COURSE DESCRIPTION

MikroTik certified User Manager Engineer (MTCUME) Certification includes the deep knowledge of PPP servers and clients, TCP-MSS, the bridging of PPPs, VPN with IPsec (site to site and client to site), Radius interfacing, Hotspot and UserManager.

Requirements

The participant must have the MTCNA Certification for register at this training.

What is the target audience?

  • This course is intended for anyone interested in learning MikroTik
  • Anyone who want implement hotspot
  • Anyone who want implement RADIUS using MikrtoTik
  • Anyone who want to build the carrier in networking

CURRICULUM

Section 1: PPP

  • Local and Remote addresses;
  • Incoming/Outgoing Filters
  • Address Lis
  • Change TCP-MSS
  • Use Encryption
  • Session Timeout
  • Rate-Limit configuration
  • Only-one setting;
  • Service and Profile;
  • Local and Remote address;
  • Routes configuration;
  • Limit Bytes In/Limit Bytes Out configuration
  • Set addresses ranges;
  • Next Pool options

Section 2: PPTP and L2TP

  • Theory
  • Comparison
  • Client Setup
  • Set profile
  • Dial-on-Demand
  • Add Default Route and static routes
  • Enable server;
  • Setup profiles;
  • Add clients to /ppp secret;
  • Set static interfaces for clients;
  • Client setup;
  • Configure profile;
  • Dial-on-Demand;
  • Add Default Route and static routes;
  1. Enable server;
  2. Set profiles;
  3. Add clients to /ppp secret;
  4. Set Static interfaces for clients;

Section 3: PPPOE

  • Theory;
  • Usage environment;
  • Comparison to othe PPP protocols;
  • Client setup;
  • Select interface;
  • Service name
  • Configure profile;
  • Enable PPPoE server;
  • Set profiles;
  • Add clients to /ppp secret;
  • Add Static interfaces for clients;
  • Secure server by removing any IP address from PPPoE server interface;
  • Set profile without encryption;
  • Set profile with encryption;
  • Configure PPPoE client without encryption;
  • set ECMP routes for ppp interfaces;

Section 4: PPP Bridging

  • Set L2TP tunnel;
  • Set EoIP tunnel;
  • Create bridge and add necessary interfaces to ports;
  • Confirm you have Ethernet connectivity between remote nodes;
  • Set L2TP tunnel;
  • Set VPLS tunnel;
  • Create bridge and add necessary interfaces to ports;
  • Set L2TP tunnel;
  • Use BCP to bridge PPP interface;
  • Add to bridge necessary interface;
  • Enable Multilink by specifying correct MRRU settings;
  • Disable Mangle rules for MSS adjustment;
  • Setup client and specify multiple interfaces for one client;
  • Set PPPPoE server with MLPPP support;

Section 5: IPSec

  • Theory and concepts;
  • Comparison to other VPN protocols;
  • Use different authentication methods;
  • IPSec exchange modes;
  • Encryption and Hash algorithms;
  • NAT-Traversal;
  • Lifetime and Lifebytes;
  • DPD protocol;
  • IPsec protocol and action;
  • Tunnels;
  • Generate dynamic Policy;
  • Encryption and Authentication algorithms;
  • Lifetime;
  • PFS;
  • Set peer;
  • Set policy;
  • Set NAT rules;
  • Confirm the secure link is established;

Section 6: Hotspot

  • HTTP CHAP/PAP;
  • MAC;
  • Cookie;
  • HTTPS;
  • Trial;
  • RADIUS
  • Add users;
  • Set MAC-address for user;
  • Set MAC-address for username;
  • Limit Uptime and Limit Bytes In/Out;
  • Reset limits for user;
  • Host Table;
  • Active Table;
  • SNMP for users;
  • Keepalive timeout;
  • Shared users;
  • Rate-Limit;
  • Address-list;
  • Incoming/Outgoing filter;
  • Incoming/Outgoing Packet Mark;
  • walled-garden;
  • walled-garden ip;
  • ip-binding;
  • Advertisement;
  • Customize pages;

Section 7: RADIUS

  • add radius client;
  • set service;
  • use-radius for the specific service;
  • Encryption o EAP
  • Management Frame Protection
  • Install the latest user-manager;
  • Add routers;
  • Add users;
  • Set profile;
  • RADIUS Incoming Port
  • RADIUS Incoming Function