash to the routerboard for proxy server, webserver, or load routeros onto a pc and have unlimited space with normal hdd's.

What are u using Gatecrasher ? The Linksys router..?
I would love to see how a linksys router handles 800+ routes, 3x pppoe connections, firewall rules, vpn connections, wireless access point with hotspot login, etc... easily... ?

i love the queues on the routeros, its like having control over your clients connection. you can limit the connection @ 512kb/s down and 128kb/s up, you can even setup a pppoe server, so people on a local lan make a broadband connection from their pc, and connect to the router. this kind of router can also be very useful at lan-parties, where people actually pay for internet access, and as soon as limit gets reach, it freezes their connection. oh yea, and it supports RADIUS server auth

routeros is great for sniffing / torching a connection, see what protocols the connection uses, realtime !

All im say here is, that if people cant get routesentry or ipcop up and running, or for the matter of connection their xbox360 to the home lan, routeros is deffinitely something to look at.

Some of the features of RouterOS (copied from website)

Best wireless performance
Improved Nstreme performance
Powerful QoS control
P2P traffic filtering
High availability with VRRP
Bonding of Interfaces
Improved interface
Smaller and Less resource-hungry
Tons of other new features
Advanced Quality of Service
Stateful firewall, tunnels
STP bridging with filtering
High speed 802.11a/b/g wireless with WEP/WPA
WDS and Virtual AP
HotSpot for Plug-and-Play access
RIP, OSPF, BGP routing
remote WinBox GUI and Web admin
telnet/mac-telnet/ssh/console admin
real-time configuration and monitoring
 
Last edited:
Aqox... what exactly is virual PC? Can I run routerOS at the same time with windows XP??

I would like to give this a shot
 
Aqox said:
What are u using Gatecrasher ? The Linksys router..?
I would love to see how a linksys router handles 800+ routes, 3x pppoe connections, firewall rules, vpn connections, wireless access point with hotspot login, etc... easily... ?
Click to expand...

I have Linksys WRT54GSv4. It currently handles 1010 routes, firewall, 7 wireless & 4 wired clients without any noticeable difficulties...

I'm sure your solution gives you much more power and control. But you have to admit that routing traffic doesn't get any easier than pasting a start-up script into your router and re-booting.
 
Gatecrasher said:
I have Linksys WRT54GSv4.
Click to expand...

Where did you get that router? I have been looking for one to play with as I have pre ordered "Linksys WRT54G Ultimate Hacking" and wanna play :)

EDIT: Nevermind, found Miro :D
 
Last edited:
If I have 2 x 4mbps ADSL lines, is it possible to use both of them (one for local one for international) instead of making 2 broadband connections on one line?

What if I have IS Uncapped ADSL (with their router) and a normal SAIX ADSL line, would this help me route traffic between the two but dial a broadband connection for me with the SAIX line?
 
Hotmojo, you can get the Linksys WRT54GL from Pcmall, I was sent mine last week, ordered it at 3.15pm and it was there the next morning at 8:30 and its running OpenWRT like a dream.
 
For anyone who is interested, Cisco have just released new IOS for the 8xx and SOHO routers which allow multiple PPPoE sessions over a single line.
 
Aqox - Thanks for the info. I am currently doing the same. I'm using it in VMware works great.

Headstrong - Yes
 
need the routing info please

Aqox, would you mind sharing your xsl with us?

I have an RB 153 which I use to connect to wireless networks and a PC running RouterBoardOS.

I knew there was a way to do it in RouterBoardOS but wasn't sure how...
 
Step 2

ok

here goes, is your ADSL Router in Bridge mode ? Else its not going to work !

After youve installed RouterOS, do the following

Login to the PC with winbox

IP - Addresses
+ (Plus sign to add)

Give your router an IP address in your network range

Mine is like this for this tutorial:

192.168.0.246/24 (it will automaticly add the network and broadcast for you after u click on apply)

Interface : ether1

Your router has a IP address now ! 192.168.0.246

Try and ping it from a workstation !

Next to do:

IP - Firewall - NAT - Add +
Leave settings as is, click on action - masquerade
Apply - OK

Next to do:

PPP - Interfaces - Add + - PPPoE Client
Name : International
(for ADSL account)
Dailout - User : [email protected]
Password : ******
Add default route - On
the rest leave as is (will use it later)

Apply - OK

You should have a working Internet connection now !
Go to IP - Addresses - Should see your ISP Internet IP 42.x.x.x something is on SAIX - added dynamicly

Next step (add local only account)

PPP - Interfaces - Add + - PPPoE Client
Name : Localonly
(for ADSL account)
Dailout - User : [email protected]
Password : ******
Add default route - OFF !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!

the rest leave as is (will use it later)

the connections should take about 5-10 seconds to dail

Next is to add DNS Servers:

IP - DNS - Settings

Primary DNS : 208.67.222.222
Secondary : 208.67.220.220
Allow Remote Requests : On
Apply - OK

I use OpenDNS's DNS servers, they are up to date with the whole world, and u should never have any problems with it... Having SAIX and IS as DNS servers sometimes is dodgy, the one doesnt like the other one

Next is to test it so long:

Tools - Ping
Address : 196.25.1.1

You should get a ping reply back

Next try to ping : www.google.co.za
It should resolve an IP, and send reply back ! Then its working 90% so long

Next to add routes

I have a .xsl file that i copy and paste into the terminal window of Winbox. Click on New Terminal - Copy from xsl - paste. you can only do 150 @ time

Try adding 1 at a time, and see how it goes

Basicly what your doing is, telling routeros to route any traffic from lets say 196.25.0.0/24 through the localonly gateway, which is the localonly IS ISP.

Do this with 820+ routes, and u basicly got the whole of SA covered.

To do unshaped, ping your unshaped server from overseas, get their subnet and ip range, and add it to IP - Routes - and let it go through the unshapped PPPoE account (we have setup international + local already, so just setup another one, same as localonly one settings)

There is some other things to add like DHCP server, hotspot wireless login, but we wont go there now

Try and get it up and running so i can have a look

BTW, your router has a website, http://192.168.0.246 - check it out

The router becomes your gateway and dns server

In windows on your PC, give yourself a ip on that range : ie.

IP : 192.168.0.10
Subnet : 255.255.255.0
Gateway : 192.168.0.246
Primary DNS : 192.168.0.246

Voila ! Setup and ready for any pc running windows 95,98,2000,2003,xp, vista, linux, etc... , incl xbox360 !!!

Cheers
 
You must log in or register to reply here.
Back
Top
Sign up to the MyBroadband newsletter
X