Mikrotik » Historique » Version 37
Version 36 (Mehdi Abaakouk, 14/02/2013 18:55) → Version 37/142 (Laurent GUERBY, 11/10/2013 18:35)
h1. Mikrotik
RouterOS
http://wiki.mikrotik.com/wiki/MikroTik_RouterOS
http://wiki.mikrotik.com/wiki/Manual:TOC
http://wiki.mikrotik.com/wiki/Manual:Webfig
http://www.mikrotik.com/download.html
http://wiki.mikrotik.com/wiki/Upgrading_RouterOS
http://wiki.mikrotik.com/wiki/Supported_Hardware
http://wiki.mikrotik.com/wiki/Manual:Password_reset
http://wiki.mikrotik.com/wiki/Manual:PoE-Out
h2. Boitiers
* Nice box : http://forum.mikrotik.com/viewtopic.php?p=297825#p297825
* http://www.mikrotik.com/mfm
* http://www.aerial.net/shop/product_info.php?products_id=1085
* http://www.stationbox.info/
* Boîtiers Rexel très chers
* http://www.technic-achat.com/coffret-electrique-ip66-imo,fr,4,144T_XX.cfm (144T0010)
* http://www.interprojekt.com.pl/gold-alubox-outdoor-waterproof-case-p-472.html
* http://www.materielelectrique.com/coffret-polyester-marina-ip66-ik10-7035-300x220x160-p-6579.html
h2. Montage
* http://shop.varia-store.com/product_info.php?info=p1390_RF-Elements-EasyBracket---EasyBracket-Universal.html
h2. PoE
* http://www.i4wifi.eu/en/EU-230V-powering/PoE-convertor-48-V-24-V-802-3af-at.html
h2. Password
From: Le Net du Kermeur
Utilitaire mtpass, ça se trouve là : http://manio.skyboo.net/mikrotik/
Ca se compile sous g++, donc sur n'importe quel Linux ou *BSD.
Testé sous OpenBSD, il fait le boulot.
h2. RB750UP
http://routerboard.com/RB750UP
http://blog.lekermeur.net/wp-content/uploads/2012/03/Printemps2012_RB750.pdf
Attention : problèmes lors que le RB750UP est alimenté en PoE : http://forum.mikrotik.com/viewtopic.php?f=3&t=57943
> we are working on new FW that would add useful features that are currently missing. One of them is reworked power management.
Voltage : http://forum.mikrotik.com/viewtopic.php?f=3&t=58124
> limit on power out port is 500mA regardless of output voltage. so at 12V you will be able to power only MAX 6W device. while at 30V 15W.
> If you power RB570UP with PoE 24V adapter over 100m cable, then resulting output voltage at full load (all 4 ports giving out 500mA totaling to 2A) then voltage to powered ports at RB750UP end will be around 21V then losses on cable and protections you end up with around 19V at the end device. and cables stretching for 200m from PSU brick.
> PoE in port has no input limitation only output is limited to 500mA and with 4 prots it is 2A
Upgrade to 5.20
<pre>
[admin@MikroTik] /interface ethernet poe settings> upgrade
Do you really want to upgrade PoE firmware? [y/n]
y
Please reboot to finish PoE firmware upgrade.
[admin@MikroTik] /interface ethernet poe settings> pr
version: 2.0
ether1-poe-in-long-cable: no
[admin@MikroTik] /interface ethernet poe> monitor [find]
name: ether2-master-local ether3-slave-local ether4-slave-local ether5-slave-local
poe-out-voltage: 23.5V
poe-out-current: 160mA
poe-out-power: 3.7W
</pre>
* http://wiki.mikrotik.com/wiki/Manual:Upgrading_RouterOS
* To update firmware (latest RouterOS 5.12):
* Files / upload choose file : routeros-mipsbe-5.12.npk (12MB)
* Attendre la fin de upload
* System / Packages / IPv6 schedule for update
* System / Reboot
* about 90 seconds. Note: PoE will be cut during the reboot
chiwa admin VLAN 3175
192.168.3.20
telnet login admin pass (vide)
web
<pre>
[admin@rb750up-chiwawa] > interface ethernet print
Flags: X - disabled, R - running, S - slave
# NAME MTU MAC-ADDRESS ARP MASTER-PORT SWITCH
0 ether1-gateway 1500 00:0C:42:E9:BA:8A enabled
1 R ;;; To chiwa's router *** NO POE ***
ether2-master-local 1500 00:0C:42:E9:BA:8B enabled none switch1
2 RS ;;; to Vince' NS5M - To Myrys
ether3-slave-local 1500 00:0C:42:E9:BA:8C enabled ether2-master-local switch1
3 RS ;;; to NS5M east - To CDRX
ether4-slave-local 1500 00:0C:42:E9:BA:8D enabled ether2-master-local switch1
4 RS ;;; to beaconing NS5M (port balcon.3)
ether5-slave-local 1500 00:0C:42:E9:BA:8E enabled ether2-master-local switch1
</pre>
RouterOS v2
http://wiki.mikrotik.com/wiki/Manual:PoE-Out#RouterOS_2
http://wiki.mikrotik.com/wiki/Manual:PoE-Out#Changes_between_1.x_and_2.0_PoE-Out_controller_firmware
<pre>
[admin@MikroTik] > interface ethernet poe monitor [find]
name: ether2 ether3 ether4 ether5
poe-out-voltage: 23.2V 23.2V 23.2V
poe-out-current: 224mA 116mA 64mA
poe-out-power: 5.1W 2.6W 1.4W
</pre>
http://wiki.mikrotik.com/wiki/PoE-Out
/interface ethernet set ether2 poe-out=on
/interface ethernet set ether2 poe-out=off
/interface ethernet set ether2 poe-out=auto
Note:
<obinou> Le poe-out, il faut le mettre à "on" , et pas à "auto".
<obinou> sans ça, j'ai l'impression que le RB fait un power-cycle si il détecte une perte de link
<obinou> or, quand la NSM5 démarre, entre le bootloader & le firmware ca perd le link
<obinou> conclusion: reboot en boucle.
Note:
Après essais il est préférable d'éviter le 12V: Si au départ ça semble marcher, les pics de courants
dépassent parfois la limite autorisé par port de 500mA, et le port se coupe immédiatement.
Le 24V n'a pas montré ce souci.
Note 2:
Dans les derniers firmwares Microtik, l'option "poe-out" prend comme option "auto", "forced-on", ou "forced-off".
http://forum.mikrotik.com/viewtopic.php?f=3&t=49976&sid=40ea9661791968a896ab35214dc18f15&start=50
http://forum.mikrotik.com/viewtopic.php?f=3&t=57608
<pre>
[admin@MikroTik-Ouin] > /interface ethernet print detail
Flags: X - disabled, R - running, S - slave
0 R name="ether1-gateway" mtu=1500 l2mtu=1600 mac-address=00:0C:42:D3:94:D5 arp=enabled auto-negotiation=yes full-duplex=yes speed=100Mbps
1 name="ether2-master-local" mtu=1500 l2mtu=1598 mac-address=00:0C:42:D3:94:D6 arp=enabled auto-negotiation=yes full-duplex=yes speed=100Mbps master-port=none bandwidth=unlimited/unlimited switch=switch1 poe-out=auto
2 name="ether3-slave-local" mtu=1500 l2mtu=1598 mac-address=00:0C:42:D3:94:D7 arp=enabled auto-negotiation=yes full-duplex=yes speed=100Mbps master-port=none bandwidth=unlimited/unlimited switch=switch1 poe-out=auto
3 R name="ether4-slave-local" mtu=1500 l2mtu=1598 mac-address=00:0C:42:D3:94:D8 arp=enabled auto-negotiation=yes full-duplex=yes speed=100Mbps master-port=none bandwidth=unlimited/unlimited switch=switch1 poe-out=on
4 R name="ether5-slave-local" mtu=1500 l2mtu=1598 mac-address=00:0C:42:D3:94:D9 arp=enabled auto-negotiation=yes full-duplex=yes speed=100Mbps master-port=none bandwidth=unlimited/unlimited switch=switch1 poe-out=on
</pre>
<pre>
[admin@MikroTik-Ouin] > sys resource pr
uptime: 6m6s
version: 5.12
free-memory: 17880KiB
total-memory: 29708KiB
cpu: MIPS 24Kc V7.4
cpu-count: 1
cpu-frequency: 400MHz
cpu-load: 0%
free-hdd-space: 30844KiB
total-hdd-space: 61440KiB
write-sect-since-reboot: 214
write-sect-total: 96113
bad-blocks: 0%
architecture-name: mipsbe
board-name: RB750UP
platform: MikroTik
</pre>
h2. Bridging sur le 750UP
Le RB750UP est conçu dans l'idée d'en faire un CPE multi-antennes. Par défaut, le port 1 (POE-in ou LAN) n'est pas bridgé sur le switch des 4 ports POE-out, on s'en sert plutôt en mode routé.
Pour l'utiliser comme un simple switch et non comme un routeur il suffit de créer un bridge entre les interfaces :
<pre>
[admin@rb750up-chiwawa] > interface bridge add name=bridge1
[admin@rb750up-chiwawa] > interface bridge port add bridge=bridge1 interface=ether1-gateway
[admin@rb750up-chiwawa] > interface bridge port add bridge=bridge1 interface=ether2-master-local
</pre>
h2. DHCP sur le 750UP
Note: Attention, un serveur DHCP est actif par défaut sur les ports 2 à 5. Il faut le désactiver
pour passer en mode switch.
<pre>
ip dhcp-server print
ip dhcp-server remove 0
</pre>
h2. Routing sur le 750UP
<pre>
ip route add dst-address=0.0.0.0/0 gateway=172.16.0.254
</pre>
h2. RB250GS
VLAN http://wiki.mikrotik.com/wiki/SwOS/Router-On-A-Stick
Doc http://wiki.mikrotik.com/wiki/SwOS
vlan limitation mikrotik rb250gs http://forum.mikrotik.com/viewtopic.php?f=17&t=45721
Routeur, switch, VLAN et multi-modems (via rb250gs) http://doc.rhizome-fai.net/doku.php?id=technique:routeur:vlan
h2. RB750UP en mode BOX pour les nanostation
Connection to the routerboard
<pre>
ssh admin@192.168.88.1
</pre>
Reset the RouterBoard :
<pre>
$Â setup
$Â r
$ y
</pre>
Le routerboard reboot et on se reconnect
Configuration du WAN
<pre>
$ ip address add address=91.224.149.194/24 interface=ether1-gateway
$ ip route add gateway=91.224.149.254
$ ip address print
$ ip route print
</pre>
RouterOS
http://wiki.mikrotik.com/wiki/MikroTik_RouterOS
http://wiki.mikrotik.com/wiki/Manual:TOC
http://wiki.mikrotik.com/wiki/Manual:Webfig
http://www.mikrotik.com/download.html
http://wiki.mikrotik.com/wiki/Upgrading_RouterOS
http://wiki.mikrotik.com/wiki/Supported_Hardware
http://wiki.mikrotik.com/wiki/Manual:Password_reset
http://wiki.mikrotik.com/wiki/Manual:PoE-Out
h2. Boitiers
* Nice box : http://forum.mikrotik.com/viewtopic.php?p=297825#p297825
* http://www.mikrotik.com/mfm
* http://www.aerial.net/shop/product_info.php?products_id=1085
* http://www.stationbox.info/
* Boîtiers Rexel très chers
* http://www.technic-achat.com/coffret-electrique-ip66-imo,fr,4,144T_XX.cfm (144T0010)
* http://www.interprojekt.com.pl/gold-alubox-outdoor-waterproof-case-p-472.html
* http://www.materielelectrique.com/coffret-polyester-marina-ip66-ik10-7035-300x220x160-p-6579.html
h2. Montage
* http://shop.varia-store.com/product_info.php?info=p1390_RF-Elements-EasyBracket---EasyBracket-Universal.html
h2. PoE
* http://www.i4wifi.eu/en/EU-230V-powering/PoE-convertor-48-V-24-V-802-3af-at.html
h2. Password
From: Le Net du Kermeur
Utilitaire mtpass, ça se trouve là : http://manio.skyboo.net/mikrotik/
Ca se compile sous g++, donc sur n'importe quel Linux ou *BSD.
Testé sous OpenBSD, il fait le boulot.
h2. RB750UP
http://routerboard.com/RB750UP
http://blog.lekermeur.net/wp-content/uploads/2012/03/Printemps2012_RB750.pdf
Attention : problèmes lors que le RB750UP est alimenté en PoE : http://forum.mikrotik.com/viewtopic.php?f=3&t=57943
> we are working on new FW that would add useful features that are currently missing. One of them is reworked power management.
Voltage : http://forum.mikrotik.com/viewtopic.php?f=3&t=58124
> limit on power out port is 500mA regardless of output voltage. so at 12V you will be able to power only MAX 6W device. while at 30V 15W.
> If you power RB570UP with PoE 24V adapter over 100m cable, then resulting output voltage at full load (all 4 ports giving out 500mA totaling to 2A) then voltage to powered ports at RB750UP end will be around 21V then losses on cable and protections you end up with around 19V at the end device. and cables stretching for 200m from PSU brick.
> PoE in port has no input limitation only output is limited to 500mA and with 4 prots it is 2A
Upgrade to 5.20
<pre>
[admin@MikroTik] /interface ethernet poe settings> upgrade
Do you really want to upgrade PoE firmware? [y/n]
y
Please reboot to finish PoE firmware upgrade.
[admin@MikroTik] /interface ethernet poe settings> pr
version: 2.0
ether1-poe-in-long-cable: no
[admin@MikroTik] /interface ethernet poe> monitor [find]
name: ether2-master-local ether3-slave-local ether4-slave-local ether5-slave-local
poe-out-voltage: 23.5V
poe-out-current: 160mA
poe-out-power: 3.7W
</pre>
* http://wiki.mikrotik.com/wiki/Manual:Upgrading_RouterOS
* To update firmware (latest RouterOS 5.12):
* Files / upload choose file : routeros-mipsbe-5.12.npk (12MB)
* Attendre la fin de upload
* System / Packages / IPv6 schedule for update
* System / Reboot
* about 90 seconds. Note: PoE will be cut during the reboot
chiwa admin VLAN 3175
192.168.3.20
telnet login admin pass (vide)
web
<pre>
[admin@rb750up-chiwawa] > interface ethernet print
Flags: X - disabled, R - running, S - slave
# NAME MTU MAC-ADDRESS ARP MASTER-PORT SWITCH
0 ether1-gateway 1500 00:0C:42:E9:BA:8A enabled
1 R ;;; To chiwa's router *** NO POE ***
ether2-master-local 1500 00:0C:42:E9:BA:8B enabled none switch1
2 RS ;;; to Vince' NS5M - To Myrys
ether3-slave-local 1500 00:0C:42:E9:BA:8C enabled ether2-master-local switch1
3 RS ;;; to NS5M east - To CDRX
ether4-slave-local 1500 00:0C:42:E9:BA:8D enabled ether2-master-local switch1
4 RS ;;; to beaconing NS5M (port balcon.3)
ether5-slave-local 1500 00:0C:42:E9:BA:8E enabled ether2-master-local switch1
</pre>
RouterOS v2
http://wiki.mikrotik.com/wiki/Manual:PoE-Out#RouterOS_2
http://wiki.mikrotik.com/wiki/Manual:PoE-Out#Changes_between_1.x_and_2.0_PoE-Out_controller_firmware
<pre>
[admin@MikroTik] > interface ethernet poe monitor [find]
name: ether2 ether3 ether4 ether5
poe-out-voltage: 23.2V 23.2V 23.2V
poe-out-current: 224mA 116mA 64mA
poe-out-power: 5.1W 2.6W 1.4W
</pre>
http://wiki.mikrotik.com/wiki/PoE-Out
/interface ethernet set ether2 poe-out=on
/interface ethernet set ether2 poe-out=off
/interface ethernet set ether2 poe-out=auto
Note:
<obinou> Le poe-out, il faut le mettre à "on" , et pas à "auto".
<obinou> sans ça, j'ai l'impression que le RB fait un power-cycle si il détecte une perte de link
<obinou> or, quand la NSM5 démarre, entre le bootloader & le firmware ca perd le link
<obinou> conclusion: reboot en boucle.
Note:
Après essais il est préférable d'éviter le 12V: Si au départ ça semble marcher, les pics de courants
dépassent parfois la limite autorisé par port de 500mA, et le port se coupe immédiatement.
Le 24V n'a pas montré ce souci.
Note 2:
Dans les derniers firmwares Microtik, l'option "poe-out" prend comme option "auto", "forced-on", ou "forced-off".
http://forum.mikrotik.com/viewtopic.php?f=3&t=49976&sid=40ea9661791968a896ab35214dc18f15&start=50
http://forum.mikrotik.com/viewtopic.php?f=3&t=57608
<pre>
[admin@MikroTik-Ouin] > /interface ethernet print detail
Flags: X - disabled, R - running, S - slave
0 R name="ether1-gateway" mtu=1500 l2mtu=1600 mac-address=00:0C:42:D3:94:D5 arp=enabled auto-negotiation=yes full-duplex=yes speed=100Mbps
1 name="ether2-master-local" mtu=1500 l2mtu=1598 mac-address=00:0C:42:D3:94:D6 arp=enabled auto-negotiation=yes full-duplex=yes speed=100Mbps master-port=none bandwidth=unlimited/unlimited switch=switch1 poe-out=auto
2 name="ether3-slave-local" mtu=1500 l2mtu=1598 mac-address=00:0C:42:D3:94:D7 arp=enabled auto-negotiation=yes full-duplex=yes speed=100Mbps master-port=none bandwidth=unlimited/unlimited switch=switch1 poe-out=auto
3 R name="ether4-slave-local" mtu=1500 l2mtu=1598 mac-address=00:0C:42:D3:94:D8 arp=enabled auto-negotiation=yes full-duplex=yes speed=100Mbps master-port=none bandwidth=unlimited/unlimited switch=switch1 poe-out=on
4 R name="ether5-slave-local" mtu=1500 l2mtu=1598 mac-address=00:0C:42:D3:94:D9 arp=enabled auto-negotiation=yes full-duplex=yes speed=100Mbps master-port=none bandwidth=unlimited/unlimited switch=switch1 poe-out=on
</pre>
<pre>
[admin@MikroTik-Ouin] > sys resource pr
uptime: 6m6s
version: 5.12
free-memory: 17880KiB
total-memory: 29708KiB
cpu: MIPS 24Kc V7.4
cpu-count: 1
cpu-frequency: 400MHz
cpu-load: 0%
free-hdd-space: 30844KiB
total-hdd-space: 61440KiB
write-sect-since-reboot: 214
write-sect-total: 96113
bad-blocks: 0%
architecture-name: mipsbe
board-name: RB750UP
platform: MikroTik
</pre>
h2. Bridging sur le 750UP
Le RB750UP est conçu dans l'idée d'en faire un CPE multi-antennes. Par défaut, le port 1 (POE-in ou LAN) n'est pas bridgé sur le switch des 4 ports POE-out, on s'en sert plutôt en mode routé.
Pour l'utiliser comme un simple switch et non comme un routeur il suffit de créer un bridge entre les interfaces :
<pre>
[admin@rb750up-chiwawa] > interface bridge add name=bridge1
[admin@rb750up-chiwawa] > interface bridge port add bridge=bridge1 interface=ether1-gateway
[admin@rb750up-chiwawa] > interface bridge port add bridge=bridge1 interface=ether2-master-local
</pre>
h2. DHCP sur le 750UP
Note: Attention, un serveur DHCP est actif par défaut sur les ports 2 à 5. Il faut le désactiver
pour passer en mode switch.
<pre>
ip dhcp-server print
ip dhcp-server remove 0
</pre>
h2. Routing sur le 750UP
<pre>
ip route add dst-address=0.0.0.0/0 gateway=172.16.0.254
</pre>
h2. RB250GS
VLAN http://wiki.mikrotik.com/wiki/SwOS/Router-On-A-Stick
Doc http://wiki.mikrotik.com/wiki/SwOS
vlan limitation mikrotik rb250gs http://forum.mikrotik.com/viewtopic.php?f=17&t=45721
Routeur, switch, VLAN et multi-modems (via rb250gs) http://doc.rhizome-fai.net/doku.php?id=technique:routeur:vlan
h2. RB750UP en mode BOX pour les nanostation
Connection to the routerboard
<pre>
ssh admin@192.168.88.1
</pre>
Reset the RouterBoard :
<pre>
$Â setup
$Â r
$ y
</pre>
Le routerboard reboot et on se reconnect
Configuration du WAN
<pre>
$ ip address add address=91.224.149.194/24 interface=ether1-gateway
$ ip route add gateway=91.224.149.254
$ ip address print
$ ip route print
</pre>