hey @The Network Berg : i have 2 rb5009s and a single ISP who has allocated me a block of 5 static ips. i’ve configured 1 static ip on each of the rb5009s which each have their default GW pointing to the ISP gateway. the ISP provided modem is in “bridge/passthrough” mode so it doesn’t do anything except provided access to the internet. my setup so far works fine (1 subnet for management and another subnet for all lan) but am wondering if there’s something i could be doing better. not much info on this on the net. any thoughts? cheers.

You are totally correct :D Creating videos is a fine line, sometimes a video is too short then doesn't get promoted by KZbin, but on the other side a video may be too long and then becomes too frustrating to watch in one sitting. I am trying to keep a balance between things. A typical rule of mine is to aim for 15 mins in a video, although sometimes I just get carried away and exceed this limit. It happens more so in the MTCRE topics as some of these things you need to talk about in one video.

Still have plenty to come 😀

Thank you for the kind words!

Thanks 👍

It's a web tool (draw.io) can create free diagrams on it :)

There are hundreds of ways to implement failover, it depends on the requirements and how you want things to failover in the event of an error. Personally as an ISP I prefer having BGP configured to CPEs and then having that protocol act as a failover mechanism. I've even seen some people do things with Netwatch to disable a primary route in the event a failure. Sometimes though a very simple solution like in this video works fine for failover

I assume you are talking about external access to the server. So if the primary ISP goes down, how can people still connect to the server when its public IP changes. Well... I think the easiest solution for that would be to implement DDNS (Dynamic DNS). So that if the primary does go down the DDNS can be updated automatically to the new public IP which you will also need to add NAT rules for. Otherwise you can manually update an A record to the new public IP, but that can have its own issues especially if the address you receive may be dynamic. So I really think DDNS is the best option for a scenario like that.

Not sure why KZbin labeled your content as spam, might be because of the IP addresses since they are highlighted for some reason. But this made your comment hidden until I had to go into a spam section and approve it. Correct, some vendors do not support /31 addressing at all which is why it is more normal to see /30 addressing being used for most point-to-point links. If you are going to use /31 with another network first confirm with them if their equipment supports it. I think it's fairly straight forward to see PTP addressing in action whenever a client forms a connection to any of the PPP services, you will see that the MikroTik server will give itself an IP, and that a remote IP will be given to a client where these two devices can directly communicate. In MikroTik's case with using the Network address as the adjacent device's IP it is not required for this IP to be in the same pool. You could have your IP as 1.1.1.1/32 and the Network address as 2.2.2.2, if the remote side has its IP as 2.2.2.2/32 and the network as 1.1.1.1 then both devices will be able to communicate on L3 without any issues. Although it does make logical sense to add IPs in a sequence as that makes sense to us as we've been doing it for years this way. So you could use 1.1.1.1/32 and 1.1.1.2 as a network (heck can even start at 0 or end at 255 that's what makes ptp nice) On our network we actually make use of PTP addressing quite extensively on our L2TP tunnel connections, although it's more in a static sense as we do not use pools for our clients as we want each client to have static IP bound to it so we tend to just assign 2 IP addresses out of a reserved /22 pool. One IP for the server and then one for the client. We also make use of PTP addressing on a few of our BGP peers, and it has been working correctly without any issues for the last 3 or so years. So yeah, if you want to save on some IPs by using /31s for stuff like PPP services then I could recommend it from personal use.

@@TheNetworkBerg Thanks for coming back to me on those points with such a great reply. Super interesting stuff :) I have indeed seen that ptp phenomenon with pppoe connections before (even years ago with ADSL) and always wondered how that was possible. Now we know :D I guess I'll be sticking to /30's for anything serious for the time being as that's guaranteed to work across the board, but it's good to know about this stuff and definitely something to play with in the lab to see where it could potentially be used 👏🏻

We'll take a look at recursive routing in the next video which is very nice for internet based failover scenarios if the gateway remains up even if the "internet is down"

@@TheNetworkBerg perfect. Your tutorials are awesome as always.

I use custom scripts & scheduler to handle most of my Multi-WAN failover, because as you say the ping check doesn't always work. Just because the gateway is reachable/pingable, doesn't mean the breakout to the internet side of things is operational. So it's best to ping a real world public IP and make a determination based on that

Definitely, you can even implement stuff like OSPF, BGP or Policy Based Routing and send traffic to as many cities as you want to.