gre tunnel explained
Most Relevant Content
MikroTik Site to Site GRE Tunnel Configuration with IPsec
VPN (Virtual Private Network) is a technology that provides a secure tunnel across a public network. A private network user can send and receive data to any remote private network using VPN Tunnel as if his/her network device was directly connected to that private network. MikroTik provides GRE (Generic Routing Encapsulation) tunnel that is used to create a site to site VPN tunnel. GRE tunneling protocol which can encapsulate a wide variety of protocols creating a virtual point-to-point link was originally developed by Cisco. GRE is a stateless tunnel like EoIP and IPIP. That means if the remote end of the tunnel goes down, all traffic that was routed over the tunnels will get blackholed. To solve this problem, RouterOS have added ‘keepalive’ feature for GRE tunnels. By default keepalive is set to 10 seconds and 10 retries. GRE adds an outer header mentioning the entry point of the tunnel (SourceIP) and the exit point of the tunnel (DestinationIP) but the inner packet is kept unmodified. GRE tunnel only encapsulates IP packets but does not provide authentication and encryption. GRE tunnel with IPsec ensures IP packet encapsulation as well as authentication and encryption. IPsec usage makes your packets secure but [...]
- »
Install MikroTik RouterOS on PC | June 13, 2016
MikroTik is a popular and mostly used router worldwide because of having a lot of networking functionalities and its cheap price. If we buy a MikroTik Routerboard (like MikroTik Routerboard 450G, MikroTik Routerboard 1100 AH etc.), we will find a machine where MikroTik RouterOS is prebuilt but the machine contains limited processing resources such as limited RAM and limited processor core. So, our network could be slow if you use a MikroTik RouterBoard for maintaining a large network. On the [...]
- »
How to Block a Phone from WiFi Router | May 8, 2024
We usually buy a WiFi Router from market and configure SSID and password to access it. We also configure DHCP Server so that whenever a phone or IP device gets connected to this SSID with the password, the device can get an IP address automatically and can get internet access. It is not possible to secure the WiFi Network keeping only the password authentication method. Because the password can be shared by the users or can be hacked easily. So, [...]
- »
MikroTik Block Website (Facebook, YouTube and Other Sites) | October 12, 2017
MikroTik Firewall is a powerful security tool that can be used to block unwanted websites. If you are a network administrator, sometimes it may be your requirement to block any website like Facebook, YouTube, Pornographic site and so on. To block these types of websites, you just need to create Firewall Rules that will drop any connection to these websites through your MikroTik Router. MikroTik Firewall basic concept such as what is MikroTik Firewall, what is MikroTik Firewall Rule, how [...]
- »
CAPsMAN Channel Planning with Non-Overlapping Frequency | March 16, 2020
MikroTik CAPsMAN is an excellent application for managing multiple CAPs (Controlled Access Point) in a Wireless Network. But multiple APs create frequency overlapping issue if channels are not configured properly. Channel overlapping is required for smooth connection while roaming but there should not be frequency overlapping because frequency overlapping makes wireless performance so poor. In my previous article, I discussed MikroTik CAPsMAN basic configuration with default channel configuration. In this article, I will discuss how to configure CAPsMAN channel to [...]
- »
MikroTik Blocking All Websites Except a Few Websites | May 7, 2019
A few days ago, someone asked me how to block all websites except one with MikroTik Firewall. For this, I have decided to discuss about blocking all websites except someone’s whitelist. Unlike firewall devices, MikroTik Firewall by default allows all websites. So, if you need to block any website, you have to create a firewall rule that will block the specific website. Now if we want to block all websites and want to allow a few websites, we have to [...]
- »
Why ISPs Should Embrace TR-069 ACS to Stay Ahead of Competitors | May 22, 2023
As the telecommunications industry becomes more competitive, local ISPs need to find ways to stay ahead of larger telcos and offer services that meet the changing demands of their customers. One of the solutions to this challenge is to implement TR-069 ACS server to help streamline network management, reduce costs, and increase efficiency. In this article, we’ll explore why the TR-069 ACS server is essential for medium-sized ISPs to stay competitive in today’s market. We’ll examine the challenges these ISPs [...]
- »
MikroTik VRRP Configuration with DHCP Server | October 22, 2018
MikroTik VRRP (Virtual Router Redundancy Protocol) ensures high available internet network. If any organization requires uninterrupted internet connection, MikroTik VRRP implementation will be a vital solution for them. MikroTik VRRP creates a virtual router accumulating two or more physical routers and ensures uninterrupted internet connection keeping activate one physical router always. That means, if any physical router fails to operate due to any hardware failure, MikroTik VRRP uses another backup router for internet gateway until the running router comes back [...]
- »
MikroTik Radius Configuration with FreeRADIUS and MySQL | December 18, 2018
FreeRADIUS is a modular RADIUS suite. A lot of modules such as Perl, python, MySQL etc. can be integrated with freeRADIUS to enrich freeRADIUS features. MySQL is one of the best user and client sources in freeRADIUS server. One of the important advantages of MySQL with freeRADIUS server is that MySQL can easily be controlled with a lot of programming languages including PHP. So, freeRADIUS users and their authentication, authorization and accounting can easily be controlled graphically using MySQL database [...]
- »
How to Block NetShare Changing MikroTik TTL | April 19, 2024
Internet user can easily share their net connection to others using their smart phone or Laptop creating Hotspot. Smart phone users especially Android users by default get a net sharing app named Mobile Hotspot to share his net connection to others. Besides Mobile Hotspot, there are many Android Apps like NetShare those can be used to share net connection to others. Sharing net connection to others or friends is a good feature in Smart phone but sometimes users misuse this [...]
You May Also Like
