Full MikroTik MTCNA - Firewall Fasttrack, Mangle Rules & Address Lists
Vložit
- čas přidán 25. 07. 2024
- Hello and welcome, in this video we will be looking at how to configure address lists on the MikroTik firewall, we'll also learn how to mark certain packets using mangle rules and the basics of how Fasttrack on a MikroTik works.
Support the Channel:
⭐Become a Patreon: / thenetworkberg
⭐Become a CZcams Member: / @thenetworkberg
Social Media:
🌏 thenetworkberg.com
🌏 / thenetworkberg
🌏 / bergnetwork
🌏 / the-network-berg-39451...
EVE-NG Setup:
• EVE-NG - First Time Co...
Timestamps:
00:00 - Introduction
00:13 - Overview
00:24 - Address Lists
02:25 - Mangle Rules
07:28 - Fasttrack
Credits:
Thumbnail: Created on Canva
Thanks again for watching
Whoops, I accidentally scheduled this to come out before the Firewall Principles video xd! That will be up in the next 30 mins. Please use the playlist else it might be confusing watching this video first :P
Is it up already?
Video I've been waiting for. Thank you so much Network Berg.
Hope you enjoyed it!
Thanks for your great videos and Channel 🙏🏻
Glad you like them!
Thanks for the valuable content boss
My pleasure
bro thank you
Excellent video! I have a router that has 2 outputs to the internet and I only have management of the device through winbox by 1 ISP; (Both ISPs work) ok, I verified that the device will receive the traffic that I send from my PC for the management, but when receiving the traffic the router sends it to the other ISP, do you know how I could use the mangle rules to avoid this? I was trying but it does not work, I need to have management by the 2 in case one is fallen.
Hi... Wanna ask about mangle.
- How to choose mark connection or mark packet or combine it? In what situation we use one of them, please give some example. Im still confuse. Thanks
Hi, which 10GB Mikrotik Router ( That is not in beta or testing ) do you recommend for a home lab? Thanks for your videos, they are really great.
If you are able to I would highly recommend getting either the CCR2004 or the CCR1072, the first one being a bit better for home use as well. These are ISP grade routers and are wonderful pieces of equipment. Else I could also recommend the RB5009, although this comes with a single SFP+ slot, so this will most likely only be able to go to your LAN. Only down or up side (depends on how you look at it) is that it is made for RoSv7 which is technically still in beta.
@@TheNetworkBerg thanks for the reply.
Hi, I want to see real Example about fastTrack Connection? i.e.. where can we use/usages?
i did use fasttrack to speed up my internet and worked for a few days, speed almost doubled but now its back to normal like before... any explanation?
I don't have any Bytes on fast track connections. I set HTTP, HTTPS for UDP and TCP and DNS too on port 53
Is your fast track rules at the top of the firewall chain?
Thank you, If you can upload new video
How to capture like facebook by mangle and make limit speed with Queue?
I can take a look at doing that completing the MTCNA Guide.
@@TheNetworkBerg Ok.
I wait you.
Exame gaming ports. Can i put them to Fasttrack?
Will my latency improve?
From 3 digit latency to atleast 2 digit latency? Ty
No, Fasttrack does improve performance but really more on a hardware level of your MikroTik, whatever latency decrease you may receive is unlikely to drop your latency from let's say 150ms to 99ms
@@TheNetworkBerg what should i do to improve my latency. especially on mobile games?
@@TheNetworkBerg what should i do to improve my latency. especially on mobile games?
Can Mikrotik firewall do the same work as Fortinet?
No, a FortiGate firewall is a NGFW device. It comes with features such as UTM filters, it does IPS/IDS and it has SD-WAN. MikroTik firewall is very basic compared to something like a FortiGate or Palo Alto.
@@TheNetworkBerg OK, do you also do fortiGate videos ?
So in other words. Fast track is not really securing your network?
Fasttrack just pushes traffic out of the device quicker, if used correctly it can give a more optimal experience on your devices. Especially on smaller MikroTiks where resources are limited especially on your CPU. So correct, Fasttrack does not secure your router in any way. If there's traffic you don't need to secure then it makes sense to Fasttrack. Personally I rarely use Fasttrack since I generally heavily rely on the Firewall, but I can definitely see many uses for it. Especially if you need to make a plan around a MikroTik that is experiencing high CPU usage.
EDIT: If you give my QOS video a watch that I uploaded today it also gives a good example of issues that Fasttrack can cause since even the QOS system makes use of the firewall and any Fasttracked traffic cannot be queued.
@@TheNetworkBerg Thank you. I'll will use more firewall then fasttrack.
I have been watching the videos as I'm taking class the end of the month.. Looking forward.
Next week is Palo Alto classes... Yeah
Awesome! I hope you enjoy the Palo Alto classes, I love firewalling :D Personally I have a ton of experience on FortiGates.
Script ??
Personally I don't appreciate the way some topics are being explained. You constantly talk about advanced features while showing only the primitive stuff. So, here is my suggestion: don't mention advanced features at all or dig into them the same way you do with the simple stuff. Thanks
Sure that's your personal opinion, you are welcome to let me know what you feel is too advanced that I am not showing in the videos or what you consider to be "primitive".
Hi David, this series is related to the MTCNA course so my understanding is that only topics related to the qualification will be discussed. This would preclude anything more advanced than what is needed to pass the course.