Sie sind auf Seite 1von 40

ISP Setup using MikroTik

Class - II
IP/ARP, Proxy ARP, MAC Bindings, DHCP Server,
DHCP Client, NTP, User Management
M Abdullah Al Naser
B.Sc in CSE
CCNA, RHCE, RHCSA, MTCNA

ARP
Even though IP packets are addressed using IP
addresses, hardware addresses must be used to
actually transport data from one host to
another. Address Resolution Protocol is used to
map OSI level 3 IP addresses to OSI level 2 MAC
addresses. Router has a table of currently used
ARP entries. Normally the table is built
dynamically, but to increase network security, it
can be partially or completely built statically by
means of adding static entries.

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

ARP Process

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

ARP Properties

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

Verify ARP

Note: Maximum number of ARP entries are 8192.


Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

ARP Mode

Enabled
Disabled
Reply-Only
Proxy ARP

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

ARP Mode

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

ARP Mode
Enabled
This mode is enabled by default on all
interfaces. ARPs will be discovered
automatically and new dynamic entries will
be added to ARP table.

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

ARP Mode
Disabled
If ARP feature is turned off on the interface, i.e.,
arp=disabled is used, ARP requests from clients are
not answered by the router. Therefore, static arp
entry should be added to the clients as well. For
example, the router's IP and MAC addresses
should be added to the Windows workstations
using the arp command:

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

ARP Mode
Reply Only
If arp property is set to reply-only on the
interface, then router only replies to ARP
requests. Neighbour MAC addresses will be
resolved using /ip arp statically, but there
will be no need to add the router's MAC
address to other hosts' ARP tables like in
case if arp is disabled.

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

10

ARP Mode
Proxy-ARP

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

11

Static MAC Address

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

12

Static MAC Address

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

13

DHCP Server
The Dynamic Host Confirmation Protocol
(DHCP) service enables devices on a network to
obtain IP addresses and other information from
a DHCP server. This service automates the
assignment of IP addresses, subnet masks,
gateway and other IP networking parameters.
In order for the DHCP server to work, IP pools
must also be configured (do not include the
DHCP server's own IP address into the pool
range) and the DHCP networks.
Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

14

DHCP Server

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

15

DHCP Server

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

16

DHCP Server

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

17

DHCP Server

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

18

DHCP Server

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

19

DHCP Server

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

20

Verify DHCP Lease

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

21

Static DHCP Lease

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

22

Static DHCP Lease

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

23

Customize IP Pool

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

24

Add IP Pool

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

25

Add IP Pool

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

26

Verify Used IP from Pool

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

27

DHCP Client

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

28

DHCP Client

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

29

Time and Date

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

30

Change Time and Date

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

31

NTP Client

Why NTP?
To get correct time on router.
To get time for routers has no internal
memory to save clock time.

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

32

NTP Client

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

33

User and Group


MikroTiks default username is admin with no
password.
There are three different groups with different
permission level. The groups are:
1. Full
2. Read
3. Write
Username, password and Group can be added,
removed or changed as per requirements

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

34

User and Group (Change Password)

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

35

User and Group (Change Password)

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

36

User and Group (Add New User)

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

37

User and Group (Add New User)

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

38

User and Group (Verify Group)

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

39

Thank you very much

Prepared by- M Abdullah Al Naser (mail.naserbd@yahoo.com)

40