Whoops, I accidentally scheduled this to come out before the Firewall Principles video xd! That will be up in the next 30 mins. Please use the playlist else it might be confusing watching this video first :P
Excellent video! I have a router that has 2 outputs to the internet and I only have management of the device through winbox by 1 ISP; (Both ISPs work) ok, I verified that the device will receive the traffic that I send from my PC for the management, but when receiving the traffic the router sends it to the other ISP, do you know how I could use the mangle rules to avoid this? I was trying but it does not work, I need to have management by the 2 in case one is fallen.
Hi... Wanna ask about mangle. - How to choose mark connection or mark packet or combine it? In what situation we use one of them, please give some example. Im still confuse. Thanks
If you are able to I would highly recommend getting either the CCR2004 or the CCR1072, the first one being a bit better for home use as well. These are ISP grade routers and are wonderful pieces of equipment. Else I could also recommend the RB5009, although this comes with a single SFP+ slot, so this will most likely only be able to go to your LAN. Only down or up side (depends on how you look at it) is that it is made for RoSv7 which is technically still in beta.
No, Fasttrack does improve performance but really more on a hardware level of your MikroTik, whatever latency decrease you may receive is unlikely to drop your latency from let's say 150ms to 99ms
No, a FortiGate firewall is a NGFW device. It comes with features such as UTM filters, it does IPS/IDS and it has SD-WAN. MikroTik firewall is very basic compared to something like a FortiGate or Palo Alto.
Fasttrack just pushes traffic out of the device quicker, if used correctly it can give a more optimal experience on your devices. Especially on smaller MikroTiks where resources are limited especially on your CPU. So correct, Fasttrack does not secure your router in any way. If there's traffic you don't need to secure then it makes sense to Fasttrack. Personally I rarely use Fasttrack since I generally heavily rely on the Firewall, but I can definitely see many uses for it. Especially if you need to make a plan around a MikroTik that is experiencing high CPU usage. EDIT: If you give my QOS video a watch that I uploaded today it also gives a good example of issues that Fasttrack can cause since even the QOS system makes use of the firewall and any Fasttracked traffic cannot be queued.
@@TheNetworkBerg Thank you. I'll will use more firewall then fasttrack. I have been watching the videos as I'm taking class the end of the month.. Looking forward. Next week is Palo Alto classes... Yeah
Personally I don't appreciate the way some topics are being explained. You constantly talk about advanced features while showing only the primitive stuff. So, here is my suggestion: don't mention advanced features at all or dig into them the same way you do with the simple stuff. Thanks
Sure that's your personal opinion, you are welcome to let me know what you feel is too advanced that I am not showing in the videos or what you consider to be "primitive".
Hi David, this series is related to the MTCNA course so my understanding is that only topics related to the qualification will be discussed. This would preclude anything more advanced than what is needed to pass the course.