Fundamental Class

Rahmat D. Djatmiko erdeje85@gmail.com

Training Schedule
08.00 10.00 10.15 12.15 13.15 15.30

Day 1 Introduction MikroTik Basic Routing

Network
Day 2 Bridging Wireless

Rahmat D. Djatmiko
erdeje85@gmail.com
Management

Day 3 Firewall QoS Tunnels

Day 4 Linux Basic DNS Server Web Server

Day 5 DHCP Server Mail Server Proxy Server

2

Day 6 Case Study

Course objectives
At the end of this course, the student will:
Be familiar with RouterOS software and RouterBoard
products
Be able to configure, manage, do basic
troubleshooting of a MikroTik router

Rahmat D. Djatmiko
erdeje85@gmail.com
Be able to provide basic services to clients

3
About Me
SMK Telkom Malang as Networking Teacher
SMK Telkom MikroTik Academy as Trainer
Freelance Trainer
Contact :

Rahmat D. Djatmiko
erdeje85@gmail.com
Email : erdeje85@gmail.com
Mobile/WA : 0811353595
BBM : 527C266F

4
 MODULE 1
INTRODUCTION

Rahmat D. Djatmiko
5

erdeje85@gmail.com
MikroTikls SIA
Software and Hardwate Vendor
Motto : Routing the World
Location : Riga, Latvia (North Europe)

Rahmat D. Djatmiko
erdeje85@gmail.com
6
MikroTik Certified
MikroTik 101
TCP/IP and Basic

MTCNA

Rahmat D. Djatmiko
erdeje85@gmail.com
Fundamental Class

MTCWE MTCRE MTCTCE MTCUME

Advanced Advanced Advanced Traffic Advanced User
Wireless Routing Control Management

MTCINE
Advanced
InterNetworking 7
MTCNA Outline
Introduction
Routing
Bridging
Wireless

Rahmat D. Djatmiko
erdeje85@gmail.com
Network Management
Firewall
QoS
Tunnels

8
MTCWE Outline
Wireless Installation
Wireless Standard
Wireless Tools
Wireless Troubleshooting

Rahmat D. Djatmiko
erdeje85@gmail.com
Wireless Advanced Settings
802.11n
Wireless Security
WDS and MESH
Wireless Bridging
Nstreme Protocol
Nv2 Protocol 9
MTCRE Outline
Static Routing
Point to Point Addressing
VPN
OSPF

Rahmat D. Djatmiko
erdeje85@gmail.com
10
MTCTCE Outline
Packet Flow Diagram
Firewall filter/nat/mangle
Quality of Service
DNS Client/Cache

Rahmat D. Djatmiko
erdeje85@gmail.com
DHCP Client/Relay/Server
Web Proxy

11
MTCUME Outline
PPP
PPTP/L2TP
PPPoE
PPP Bridging

Rahmat D. Djatmiko
erdeje85@gmail.com
IPSec
Hotspot
RADIUS

12
MTCINE Outline
BGP
MPLS
Traffic Engineering

Rahmat D. Djatmiko
erdeje85@gmail.com
13
 Rahmat D. Djatmiko
erdeje85@gmail.com
CHAPTER 1

MIKROTIK ROUTEROS AND 14

ROUTERBOARD
What is RouterOS?
MikroTik RouterOS is the operating system of MikroTik
RouterBOARD hardware.
It has all the necessary features for an ISP or network
administrator such as routing, firewall, bandwidth
management, wireless access point, backhaul link,

Rahmat D. Djatmiko
erdeje85@gmail.com
hotspot gateway, VPN server and more.
RouterOS also compatible with PC
Based on Linux Kernel

15
What is RouterBOARD?
A family of hardware solutions created by MikroTik
to answer the needs of customers around the world.
All operate with RouterOS.
Available from low-end spec up until Cloud-Core
high-end type

Rahmat D. Djatmiko
erdeje85@gmail.com
16
Integrated Solutions
These products are provided complete with cases
and power adapters.
Ready to use and preconfigured with the most
basic functionality.
All you need to do is to plug it in and connect to the

Rahmat D. Djatmiko
erdeje85@gmail.com
Internet or a corporate network.

17
RouterBOARD (boards only)
Small motherboard devices that are sold as is. You
must choose the case, power adapter and
interfaces separately. Perfect for assembling your
own systems as they offer the biggest customization
options.

Rahmat D. Djatmiko
erdeje85@gmail.com
18
Enclosures
Indoor and outdoor casings to house your
RouterBOARD devices. Select based on:
intended location of use
the RouterBOARD model
the type of connections needed (USB, antennas, etc.).

Rahmat D. Djatmiko
erdeje85@gmail.com
19
Interfaces
Ethernet modules, fiber SFPs or wireless radio cards
to expand the functionality of RouterBOARD
devices and PCs running RouterOS.
Once again, selection is based on your needs.

Rahmat D. Djatmiko
erdeje85@gmail.com
20
Accessories
These devices are made for MikroTik products -
power adapters, mounts, antennas and PoE
injectors.

Rahmat D. Djatmiko
erdeje85@gmail.com
21
Why get an integrated router?
Can address many needs
Some add-on options
Little to no expansion
Fixed configuration

Rahmat D. Djatmiko
erdeje85@gmail.com
Simple, yet solid solution for many needs

22
Integrated router, examples
RB951G-2HnD
Good for home or small office
5 Gig ports
Built-in Wi-Fi (2,4GHz)

Rahmat D. Djatmiko
erdeje85@gmail.com
License level 4

23
Integrated router, examples
SXT Sixpack
(1 OmniTIK U-5HnD with
5 SXT-5HPnD)
Good for WISP or
company with branch

Rahmat D. Djatmiko
erdeje85@gmail.com
offices
5 100Mbps ports
(OmniTik)
5GHz 802.11a/n radios
Can cover 5Km
between central and
satellite sites 24
Integrated router, examples
CCR1036-12G-4S
Cloud Router
Flagship model
Good for ISPs or company

Rahmat D. Djatmiko
erdeje85@gmail.com
networks
1U rack mount
12 Gig ports
Serial console, USB and
color touch screen
Default 4G RAM, but can
use any size of SO-DIMM
25
RAM
Why build your own router?
Can address a greater variety of needs
Many add-on options / Lots of expansion
Customizable configuration
Can be integrated into client equipment or cabinet

Rahmat D. Djatmiko
erdeje85@gmail.com
More complete solution for particular needs

26
Custom router, examples
Flexible CPE
RB411UAHR
1 100Mbps port
1 2,4GHz radio (b/g)

Rahmat D. Djatmiko
erdeje85@gmail.com
Level 4 license
Add power supply or PoE
module
Add 3rd party enclosure
Add 3rd party 3G mini PCI-E
modem
27
Custom router, examples
Powerful Hotspot
RB493G
9 gig ports
Level 5 license

Rahmat D. Djatmiko
erdeje85@gmail.com
Add power supply or
PoE module
Add R2SHPn (2,4GHz
radio card)
Add R5SHPn (5GHz
radio card)
Add 3rd party enclosure
28
Add microSD card
RouterBOARD Architecture
RouterBOARD build with different architecture
Different architectre means different characteristic in
processing and addressing memory

Rahmat D. Djatmiko
erdeje85@gmail.com
29
RouterBOARD Extended Code
Additional features that come with some type
U equipped with USB port
A Advanced, usually comes with higher license llevel
H High Performance / High Power
R equipped with embedded wireless card

Rahmat D. Djatmiko
erdeje85@gmail.com

G equipped with Gigabit Ethernet interface
P equipped with PoE port
n MIMO card
D Dual Chain
S equipped with SFP port
L lite (can be lower license level or lower spec)
30
 RouterBOARD Name Code
Three Digits Code
RouterBOARD Series
Number of miniPCI slot

RBABCX Additional Features

Rahmat D. Djatmiko
erdeje85@gmail.com
Number of Ethernet port

RouterBOARD Series 1Wireless Interface

RB751U-2HnD With USB and 2GHz

card, High Power, MIMO
31
and Dual Chain
5 Ethernet port
RouterBOARD Name Code
Four Digits Code
RouterBOARD Series Additional Features

RBAACCX-X

Rahmat D. Djatmiko
erdeje85@gmail.com
Interface Information

RouterBOARD 2000 Series With USB, Advanced license

level, and SFP port

RB2011UAS-2HnD 32
11 Interfaces (one of them is SFP) Additional 2GHz card, High
power, MIMO and Dual Chain
RouterBOARD Name Code
Some new routers, use abother formats
RouterBOARD Series

NAME-X

Rahmat D. Djatmiko
erdeje85@gmail.com
SXT-5HnD
Interface Information

SEXTANT
Groove-2 33

OmniTik
 Rahmat D. Djatmiko
erdeje85@gmail.com
LABORATORY 1

ROUTEROS & ROUTERBOARD 34

[LAB 1] Basic Installation of RouterOS

First download new RouterOS from

http://www.mikrotik.com/download
Then write ISO image file to CD or USB and put in
CD-ROM Drive and turn on

Rahmat D. Djatmiko
erdeje85@gmail.com
35
[LAB 1] Basic Installation of RouterOS

After select paclage and then press i for start

installation
Answer "n" to first question and "y" to second
After installation remove cd and press Enter

Rahmat D. Djatmiko
erdeje85@gmail.com
After rebooting type admin as login and no
password

36
[LAB 1] Check Your RouterBOARD

Check RouterBOARD Name Code at the bottom of

your router and tell the code!

Rahmat D. Djatmiko
erdeje85@gmail.com
37
[LAB 1] RouterBOARD Catalog
At least twice a year, MikroTik will release Product
Catalog
Open the catalog Q3/Q4

Rahmat D. Djatmiko
erdeje85@gmail.com
38
 Rahmat D. Djatmiko
erdeje85@gmail.com
CHAPTER 2

FIRST TIME ACCESSING THE ROUTER 39

Router Access Method

Text Based

Additional
Need IP

Custom
Access Via Condition

Device
GUI
Keyboard/Monitor If installed in a PC O

Rahmat D. Djatmiko
erdeje85@gmail.com
Serial Console With serial console cable O O

Telnet and SSH O O

WinBox Used program called winbox.exe O O O

FTP O

API Socket programming O O

Web(HTTP) O O

MAC-WinBox Layer 2 connection O O

MAC-Telnet Layer 2 connection O 40

Router Access Method
Accessing Command Line Interface (CLI) via Telnet,
ssh, serial cable or even keyboard and monitor if
router has VGA card.
Accessing Web based GUI (Webfig)
Using WinBox configuration utility

Rahmat D. Djatmiko
erdeje85@gmail.com
Every router is factory pre-configured with IP address
192.168.88.1/24 on ether1 port.
Default username is admin with empty password.

41
Accessing CLI
Command Line Interface (CLI) allows configuration
of the router's settings using text commands.
Since there is a lot of available commands, they are
split into groups organized in a way of hierarchical
menu levels.

Rahmat D. Djatmiko
erdeje85@gmail.com
There are several ways how to access CLI:
winbox terminal
telnet
ssh
serial cable etc.

42
Serial Cable
If your device has a Serial port, you can use a
console cable.
Plug one end of the serial cable into the console
port of the RouterBOARD and the other end in your
PC.

Rahmat D. Djatmiko
erdeje85@gmail.com
You can also use a USB-Serial adapter.

43
Serial Cable
Run a terminal program (HyperTerminal, or Putty on
Windows) with the following parameters for All
RouterBOARD models except 230:
115200bit/s, 8 data bits, 1 stop bit, no parity, flow
control=none by default.

Rahmat D. Djatmiko
erdeje85@gmail.com
If parameters are set correctly you should be able
to see login prompt. Now you can access router by
entering username and password:

44
SSH and Telnet
Standard IP tools to access router
Telnet communications are in clear text
Available on most Operating Systems
Unsecured!!

Rahmat D. Djatmiko
erdeje85@gmail.com
SSH communications are encrypted
Secured!!
Many Open Source (free) tools available such as PuTTY
(http://www.putty.org/)

45
Webfig
If you have router with default configuration, then IP
address of the router can be used to connect to the
Web interface.
Connect to router with Ethernet cable
Launch browser

Rahmat D. Djatmiko
erdeje85@gmail.com
Type in the IP address
If asked for, log in. Username is admin and
password is blank

46
Webfig
You will see :

Rahmat D. Djatmiko
erdeje85@gmail.com
47

http://wiki.mikrotik.com/wiki/Manual:Webfig
WinBox and MAC-Winbox
WinBox is MikroTiks proprietary interface to access
RouterOS routers.
It can be downloaded from MikroTiks website or
from the router.
It is used to access the router through IP (OSI layer

Rahmat D. Djatmiko
erdeje85@gmail.com
3) or MAC (OSI layer 2).

48
WinBox and MAC-Winbox
If still in the browser, scroll down and click logout
You will see:
Click on Winbox
Save winbox.exe

Rahmat D. Djatmiko
erdeje85@gmail.com
49
Winbox - Login

Rahmat D. Djatmiko
erdeje85@gmail.com
Network Discovery, will show any
Saved router informaation router that connected with your 50
PC/laptop through layer 2
connection
Winbox - Interface
If parameters are set correctly you should be able
to see :

Rahmat D. Djatmiko
erdeje85@gmail.com
51
 LABOLATORY 2

ACCESS METHOD

Rahmat D. Djatmiko
52

erdeje85@gmail.com
[LAB2] CLI-Direct Access
Access your RouterOS (PC Router) via keyboard
and monitor
Login with admin user and blank password

Rahmat D. Djatmiko
erdeje85@gmail.com
Configure your TCP/IP using CLI

53
[LAB2] CLI-Telnet/SSH
Telnet and SSH method use TCP/IP connectivity
Application telnet/ssh in client is needed (ex : putty)

Rahmat D. Djatmiko
erdeje85@gmail.com
54
[LAB2] Webfig
Access your RouterOS (PC Router) via Internet
Browser
Write your routers IP at URL

Rahmat D. Djatmiko
erdeje85@gmail.com
55
[LAB2] Winbox
Download Winbox from your webfigs homepage
Write your routers IP address or click ... button for
discovery connection
Click Connect button

Rahmat D. Djatmiko
erdeje85@gmail.com
56
 CHAPTER 3

INITIAL CONFIGURATION

Rahmat D. Djatmiko
57

erdeje85@gmail.com
Basic or blank configuration?
You may or may not have a basic configuration
when freshly installed
You may choose not to take the default basic
configuration
Check the following web page to find out how your

Rahmat D. Djatmiko
erdeje85@gmail.com
device will behave:
http://wiki.mikrotik.com/wiki/Manual:Default_Configurations

58
Default Basic Configuration
When connecting for the first time with WinBox, click
on OK
The router now has the default basic configuration.

Rahmat D. Djatmiko
erdeje85@gmail.com
59
Blank Configuration
Can be used in situations when the default basic
configuration is not required.
No need for firewall rules
No need for NATing
The minimal steps to setup a basic access to the

Rahmat D. Djatmiko
erdeje85@gmail.com
Internet (if your router does not have a default basic
configuration)
LAN IP addresses, Default gateway and DNS server
WAN IP address
NAT rule (masquerade)
SNTP client and time zone
60
Configuration Reset
For some reason, we need to reset the configuration
When we totally forgot the username and password
When the confguration is too complex so its much
easier to reset to repair them
Configuration reset can be done using several

Rahmat D. Djatmiko
erdeje85@gmail.com
method
Hard-reset, reset the configuration physically
Soft-reset, reset the configuration through
winbox/terminal/web

61
 LABORATORY 3

BASIC CONFIGURATION

Rahmat D. Djatmiko
62

erdeje85@gmail.com
[LAB3] Hard-reset - Button
Most RouterBOARD devices are fitted with a reset
button.
unplug the device power, hold the button, apply
power and wait until the USER LED starts flashing.
Now release the button to clear configuration.

Rahmat D. Djatmiko
erdeje85@gmail.com
Reset Button
63
[LAB3] Hard-reset - Jumper
All RouterBOARD current models are also fitted with
a reset jumper hole.
Some devices might need opening of the
enclosure.

Rahmat D. Djatmiko
erdeje85@gmail.com
Close the jumper
with a metal
screwdriver, and
boot the board
until the
configuration is
cleared.
64
[LAB3] Soft-reset
If you still can access the RouterOS, you can
execute a soft-reset command using

Rahmat D. Djatmiko
erdeje85@gmail.com
65
 [LAB3] Topology

Rahmat D. Djatmiko
66

erdeje85@gmail.com
[LAB3] Laptops Settings

Your laptops IP

Rahmat D. Djatmiko
erdeje85@gmail.com
Your routers IP

67
 [LAB3] LAN Configuration

Rahmat D. Djatmiko
68

erdeje85@gmail.com
[LAB3] WAN Configuration
Activate wlan interface through interface menu
select wlan interface and click check button
Open wlan configuration through double click wlan
interface
Open tab wireless and select station mode

Rahmat D. Djatmiko
erdeje85@gmail.com
1 4
3
5
69
2
6
[LAB3] Default Route
Open Route List through menu IP Routes
Click + button to create new default route

Rahmat D. Djatmiko
erdeje85@gmail.com
3
1 5
4

70

2
[LAB3] DNS Resolver
Set DNS server through DNS Settings (menu IP DNS)
Check Allow Remote Requests

Rahmat D. Djatmiko
erdeje85@gmail.com
1
3
4
2 71
 1

6
3

5
4
[LAB3] NAT Configuration

Rahmat D. Djatmiko
72

erdeje85@gmail.com
 Rahmat D. Djatmiko
erdeje85@gmail.com
CHAPTER 4

VERSION AND 73

UPGRADE/DOWNGRADE
MikroTik Version
MikroTik features depend on the current version
installed on the device.
Current version can be viewed both in the status
bar of Winbox or in the package installed in the
Router OS.

Rahmat D. Djatmiko
erdeje85@gmail.com
Installed packages also show what kind of features
available in the Router
Package can be a combined package or individual
package

74
 MikroTik Version
Mikrotik Version

Rahmat D. Djatmiko
75

erdeje85@gmail.com
RouterOS Package
More information:
http://wiki.mikrotik.com/wiki/Manual:System/Packages

Rahmat D. Djatmiko
erdeje85@gmail.com
76
Working with packages
Individual package installed can be :
Enabled
Disabled
Uninstall
A package should be removed if its totally unused and

Rahmat D. Djatmiko
erdeje85@gmail.com
we need to free-up some disk space
All above process is not executed directly, but will
be scheduled to be executed when the router
reboot

77
Upgrade and Downgrade
Upgrade is needed when we want to get the latest
features or bug repair
Downgrade is needed when we figured out that
current version has some bug in a specific feature
For upgrading, you need to aware about the

Rahmat D. Djatmiko
erdeje85@gmail.com
license-limitation (upgradable to)

78
Before you upgrade
Know what architecture (mipsbe, ppc, x86, mipsle,
tile) you are upgrading.
If in doubt, Winbox indicates the architecture in top left
corner!
Know what files you require:

Rahmat D. Djatmiko
erdeje85@gmail.com
NPK : Base RouterOS image with standard packages
(Always)
ZIP : Additional packages (based on needs)
Changelog : Indicates what has changed and special
indications (Always)

79
How to upgrade
Get the package files from MikroTiks website
Downloads page

Rahmat D. Djatmiko
erdeje85@gmail.com
80
How to upgrade
Three ways
Download file(s) and copy over to router.
Check for updates (System -> Packages)
Auto Upgrade (System -> Auto Upgrade)

Rahmat D. Djatmiko
erdeje85@gmail.com
81
Downloading the files
Copy file(s) to the router via Files window.
Examples are:
routeros-mipsbe-5.25.npk
ntp-5.25-mipsbe.npk
Reboot

Rahmat D. Djatmiko
erdeje85@gmail.com
Validate state of router

82
Sending new-package to the Router

Package to-be-installed must upload to the router in

File section
There are saveral way to upload the package
Drag and drop
FTP

Rahmat D. Djatmiko
erdeje85@gmail.com
Since this process using FTP connection, IP validity is
very important (winbox has to be able to open the
Router through IP, not only mac-address)

83
Checking for updates
(with /system packages)

Through the menu System -> Packages

Click on Check for Updates then Download &
Upgrade
Reboots automatically

Rahmat D. Djatmiko
erdeje85@gmail.com
Validate packages and state of router

84
Auto upgrading
Copy required files by all routers to an internal router
(source).
Configure all routers to point to source router
Display available packages

Rahmat D. Djatmiko
erdeje85@gmail.com
Select and download packages
Reboot and validate router

85
 LABORATORY 4

UPGRADE OR DOWNGRADE

Rahmat D. Djatmiko
86

erdeje85@gmail.com
[LAB4] Enable/Disable Package
Open Package List through menu System
Package
Enabling/disabling package Reboot Router

Rahmat D. Djatmiko
erdeje85@gmail.com
87
[LAB4] Uninstall Package
Open Package List through menu System
Package
Select package and clik Uninstall button

Rahmat D. Djatmiko
erdeje85@gmail.com
88
[LAB4] After Uninstall
Look at your free HDD Space through System -
Resource

Rahmat D. Djatmiko
erdeje85@gmail.com
89
[LAB4] Upgrade Version
Drad and drop file new-package into router via
Winbox and then reboot the router

Rahmat D. Djatmiko
erdeje85@gmail.com
90
 [LAB4] Check For Update

Rahmat D. Djatmiko
91

erdeje85@gmail.com
 CHAPTER 5

LICENSE

Rahmat D. Djatmiko
92

erdeje85@gmail.com
License
RouterOS features also depend on licensing level
that attach to the hardware
License of RouterOS is attached to the storage
device
E.g. : harddisk, NAND, USB, Compact Flash

Rahmat D. Djatmiko
erdeje85@gmail.com
If the storage media is formatted with non-mikrotik
partition, then the license will be invalid

93
 License Level and The Features

Rahmat D. Djatmiko
94

erdeje85@gmail.com
 LABORATORY 5

UPGRADE LICENSE

Rahmat D. Djatmiko
95

erdeje85@gmail.com
[LAB5] Check Your License
Open License through menu System License
Software ID used for upgrade license

Rahmat D. Djatmiko
erdeje85@gmail.com
96
[LAB5] Upgrade PC Routers License

Open License through menu System License

Software ID used for upgrade license

Rahmat D. Djatmiko
erdeje85@gmail.com
97
 CHAPTER 6

MANAGING ROUTEROS

Rahmat D. Djatmiko
98

erdeje85@gmail.com
Login Management
Access to the Router is configured in USER menu
User management is configured by
GROUP profile of a user, consist of what kind of
priveledge is given to a user
USER login, consist of username and password of a

Rahmat D. Djatmiko
erdeje85@gmail.com
user
User session (current connected users) is showed at
Active Users tab

99
Login Mgm active user
Current connected users can be viewed in Active
User, incuding the method they are using

Rahmat D. Djatmiko
erdeje85@gmail.com
100
Login Mgm - Group
Group is bunch of restriction that applied to a user

Rahmat D. Djatmiko
erdeje85@gmail.com
Assign some
priveledge to a
group

101
 Login Mgm - User

Rahmat D. Djatmiko
erdeje85@gmail.com
102
Service Management
By default, RouterOS provide some services to
access its configuration

Rahmat D. Djatmiko
erdeje85@gmail.com
103
Network Time
RouterBOARD doesnt have any CMOS Batery to
save the time, so we must using NTP
Use NTP (Network Time Protocol) to allow the
RouterBOARD to synchronize the time with a valid
server

Rahmat D. Djatmiko
erdeje85@gmail.com
104
Backup and Restore
Router configration can be backed-up and saved
to be used in the future
There are two types of backups :
Binary backup
Configuration export

Rahmat D. Djatmiko
erdeje85@gmail.com
105
Binary Backup
Unreadable
Complete system backup
Includes passwords
Assumes that restores will be on same router

Rahmat D. Djatmiko
erdeje85@gmail.com
106
Configuration Export
Mikrotik allow us to create a configuration script
Can be used to backup only part of configuration
Has to be done through terminal console

Rahmat D. Djatmiko
erdeje85@gmail.com
107
Archiving backup files
Once generated, copy them to a server
With SFTP (secured approach)
With FTP, if enabled in IP Services
Using drag and drop from Files window
Leaving backup files on the router IS NOT a good

Rahmat D. Djatmiko
erdeje85@gmail.com
archival strategy
No tape or CD backups are made of routers

108
 Rahmat D. Djatmiko
erdeje85@gmail.com
LABORATORY 6

CONFIGURATION MANAGEMENT 109

[LAB6] User Management
Add a group named minimal
Give it the telnet, read, and winbox rights
Explain these rights
Add a user and give it your name

Rahmat D. Djatmiko
erdeje85@gmail.com
Assign it to minimal group
Give it a password
Assign a password to admin
Give it podX, where X is your pod number
Open a new terminal. What happened?

110
[LAB6] Service Management
Disable these IP Services :
Telnet
WWW
Change port of SSH from 22 to 222

Rahmat D. Djatmiko
erdeje85@gmail.com
Try to access your router through Telnet, WWW and
SSH
Explain the result

111
 [LAB6] Time Management

Rahmat D. Djatmiko
erdeje85@gmail.com
112
[LAB6] Backup/Restore
Do binary backup
Do configuration backup (export)
Download both of binary anda configuration
backup file to local computer

Rahmat D. Djatmiko
erdeje85@gmail.com
Open all of file with notepad / wordpad
Explain the different
Restore the bnary backup file
Restore the configuration backup (import)

113
 CHAPTER 7

NETINSTALL

Rahmat D. Djatmiko
erdeje85@gmail.com
114
Reinstall
Reinstall RouterOS if the original one became
damaged
Reinstall RouterOS if the admin password was lost
Can be found on MikroTiks web site under the
download tab

Rahmat D. Djatmiko
erdeje85@gmail.com
Installation can be using
CD Instalation
Netinstall
Every RouterBOARD, can only be installed using
netinstall

115
Step-by-step Netinstall
For RBs without a COM port.
Connect computer to Ethernet port 1
Give computer a static IP address and mask
Launch Netinstall

Rahmat D. Djatmiko
erdeje85@gmail.com
Click on Net booting and write a random IP address
in the same subnet as computer
In Packages section, click Browse and select
directory containing valid NPK files

116
Launch Netinstall
Allow this program to passed through any firewall

Rahmat D. Djatmiko
erdeje85@gmail.com
117
Configure Netinstall
Click Net booting Check Boot Server enabled
write a random IP address in the same subnet as
computer

Rahmat D. Djatmiko
erdeje85@gmail.com
118
Change the boot-sequence
To be able to install a Router, first the router has to
be instructed to boot using Ethernet
There are saveral method to do this
Serial Console
Terminal Console

Rahmat D. Djatmiko
erdeje85@gmail.com

Winbox
Reset-button

119
 Changing the boot Sequence via Winbox

3
2

Rahmat D. Djatmiko
erdeje85@gmail.com
4

120
Changing the boot Sequence via Reset Button

unplug the device power, hold the reset button,

apply power and wait until the ACT LED stop
flashing. Now release the button to clear reboot
from ethernet.

Rahmat D. Djatmiko
erdeje85@gmail.com
121
 Netinstall Ready Status

Rahmat D. Djatmiko
erdeje85@gmail.com
122
 4

31
Package Selection

Rahmat D. Djatmiko
erdeje85@gmail.com
123
 Installation Process

Rahmat D. Djatmiko
erdeje85@gmail.com
124
Post Installation
After doing Neinstall, then the configuration and
files will be totally empty
Get in to the Router through MAC-Winbox, then do
a soft-reset and restore your previous backup

Rahmat D. Djatmiko
erdeje85@gmail.com
125
 Rahmat D. Djatmiko
erdeje85@gmail.com
END OF INTRODUCTION MODULE

NEXT : ROUTING 126