Line 1: |
Line 1: |
| [[Category: MikroTik]] | | [[Category: MikroTik]] |
| __FORCETOC__ | | __FORCETOC__ |
− | {{ Note|'''This document is a work in progress and should be considered a draft until this message disappears.''' }}
| |
| Welcome to the MikroTik Wiki page. Here you will find items specifically about using MikoTik devices and software as it relates to Ham Radio and/or AllStarLink/PTTLink. | | Welcome to the MikroTik Wiki page. Here you will find items specifically about using MikoTik devices and software as it relates to Ham Radio and/or AllStarLink/PTTLink. |
| | | |
Line 14: |
Line 13: |
| == Preparation == | | == Preparation == |
| *Spin up a VPS using a Debian based Linux distro | | *Spin up a VPS using a Debian based Linux distro |
− | **Choose one with at least one CPU and 512MB of memory. You can go larger or smaller as your needs dictate. | + | **Choose one with at least one CPU and 512MB of memory. You can increase the CPU and memory as your needs/use dictates. |
| *Login to VPS | | *Login to VPS |
| | | |
Line 30: |
Line 29: |
| apt-get install unzip | | apt-get install unzip |
| | | |
− | *Set '''$ADDRESS''' to the IP address the MikroTik CHR will use
| + | *Then copy and run the entire block of commands below into the terminal. Verify the name of the interface in line 4 matches what your VPS uses. |
− | *Set $GATEWAY to the IP address of the Gateway the MikroTik CHR will use
| |
− | | |
− | set $ADDRESS="1.1.1.1"
| |
− | set $GATEWAY="2.2.2.2"
| |
− | | |
− | *Then copy and run the entire block of commands below into the terminal | |
| | | |
| wget https://download.mikrotik.com/routeros/6.48.3/chr-6.48.3.img.zip -O chr.img.zip && \ | | wget https://download.mikrotik.com/routeros/6.48.3/chr-6.48.3.img.zip -O chr.img.zip && \ |
| gunzip -c chr.img.zip > chr.img && \ | | gunzip -c chr.img.zip > chr.img && \ |
| mount -o loop,offset=33554944 chr.img /mnt && \ | | mount -o loop,offset=33554944 chr.img /mnt && \ |
− | ADDRESS=`ip addr show ens3 | grep global | cut -d' ' -f 6 | head -n 1` && \ | + | ADDRESS=`ip addr show '''''ens3''''' | grep global | cut -d' ' -f 6 | head -n 1` && \ |
| GATEWAY=`ip route list | grep default | cut -d' ' -f 3` && \ | | GATEWAY=`ip route list | grep default | cut -d' ' -f 3` && \ |
| echo "/ip address add address=$ADDRESS interface=[/interface ethernet find where name=ether1] /ip route add gateway=$GATEWAY " > /mnt/rw/autorun.scr && \ | | echo "/ip address add address=$ADDRESS interface=[/interface ethernet find where name=ether1] /ip route add gateway=$GATEWAY " > /mnt/rw/autorun.scr && \ |
| umount /mnt && \ | | umount /mnt && \ |
− | echo u > /proc/sysrq-trigger && \ dd if=chr.img bs=1024 of=/dev/vda | + | echo u > /proc/sysrq-trigger && \ dd if=chr.img bs=1024 of='''''/dev/vda''''' |
| | | |
| *Once you successfully complete the above, power off (do not shut down) the VPS and then turn it back on to boot into MikroTik CHR. | | *Once you successfully complete the above, power off (do not shut down) the VPS and then turn it back on to boot into MikroTik CHR. |
| | | |
| + | == Configuration == |
| *Login to the MikroTik CHR via the terminal using admin for the username with no password | | *Login to the MikroTik CHR via the terminal using admin for the username with no password |
| *Change the default admin password with: | | *Change the default admin password with: |
| /user set name=admin password=<new password> | | /user set name=admin password=<new password> |
| | | |
− | == Configuration ==
| + | '''If the IP address and Gateway were not properly set at installation:''' |
| + | ---- |
| Set $ADDRESS and $GATEWAY first or replace them in the line below with the actual values. | | Set $ADDRESS and $GATEWAY first or replace them in the line below with the actual values. |
| echo "/ip address add address=$ADDRESS interface=[/interface ethernet find where name=ether1] /ip route add gateway=$GATEWAY" | | echo "/ip address add address=$ADDRESS interface=[/interface ethernet find where name=ether1] /ip route add gateway=$GATEWAY" |
| | | |
| *If the above does not work on setting the IP address and gateway properly: | | *If the above does not work on setting the IP address and gateway properly: |
− | **Set IP address with: '''/ip addres interface=ether1 add address=<ip address> netmask=<netmask>''' | + | **Set IP address with: '''/ip address add address=<ip address> netmask=<netmask> interface=ether1''' |
| **Set Gateway IP address with: '''/ip route add dst-address=0.0.0.0/0 gateway=<gateway IP>''' | | **Set Gateway IP address with: '''/ip route add dst-address=0.0.0.0/0 gateway=<gateway IP>''' |
| | | |
| == Finishing Up == | | == Finishing Up == |
| *Now login to the web page of your MikroTik CHR using http://<IP> or download Winbox from https://mikrotik.com/download to login and configure your MikroTik CHR. | | *Now login to the web page of your MikroTik CHR using http://<IP> or download Winbox from https://mikrotik.com/download to login and configure your MikroTik CHR. |
− | *Read the documentation at https://help.mikrotik.com/docs/display/ROS/Getting+started pay special attention to the First Time Configuration section | + | *Read the documentation at https://help.mikrotik.com/docs/display/ROS/Getting+started pay special attention to the [https://help.mikrotik.com/docs/display/ROS/First+Time+Configuration First Time Configuration] section |
| | | |
| = AMPRNet/44Net = | | = AMPRNet/44Net = |
Line 81: |
Line 76: |
| | | |
| = IPSEC = | | = IPSEC = |
− | Sometimes you need to secure a link between a system and an MikroTik device. | + | Sometimes you need to secure a link between a system and a MikroTik device. |
| | | |
| *[[VPN#strongSwan to MikroTik|strongSwan to MikroTik]] - Information on connecting MikroTik to a system running the strongSwan IPSEC software | | *[[VPN#strongSwan to MikroTik|strongSwan to MikroTik]] - Information on connecting MikroTik to a system running the strongSwan IPSEC software |
| + | |
| + | = Wireguard = |
| + | The Mikrotik Wireguard Road Warrior Install is located at [[VPN#Mikrotik_Wireguard_Road_Warrior_Config|Mikrotik Wireguard Road Warrior Setup]]. |
| | | |
| = HamWAN = | | = HamWAN = |