If you run without connection tracking, are you losing anything major important (that's typically on a router like this) besides NAT? I feel like I've seen/read other things but the Wiki is suggesting there's only two major things you'd lose...
https://wiki.mikrotik.com/wiki/Manual:IP/Firewall/Connection_tracking Josh Luthman 24/7 Help Desk: 937-552-2340 Direct: 937-552-2343 1100 Wayne St Suite 1337 Troy, OH 45373 On Fri, Jul 2, 2021 at 12:49 PM Sterling Jacobson <sterl...@avative.net> wrote: > The easiest route and probably still the least expensive is just get two > CCR 1072 units, one for each 10Gbps upstream and make them both BGP > upstream and BGP to each other. > > That’s what our configuration is right now. > > 1072 units take a while to learn full tables, but having two with full > tables means I can down one for maintenance any time and then let it > rebuild, then down the other one and rebuild without network down time. > > > > Like everyone says, DO NOT RUN CONNECTION TRACKING on the 1072 units, > period. > > > > We just use them for our BPG, iBGP and OSPF routing core. > > Everything else is running 1036 or 2004 for 10Gbps CGNAT and management > IPv4 nat (that handles the conn tracking just fine for a couple Gigabit > each). > > > > > > *From:* AF <af-boun...@af.afmug.com> *On Behalf Of * Mike Hammett > *Sent:* Friday, July 2, 2021 7:39 AM > *To:* AnimalFarm Microwave Users Group <af@af.afmug.com> > *Subject:* Re: [AFMUG] Gateway Router Recommendation > > > > If you like Mikrotik, I'd go something CHR-based. > > > > ----- > Mike Hammett > Intelligent Computing Solutions <http://www.ics-il.com/> > <https://www.facebook.com/ICSIL> > <https://plus.google.com/+IntelligentComputingSolutionsDeKalb> > <https://www.linkedin.com/company/intelligent-computing-solutions> > <https://twitter.com/ICSIL> > Midwest Internet Exchange <http://www.midwest-ix.com/> > <https://www.facebook.com/mdwestix> > <https://www.linkedin.com/company/midwest-internet-exchange> > <https://twitter.com/mdwestix> > The Brothers WISP <http://www.thebrotherswisp.com/> > <https://www.facebook.com/thebrotherswisp> > > > <https://www.youtube.com/channel/UCXSdfxQv7SpoRQYNyLwntZg> > ------------------------------ > > *From: *"Jason McKemie" <j.mcke...@veloxinetbroadband.com> > *To: *"AnimalFarm Microwave Users Group" <Af@af.afmug.com> > *Sent: *Thursday, July 1, 2021 12:48:19 PM > *Subject: *[AFMUG] Gateway Router Recommendation > > I'm looking to update my gateway router (currently a CCR1036) to something > that can support 2 10GE WAN connections running BGP. I'd probably want at > least 3 or 4 SFP+ ports. The CCR1072 comes to mind, but I've read horror > stories relating to this model, so I'm looking at other options. Those of > you that use Juniper or Cisco, what would you recommend? I'd probably be > buying gray-market on these brands due to the price. > > > > Thanks. > > > > Jason > > > -- > AF mailing list > AF@af.afmug.com > http://af.afmug.com/mailman/listinfo/af_af.afmug.com > > > -- > AF mailing list > AF@af.afmug.com > http://af.afmug.com/mailman/listinfo/af_af.afmug.com >
-- AF mailing list AF@af.afmug.com http://af.afmug.com/mailman/listinfo/af_af.afmug.com
