Mikrotik Automated Backup

I want to share a neat way how to automate the backup of your Mikrotik configuration.The script provided here i use to do FTP backups 3 times a day.

I have a couple of these devices and i change the configuration pretty often on them, so i had to automate the process. While searching the web I have found this cool blog containing Mikrotik Automated Backup script.

Thanks for the nice script Harry B!

With some small modifications this script works perfectly doing two files export and backup of the whole configuration: Continue reading

Mikrotik DDoS and SYN Flood

Mikrotik DDoS and SYN Flood rules

I will present you some rules which you can apply to protect yourself from some of the DDoS or SYN Flood attacks or at least to mitigate as much as you can.I say some because it depends how much traffic Your ISP->Your Connection(s)->Your Devices can handle.I consider this attack very dangerous as you can do very little or nothing in some cases if you experience traffic of lets say around 100Gbit/s.Very little organizations can handle this kind of traffic.It depends how much enemies you have made and how much botnet zombies they hired from the attracker/s for the attack.

Continue reading

Split-horizon DNS

Also known as split-view DNS, split DNS or DNS multi-view.

The Main Objective of Split-horizon DNS:

To use different EXTERNAL and INTERNAL files to differ request originating from Internet and local net.Make sure you use BIND9 or newer to support Split-horizon DNS.

Split-horizon DNS

Split-horizon DNS

The key moment in Split-horizon DNS:

As you can see on the setup above the external xfer is done by a different IP address on the secondary DNS server which allows Primary DNS server to differ the INTERNAL and EXTERNAL files.So to the basic you have to have two DNS files on the primary DNS server and let’s say you named them external.mydomain and internal.mydomain.The external.mydomain will contain only external IP addresses and internal.mydomain will contain only internal IP addresses.

Continue reading