This time I'll present you a little fun project aside the omnipresent network topic in this blog. While moving to another appartment, I had the chance to catch a glimpse of the stuff I stocked in my cellar. Among other things I found some 7-segment displays, some binary counters and 7-segment display drivers.
As you propably know, the jumpNet has a redundant VPN infrastructure and is using OSPF. To improve the network design futher, I investigated the possibility of equal-cost multi-pathing. Doing so I needed to tackle a little with the stateful firewall.
I just configured some IPSec tunnels to connect the management network to our company's local network and stumbled over a well known problem: I can ping hosts "behind" the router doing IPSec, but I cannot ping the router itself. Read why and how to circumvent this issue.
To see to what extent the jumpnet is used and to determine the utilization of Jens' internet connection (he's the hub in our hub-and-spoke network topology) we need a simple traffic graphing tool. This is where MRTG comes into play. This article describes how to configure MRTG and MikroTik to graph the traffic.