MikroTik

Chapter: Introduction to MikroTik Routers

1. Introduction

MikroTik is a well-known networking company that develops hardware and software solutions for Internet connectivity. Primarily recognized for its RouterOS operating system and RouterBOARD hardware, MikroTik products are widely adopted in various sectors including small and medium businesses, educational institutions, and Internet Service Providers (ISPs). Due to their affordability, flexibility, and feature-rich capabilities, MikroTik routers have become a popular choice for both professional and academic use.

2. History of MikroTik

MikroTik was founded in 1996 in Riga, Latvia. The company initially started by developing routing software for Linux-based systems. In 1997, MikroTik released RouterOS, a specialized operating system designed to turn standard PC hardware into a powerful router. Later, the company began producing its own hardware under the RouterBOARD brand, which helped streamline deployment and integration.

Today, MikroTik devices are used globally for a wide range of networking applications, from home and office setups to complex ISP backbones.

3. Features and Applications of MikroTik

MikroTik devices are equipped with numerous features that cater to advanced networking needs. These include:

• Static and dynamic routing (RIP, OSPF, BGP)

• Network Address Translation (NAT)

• Firewall configuration

• Virtual Private Network (VPN) support (PPTP, L2TP, SSTP, IPsec, OpenVPN)

• Bandwidth control and Quality of Service (QoS)

• Wireless configuration and management

• Load balancing and failover

• User authentication and hotspot management

These features make MikroTik suitable for a wide variety of networking tasks, including local area network (LAN) management, Internet sharing, enterprise routing, and secure remote access.

4. Configuration Interfaces

MikroTik RouterOS supports multiple configuration interfaces to accommodate different levels of user expertise:

• Winbox: A Windows-based graphical user interface that provides comprehensive configuration tools in a visual format.

• WebFig: A web-based interface accessible via a browser.

• CLI (Command Line Interface): Accessible via terminal, SSH, or Telnet for advanced users and script automation.

5. Why MikroTik is Widely Used

MikroTik routers are particularly popular due to their combination of affordability, performance, and functionality. The reasons for their widespread adoption include:

• Low cost compared to other enterprise-level routers

• Rich feature set suitable for both basic and advanced networking

• Flexibility in configuration and deployment

• Availability of both hardware and software-based solutions

• Strong community support and open forums

• Ideal for learning and training in academic environments

6. Comparison: MikroTik vs. Cisco

Aspect

MikroTik

Cisco

Price

Affordable

Expensive

Target Audience

SMEs, ISPs, Educational Institutions

Enterprises, Data Centers

Operating System

RouterOS

Cisco IOS

Configuration Interface

GUI (Winbox/WebFig), CLI

Primarily CLI

Learning Curve

Easier for beginners

Requires prior knowledge

Support

Community-based, limited official support

Comprehensive enterprise support

Flexibility

High

High, but more standardized

While Cisco remains a leading solution for enterprise environments with mission-critical infrastructure, MikroTik offers an accessible and capable alternative for smaller setups, academic institutions, and budget-conscious organizations.

7. Use Cases of MikroTik Routers

MikroTik routers are commonly used in scenarios such as:

• ISP gateway and customer premises equipment

• Campus and office network management

• Public hotspot systems with user authentication

• Load balancing multiple internet connections

• Secure VPN tunnels for remote workers

• Traffic shaping and user bandwidth control

These routers are especially valuable in regions where cost is a significant factor and robust performance is still required.

8. Educational Value and Certifications

MikroTik also supports professional development through official certifications. The most foundational course is the MikroTik Certified Network Associate (MTCNA), followed by specialized tracks such as:

• MikroTik Certified Routing Engineer (MTCRE)

• MikroTik Certified Wireless Engineer (MTCWE)

• MikroTik Certified User Management Engineer (MTCUME)

These certifications provide hands-on knowledge of RouterOS and are highly regarded in the networking industry.

9. Limitations

Despite its advantages, MikroTik has some limitations:

• Limited vendor-based customer support

• Occasional complexity in scripting and automation

• Not ideal for high-performance data centers or enterprise-grade redundancy

Nonetheless, for many applications, these drawbacks are outweighed by the flexibility and cost-effectiveness of the platform.

10. Conclusion

MikroTik has established itself as a powerful, versatile, and cost-efficient networking solution. It is particularly well-suited for small to medium-sized networks, ISP environments, and educational institutions. Its combination of an easy-to-use interface, robust feature set, and low cost makes it a compelling alternative to traditional enterprise networking vendors, especially in emerging markets and academic settings.

Lecture: MikroTik Router Configuration with Winbox for DHCP Internet and PPPoE Users (ISP-Based Setup)

Objective:

• Configure MikroTik router using Winbox.

• Set up internet using DHCP Client.

• Configure PPPoE server.

• Create PPPoE users with 3 speed-based profiles.

Block Diagram:

Requirements:

• MikroTik Router

• Winbox Software

• Internet Connection (via DHCP)

• Ethernet Cable

Step 1: Connect to MikroTik Using Winbox

1.    Connect PC to MikroTik router via Ethernet cable (Ether1).

2.    Open Winbox.

3.    Click on "Neighbors" to detect router.

4.    Select MAC address.

5.    Login with:

o Username: admin

o Password: (leave blank)

6.    Click "Connect".

📸 Add Screenshot: Winbox Login Interface

Reason: MAC login works without IP.

Step 2: Reset Configuration (Optional)

1.    Go to System > Reset Configuration.

2.    Check "No Default Configuration".

3.    Click Reset Configuration.

Reason: Clean setup environment.

Step 3: Rename Interfaces

1.    Go to Interfaces.

2.    Rename:

o ether1 to WAN

o ether2 (or others) to LAN

Reason: For clear management.

Step 4: Configure DHCP Client for WAN (Internet)

1.    Go to IP > DHCP Client.

2.    Click + to add.

3.    Interface: WAN

4.    Enable:

o Use Peer DNS

o Use Peer NTP

5.    Click Apply and OK.

Reason: Receives IP, DNS, gateway from ISP automatically.

Check:  ping 8.8.8.8

Step 5: Set LAN IP Address

1.    Go to IP > Addresses.

2.    Click +:

o Address: 10.0.4.1/24

o Interface: LAN

3.    Click Apply and OK.

Reason: Assigns router IP to local side.

Step 6: Setup PPPoE Server

1.    Go to PPP > Interface > PPPoE Server.

2.    Click +:

o Service Name: pppoe-server01

o Interface: LAN

o Tick: One Session per Host (Only one device can access the PPPoE ID)

o Disable or uncheck to pap (To Encrypt the Password)

o Default Profile set Default Encryption (Encryption Ensure)

3.    Click OK.

📸 Add Screenshot: PPPoE Server Interface

Reason: Enables authentication for clients on LAN.

Step 7: Create IP Pools and PPPoE Profiles with Speed Limits

1.    Go to IP > Pool and create 3 pools:

o Pool Name: pool-1mb → Addresses: 10.0.1.2-10.0.1.254

o Pool Name: pool-2mb → Addresses: 10.0.2.2-10.0.2.254

o Pool Name: pool-3mb → Addresses: 10.0.3.2-10.0.3.254

2.    Go to PPP > Profiles, create 3 profiles:

o Name: pppoe-1mb

§  Local Address: 10.0.1.1

§  Remote Address: pool-1mb

§  DNS Server: 8.8.8.8  or 4.4.2.2

§  Rate Limit: 1M/1M

o Name: pppoe-2mb

§  Local Address: 10.0.2.1

§  Remote Address: pool-2mb

§  Rate Limit: 2M/2M

o Name: pppoe-3mb

§  Local Address: 10.0.3.1

§  Remote Address: pool-3mb

§  Rate Limit: 3M/3M

📊 Diagram Tip: Use a table or diagram to visualize IP Pool to Bandwidth Mapping

Reason: Profiles assign unique IP ranges and bandwidth per user type.

Step 8: Add PPPoE Users to Each Plan

1.    Go to PPP > Secrets.

2.    Add users as follows:

o Name: user1, Password: 1234, Service: pppoe, Profile: pppoe-1mb

o Name: user2, Password: 1234, Profile: pppoe-2mb

o Name: user3, Password: 1234, Profile: pppoe-3mb

Reason: Different profiles for different bandwidth allocations.

Setup Simple Queues for Upload/Download Limits

Although PPPoE profiles have rate limits, you can also use Simple Queues to enforce or monitor upload/download speed.

1.    Go to Queues > Simple Queues.

2.    Click + to add a new queue.

3.    Fill in:

o    Name: 1Mbps

o    Target: 10.0.1.0/24 (or assigned IP)

o    Max Limit: 1M/1M

4.    Repeat for other users:

o    user2 → Target: 10.0.2.x → Max Limit: 2M/2M

o    user3 → Target: 10.0.3.x → Max Limit: 3M/3M

Reason: Provides more detailed upload/download control and real-time monitoring.

Step 9: NAT Masquerade for Internet Sharing

1.    Go to IP > Firewall > NAT.

2.    Click +:

o Chain: srcnat

o Src. Address: 10.0.0.0/16

o Out Interface: WAN

o Action: masquerade

3.    Click Apply and OK.

Reason: Allows LAN users to access internet through router.

Testing:

• Connect a PC to LAN.

• Setup a PPPoE dialer:

  • Username: user1, user2, or user3

  • Password: 1234

• Connect and browse the internet.

Reference:

This setup is inspired by a practical example available on YouTube: MikroTik PPPoE Setup with Bandwidth Control

Summary Table:

Step

Task

Reason

1

Winbox Login

Start configuration

2

Reset Config

Clean environment

3

Rename Interfaces

Easy identification

4

DHCP Client

Get internet IP auto

5

LAN IP Setup

Enable local network

6

PPPoE Server

Manage local access

7

Profiles + Pools

Assign IP/speed per plan

8

Add Users

Enable login with speed tier

9

NAT

Share internet