gre tunnel basics
Most Relevant Content
MikroTik Site to Site GRE Tunnel Configuration with IPsec
VPN (Virtual Private Network) is a technology that provides a secure tunnel across a public network. A private network user can send and receive data to any remote private network using VPN Tunnel as if his/her network device was directly connected to that private network. MikroTik provides GRE (Generic Routing Encapsulation) tunnel that is used to create a site to site VPN tunnel. GRE tunneling protocol which can encapsulate a wide variety of protocols creating a virtual point-to-point link was originally developed by Cisco. GRE is a stateless tunnel like EoIP and IPIP. That means if the remote end of the tunnel goes down, all traffic that was routed over the tunnels will get blackholed. To solve this problem, RouterOS have added ‘keepalive’ feature for GRE tunnels. By default keepalive is set to 10 seconds and 10 retries. GRE adds an outer header mentioning the entry point of the tunnel (SourceIP) and the exit point of the tunnel (DestinationIP) but the inner packet is kept unmodified. GRE tunnel only encapsulates IP packets but does not provide authentication and encryption. GRE tunnel with IPsec ensures IP packet encapsulation as well as authentication and encryption. IPsec usage makes your packets secure but [...]
- »
MikroTik Load Balancing with 2 PPPoE and 1 Static WAN using ECMP | September 24, 2019
ECMP provides almost 100% reliable load balancing and link redundancy solution. ECMP is a per connection load balancing where connection is marked with source and destination IP pair. In my previous article I discussed how to configure DUAL WAN load balancing with failover using ECMP method where WAN connections were static IP Addresses. But some ISP companies use PPPoE service for their client connection. So, some network administrators become confused to configure load balancing with PPPoE WAN connection because PPPoE [...]
- »
CentOS 8 Networking Configuration Using nmtui Tool | December 14, 2020
The first task after completing CentOS 8 fresh installation is to configure its networking so that it can be accessed from other network devices. In my previous article, I discussed how to install CentOS 8 Graphical User Interface (GNOME Desktop) with step by step screenshots. If you are a new CentOS 8 user and have not yet installed CentOS 8 on your server machine, feel free to follow that article and install CentOS 8 GNOME Desktop according to the article. [...]
- »
MikroTik Load Balancing and Link Redundancy with PBR | March 31, 2019
In computer networking, the Load Balancing technique is used to send network traffic over multiple gateways. If you have multiple ISP connections available, you can use load balancing technique to establish a stable network. You may now ask, why will I use multiple ISP connections? What are the benefits to use multiple ISP connections in my network? For your satisfaction, the following points are some reasons to use load balancing technique in your network. No ISP can give you 100% [...]
- »
OpenDNS Family Shield Configuration in MikroTik RouterOS 7 | August 30, 2024
OpenDNS is a DNS based free web content filtering software. It helps to keep our home or office network free from malware, virus and adult content. Configuring OpenDNS in our Home of Office routers, we can easily keep safe our internet content. OpenDNS provided OpenDNS Family Sheild solution that keeps our kids safe online. OpenDNS Family Shield filters all adult content websites as well as virus and trojan. OpenDNS Family Shield is preconfigured to block adult content. So, our children [...]
- »
MikroTik Radius Configuration with FreeRADIUS and MySQL | December 18, 2018
FreeRADIUS is a modular RADIUS suite. A lot of modules such as Perl, python, MySQL etc. can be integrated with freeRADIUS to enrich freeRADIUS features. MySQL is one of the best user and client sources in freeRADIUS server. One of the important advantages of MySQL with freeRADIUS server is that MySQL can easily be controlled with a lot of programming languages including PHP. So, freeRADIUS users and their authentication, authorization and accounting can easily be controlled graphically using MySQL database [...]
- »
MikroTik HotSpot One to One NAT/Universal HotSpot NAT | September 27, 2020
MikroTik Hotspot is an awesome service that can be customized widely. When MikroTik Hotspot is enabled on an interface, it adds dynamic destination NAT rules which will redirect all HTTP and HTTPS requests from unauthorized users to the Hotspot authentication proxy. So, no user can get internet access in Hotspot network without authentication. MikroTik Hotspot also uses one to one NAT providing an IP address from selected IP Pool and this IP address handles user’s data and limitation. Sometimes we [...]
- »
MikroTik CAPsMAN and CAP Basic Configuration using Winbox | February 20, 2020
MikroTik CAPsMAN (Controlled Access Point system Manager) is a centralized Access Point management application provided by MikroTik. MikroTik introduces CAPsMAN from RouterOS v6.11 with CAPsMAN v1 and from RouterOS v6.22rc7 CAPsMAN v2 is running. If you have multiple MikroTik CAPs (Controlled Access Point) in your organization, CAPsMAN provides an easy way to maintain client data as well as CAPs configuration centrally. In my previous article, I discussed how to configure MikroTik Wireless Router as an Access Point. In this article, [...]
- »
What Are the 7 Layers of OSI Model and How Do They Work | October 5, 2021
The OSI Model stands for Open Systems Interconnection Model, a conceptualized framework used to describe the seven layers of a telecommunication system or network. It was established as an international standard in the year 1984 by the International Organization for Standardization. This model helps visualize how networks operate and is still used today to figure out and solve network problems, such as by a web development company. In this article, we will talk about the 7 layers of the OSI [...]
- »
MikroTik OpenVPN Setup with Windows Client | April 2, 2018
VPN (Virtual Private Network) technology provides a secure and encrypted tunnel across a public network. So, a private network user can send and receive data to any remote private network through VPN tunnel as if his/her network device was directly connected to that private network. MikroTik OpenVPN Server provides a secure and encrypted tunnel across public network for transporting IP traffic using PPP. OpenVPN uses SSL Certificates. So, OpenVPN Tunnel is a trusted tunnel to send and receive data across [...]
You May Also Like