As you propably know, the jumpNet has a redundant VPN infrastructure and is using OSPF. To improve the network design futher, I investigated the possibility of equal-cost multi-pathing. Doing so I needed to tackle a little with the stateful firewall.
I just configured some IPSec tunnels to connect the management network to our company's local network and stumbled over a well known problem: I can ping hosts "behind" the router doing IPSec, but I cannot ping the router itself. Read why and how to circumvent this issue.
To see to what extent the jumpnet is used and to determine the utilization of Jens' internet connection (he's the hub in our hub-and-spoke network topology) we need a simple traffic graphing tool. This is where MRTG comes into play. This article describes how to configure MRTG and MikroTik to graph the traffic.
One cable and three networks which must be able to transport data over it. This is a typical use case for VLANs. Unfortunately, I the hardware in use is no dedicated switch hardware but RouterBoards. Let's see if we can create VLANs with it anyway.