* Firewall and NAT - stateful packet filtering; Peer-to-Peer protocol filtering; source and destination NAT; classification by source MAC, IP addresses (networks or a list of networks) and address types, port range, IP protocols, protocol options ( ICMP type, TCP flags and MSS), interfaces, internal packet and connection marks, ToS (DSCP) byte, content, matching sequence / frequency, packet size, time and more ...
* Routing - Static routing; Equal cost multi-path routing; Policy based routing (classification done in firewall); RIP v1 / v2, OSPF v2, BGP v4
* Data Rate Management - Hierarchical HTB QoS system with bursts; per IP / protocol / subnet / ports / firewall mark; pcq, RED, SFQ, FIFO queue; CIR, MIR, contention ratios, dynamic client rate equalizing (pcq), bursts, Peer-to-Peer protocol Limitation
* HotSpot - HotSpot Gateway with RADIUS authentication and accounting; true Plug-and-Play access for network users; data rate Limitation; differentiated firewall; traffic quota; real-time status information; walled-garden; customized HTML login pages; iPass support; SSL secure authentication; advertisement support
* Point-to-Point tunneling protocols - PPTP, PPPoE and L2TP Access concentrators and clients; PAP, CHAP, and MSCHAPv2 authentication protocols MSCHAPv1; RADIUS authentication and accounting; MPPE encryption; compression for PPPoE; data rate Limitation; differentiated firewall; PPPoE dial on demand
* Simple tunnels - IPIP tunnels, EoIP (Ethernet over IP)
* IPsec - IP security AH and ESP protocols; MODP Diffie-Hellman groups 1,2,5; MD5 and SHA1 hashing algorithms: DES, 3DES, AES-128, AES-192, AES-256 encryption algorithms; Perfect Forwarding Secrecy (PFS ) MODP groups 1,2,5
* Proxy - FTP and HTTP caching proxy server; HTTPS proxy; transparent DNS and HTTP proxying; SOCKS protocol support; static DNS entries; support for caching on a separate drive; access control lists; caching lists; parent proxy support
* DHCP - DHCP server per interface; DHCP relay; DHCP client; multiple DHCP networks: static and dynamic DHCP leases; RADIUS support
* VRRP - VRRP protocol for high availability
* UPnP - Universal Plug-and-Play support
* NTP - Network Time Protocol server and client; synchronization with
GPS system
* Monitoring / Accounting - IP traffic accounting, firewall actions logging, statistics graphs accessible via HTTP
* SNMP - read-only access
* M3P - MikroTik Packet Packer Protocol for Wireless links and Ethernet
* MNDP - MikroTik Neighbor Discovery Protocol; also supports Cisco Discovery Protocol (CDP)
* Tools - ping; traceroute; bandwidth test; ping flood; telnet; SSH; packet sniffer; Dynamic DNS update tool
Layer 2 connectivity:
* Wireless - IEEE802.11a/b/g wireless client and access point (AP) modes; Nstreme and Nstreme2 proprietary protocols; Wireless Distribution System (WDS) support; virtual AP; 40 and 104 bit WEP: WPA pre-shared key authentication; access control list; authentication with RADIUS server; roaming (for wireless client); AP bridging
* Bridge - spanning tree protocol, multiple bridge interfaces; bridge firewalling, MAC
* VLAN - Virtual LAN support on IEEE802.1q Ethernet and wireless links, multiple VLANs, VLAN bridging
* Synchronous - V.35, V.24, E1/T1, X.21, DS3 (T3) media types; sync-PPP, Cisco HDLC, Frame Relay line protocols; ANSI-617d (ANDI or annex D) and Q933a ( CCITT or annex A) Frame Relay LMI types
* Asynchronous - s * r * al PPP dial-in / dial-out; PAP, CHAP, and MSCHAPv2 authentication protocols MSCHAPv1; RADIUS authentication and accounting; onboard s * r * al ports; modem pool with up to 128 ports; dial on demand
* ISDN - ISDN dial-in / dial-out; PAP, CHAP, and MSCHAPv2 authentication protocols MSCHAPv1; RADIUS authentication and accounting; 128K bundle support; Cisco HDLC, x75i, x75ui, x75bui line protocols; dial on demand
* SDSL - Single-line DSL support; line termination and network termination modes
Standard installation can be performed on a PC computer that will be used as a router and does not require a substantial resource for the use of standards, for example, just as the gateway.
Spec_minimal follows it:
* CPU and motherboard - P1 ~ P4 be with, AMD, Cyrix origin is not a multi-processor
* RAM - minimum 32 MiB, maximum 1 GiB; 64 MiB or more highly recommended, if not all created the proxy, it is recommended 1GB ... comparison, the 15MB memory on the proxy there is 1GB ..
* A minimum of 128MB of parallel ATA HDD or Compact Flash, it is not advisable to use UFD, SCSI, what more S-ATA (maybe later Ver. 3.0)
* NIC 10/100 or 100/1000
For the purposes of a large load (a complex network, complex routing, etc.) are advised to consider the selection of an adequate resource PC.
More can be found at http://www.mikrotik.com. However Mikrotik is not free software, means we have to buy licenses to any facility that is provided. Free trial is only for 24 hours.
We can buy MikroTik software in the form of "license" in Citraweb, UFOAKSES, PC24 (or download kracknya, he he he ...) Disk installed on previously downloaded / created MikroTik RouterOS kekeping ISO CD or disk on module (DOM). If we do not need to install the DOM bought but lived pairs of DOM on our PC IDE slot.
