Sector Configuration (new)

by | Aug 16, 2022 | Uncategorized | 0 comments

Sector Sample Config

Initial rewrite, still in progress.  Minor verification / tweaking needed.  Essentially the LAN side is a part of the R1 site LAN IP subnet.  The WLAN side is typically a /28 (16 addresses) or /27 (32 addresses) subnet.  The first IP in the WLAN subnet is assigned to the sector’s interface, the remainder are put into a DHCP pool to be assigned as needed to clients.  DHCP reservations are used to make these “static” if desired or needed to route remote 44-net subnets to.  (this does not apply for most sites)

 # -> Inline comment and should not be added to router


/interface wireless
set [ find default-name=wlan1 ] band=5ghz-onlyn channel-width=10mhz OR channel-width=5mhz country=”united states” \
disabled=no frequency=5920 frequency-mode=superchannel ht-rxchains=0,1 ht-txchains=0,1 l2mtu=2290 mode=ap-bridge \
nv2-cell-radius=100 radio-name=WA7CON/<S1,S2,S3>.<LocalSiteName> ssid=WAConnect tdma-period-size=4 wireless-protocol=nv2

/interface vrrp
add authentication=ah interface=ether1 name=vrrp1 password=<SharedSiteVRRPPassword> version=2

/interface wireless channels
#  NOTE:  Only use the two that apply to your sector.  The others can be left out. 

#  (Lines 1&4 for Sector 1, Lines 2&5 for Sector 2, Lines 3&6 for Sector 3)

add band=5ghz-onlyn comment=”Cell sites radiate this at 0 degrees (north)” frequency=5920 list=HamWAN name=Sector1-5 width=5
add band=5ghz-onlyn comment=”Cell sites radiate this at 120 degrees (south-east)” frequency=5900 list=HamWAN name=Sector2-5 width=5
add band=5ghz-onlyn comment=”Cell sites radiate this at 240 degrees (south-west)” frequency=5880 list=HamWAN name=Sector3-5 width=5
add band=5ghz-onlyn comment=”Cell sites radiate this at 0 degrees (north)” frequency=5920 list=HamWAN name=Sector1-10 width=10
add band=5ghz-onlyn comment=”Cell sites radiate this at 120 degrees (south-east)” frequency=5900 list=HamWAN name=Sector2-10 width=10
add band=5ghz-onlyn comment=”Cell sites radiate this at 240 degrees (south-west)” frequency=5880 list=HamWAN name=Sector3-10 width=10

/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik

/ip pool
add name=pool1 ranges=<DHCPPoolStartIP><DHCPPoolEndIP>

/ip dhcp-server
add address-pool=pool1 disabled=no interface=wlan1 lease-time=1h name=dhcp1

/routing ospf instance
set [ find default=yes ] distribute-default=if-installed-as-type-1 in-filter=AMPR-default out-filter=AMPR-default \
redistribute-connected=as-type-1 redistribute-other-ospf=as-type-1 redistribute-static=as-type-1 router-id=\
<UniqueAssignedRouterID-IP>

/system logging action
set 3 remote=<SystemLoggingHostIP>

/ip neighbor discovery-settings
set discover-interface-list=!dynamic

/ip settings
set send-redirects=no

/ip address

add address=<AssignedLANEthernetIP/Mask-ex.-44.25.x.y/28> interface=ether1 network=<NetworkIPofSubnetToLeft>

add address=<AssignedPTPWlanEthernetIP/Mask-ex.-44.25.x.y/31> interface=wlan1 network=<AssignedPTPWlanEthernetIP-ONOPPOSITEEND>

add address=<SharedVRRP-IPforSite> interface=vrrp1 network=<SharedVRRP-IPforSite>

/ip dhcp-server network

add address=<DHCPNetworkIP/Mask> dns-server=<WAConnectRegionalDnsIP1, WAConnectRegionalDnsIP2, \
     WAConnectStateDnsIP1,WAConnectStateDnsIP2> domain=waconnect.net gateway=<SectorWlan1IPAddress> \
netmask=<SectorWlan1IPAddressMASK> ntp-server=<WAConnectRegionalNTP-IP1>,<WAConnectStateNTP-IP1>

/ip firewall mangle
add action=change-mss chain=output new-mss=1378 protocol=tcp tcp-flags=syn tcp-mss=!0-1378
add action=change-mss chain=forward new-mss=1378 protocol=tcp tcp-flags=syn tcp-mss=!0-1378

/ip service
set ssh port=222

/routing filter
add action=accept chain=AMPR-default prefix=44.0.0.0/8 prefix-length=8-32
add action=accept chain=AMPR-default prefix=0.0.0.0/0
add action=reject chain=AMPR-default

/routing ospf interface
add authentication=md5 authentication-key=<LANLinkSharedSiteOSPFPassword> interface=ether1 network-type=broadcast

/routing ospf network
add area=backbone network=<LANSideNetworkIP / Mask>

/snmp
set contact=”Spokane DEM” enabled=yes

/snmp community
set [ find default=yes ] addresses=<SNMPIPNetworkID/Mask> name=waconnect

/system clock
set time-zone-autodetect=no time-zone-name=America/Los_Angeles

/system identity
set name=<S1/S2/S3>.<LocalSiteName>

/system logging action set 3 bsd-syslog=no name=remote remote=<NetworkLoggingIPMaster> remote-port=514 src-address=0.0.0.0 \

syslog-facility=daemon syslog-severity=auto target=remote
/system logging add action=remote disabled=no prefix=”” topics=info
/system logging add action=remote disabled=no prefix=”” topics=warning
/system logging add action=remote disabled=no prefix=”” topics=error

/system ntp client
set enabled=yes primary-ntp=<WAConnectRegionalNTP-IP1>secondary-ntp=<WAConnectStateNTP-IP1>

Submit a Comment

Your email address will not be published. Required fields are marked *