Tag Archives: mikrotik

The new home network, part II

Previously, on Prison Break:

For the past nine years, a venerable Asus DSL-AC68U wireless modem/router has dutifully been providing access to the pipes filled with cats to all my devices. It’s done its job so well, faultlessly, that I feel like I need to put it out to pasture while it still can be repurposed as someone else’s wireless router. Besides, it’s 2024 now, and the Wi-Fi 5 that it came with is positively pedestrian compared to what we have now, putting aside the glaring limitations of Australian internet speeds or your device’s ability to utilise that kind of speed. Plus, WPA3 is also a thing now too, and any security upgrade is always worthwhile.

The MikroTik Hex has been rock solid as a router. After a solid week of Googleing and configuring, I think I have it set it up just how I want.

In many ways, RouterOS reminds me a lot of when I played with dd-wrt all those years ago. There’s just as many options to configure, and while that means there’s a bit of a learning curve, especially if you want to start from scratch, basically everything is configurable, and there’s very little hand-holding. Want to use one of the Ethernet ports as WAN? Of course, take your pick. Want to remove one of the Ethernet ports from the bridge and use it as a backup/dedicated management port? No problem! RouterOS will tell you when your config is invalid, but it won’t stop you from doing something stupid if it is technically possible. It’s absolutely possible to lock yourself out from your router if you’ve configured management interfaces to be only accessible certain interfaces/network ranges, so it’s absolutely possible to shoot yourself in the foot. If you want, you can start from literal scratch; no DHCP server, no DNS, no firewall rules. I can tell you now; you haven’t truly lived unless you have setup your own DHCP server, even if all that really means these days is ticking a box to turn it on and configuring a few options like your desired IP address range. The next best thing is customising the one that comes with the standard default config, which is what I ended up doing.

But did the Hex fix what marginal levels of bufferbloat I had? Yes, absolutely, although I don’t have SQM1 enabled all the time. For whatever reason, Opticomm FTTP connections are usually over provisioned in that I get slightly faster speeds (usually around 110 Mbps down, 45 Mbps up) than what I actually pay for (100/40), so I have SQM disabled outside of peak periods so I don’t miss out on that little bit of extra speed. It’s a small thing, but the way SQM is most noticeable is when I’m downloading something and watching a YouTube video at the same time. With SQM off, when that download is saturating my connection, my YouTube video drops quality and starts stuttering like it’s buffering over a dial-up connection. But with SQM enabled, I can download something and watch YouTube at the same time, without any loss in quality and without any buffering pauses. It’s a small thing, but SQM has made a minor but appreciable impact on my internet quality. If nothing else, now I can use my internet connection with impunity. Not like I didn’t before, but now I know it will actually work when I want it to, irrespective of whatever else I might be doing.

And yes, the Hex has limitations in terms of throughput with SQM enabled, but thanks to Australian internet speeds, I can save money by having a cheaper router. As it stands, apparently the Hex is good up to about 200-500Mbps with SQM enabled. Given that I’m not planning to upgrade my internet speeds anytime soon, that’s plenty, but if and when I do, a RB5009 (or its successor of the time) has my name on it. I’m still tossing up whether I want to “upgrade” to 250/25 for $4 more per month. While that may not be worth it, I can absolutely recommend SQM on any modern internet connection. If you have a one person household it might not be that big of a deal, but even I’ve noticed it, so I can only imagine how great it would be in a family home.

But honestly, the Hex is too fully-featured for my meagre networking requirements. I’m not running my own ISP, nor do I need any kind of failover. Fancy routing rules for specific traffic, or complicated NAT rules, are also outside of what I want out of my home network. I’m not even using VLANs or anything that would require me to know more about networking than I currently do. But it’s good to know that I can, if I want to in the future, or if my networking circumstances change, I can do all of that without having to redo my entire home network setup.

If I have hesitations about the Hex, is that it’s fairly basic in terms of features. While it does have a microSD card slot and a USB port, there are “only” gigabit Ethernet ports on the thing, no 10G SFP+, no PoE, and I can’t run containers on it like you can on some higher-end MikroTik hardware. It feels bad buying networking gear with only gigabit Ethernet in 2024, but unless I want to spend many hundreds more dollars and buy one of those little fanless mini-PCs that come with 2.5G/10G SFP+ ports and run RouterOS on that, I’m stuck with the hardware that MikroTik currently offers. I think the RB5009 would be great, but as it is, I can probably wait until the next iteration, as there’s basically nothing the Hex doesn’t do for me today. That changes if I get gigabit internet, but I can’t see that happening anytime soon, especially with the state of internet infrastructure in Australia right now. Further compounding this is that while you can get gigabit internet on NBN, the problem here is that Opticomm doesn’t seem interested in competing with the NBN2 or even offering higher speed tiers, so the fastest that I can get is 500/200 at roughly triple what I currently pay. For a one-person household, that just doesn’t seem worth it.

So for now, the Hex has this strange dichotomy between incredible software with mid-tier hardware — fine, capable hardware that’s more than enough for home network usage, but lacking a few niceties and/or esoteric features that would have been “nice to have” in 2024.

Continue Reading →

The new home network

Asus DSL-AC68U wireless modem router

Next year will be 10 years since I bought any new home networking gear. Compared to typical IT gear lifetimes, where you’re normally replacing gear every couple of years, hitting double digits on anything is an impressive feat that usually represents one of two things. Either you over-invested to begin with in the name of “future-proofing”, even if you couldn’t fully use the gear at first, or there have been so many other expenses/upgrades ahead of it that you haven’t even thought about upgrading something that works perfectly well. As the old adage goes: if it ain’t broke, don’t fix it.

But look, I’m not here to judge your personal technology choices. Merely provide some insight into some of my own, a cautionary tale or two, and some helpful anecdotes along the way. If we’re lucky, maybe we’ll get all three in a single post, but if not, two out of three ain’t bad.

For the past nine years, a venerable Asus DSL-AC68U wireless modem/router has been dutifully providing access to the interwebs to all my devices. It’s done its job so well, faultlessly, that I feel like I need to put it out to pasture before it starts getting ideas and starting the robot uprising that every sci-fi has warned us about. Besides, it’s 2024 now, and putting aside the glaring limitations of Australian internet speeds or your device’s ability to utilise that kind of speed, the Wi-Fi 5 that it came with is positively pedestrian compared to what we have now. Plus, WPA3 is also a thing now too, and any security upgrade is always worthwhile.

When I was waiting for the internet to be connected in my first apartment, I was able to plug a USB 4G modem into it and have the AC68U share it to all my devices. And when that same apartment joined the 21st century and upgraded to NBN, albeit on the slightly-inferior FTTB version, the AC68U just kept on working. And now that I’m on Opticomm (i.e. non-NBN) FTTP, it just keeps on working. I have no doubt that it would keep doing so until one of two things happened: it releases the magic smoke and spontaneously combusts into a small pile of ash, or the heat death of the universe. Whichever comes first.

That means it’s time for an upgrade! But to what?

Home networking gear is boring in the best possible way. The ideal scenario is that you set it up once, and don’t ever touch it again unless you’re changing something. But if you’re like me, you’ll spend a few weeks every ten years fiddling with it, then never touch it again. That’s basically how I’ve run my AC68U over the years, besides upgrading the firmware every now and again, or forwarding a port here and there. Like I said, if it ain’t broke, don’t fix it.

I have basically three options for upgrading my home network.

I consider myself pretty lucky (for the purposes of picking home networking gear), in that I live by myself in a small apartment. That means I don’t need a fancy mesh system, or multiple APs to cover the whole thing. Because I’m the only one that uses the network, I can wire up all my computers for the latency and consistency advantages wired connections provide, put everything else on wireless, and have a pretty simple setup overall.

It would have been easy to pick up something like the 2024 version of the AC68U, an all-in-one wireless router. This time around, I won’t even have to buy something with an ADSL modem, because I’m not planning to live in a place with ADSL ever again. But as ugly as the aesthetic of most of today’s wireless routers are, surely there are better options? Some of the Wi-Fi 7 wireless router options from TP Link don’t look too bad, although they are a little on the pricey side. But what if I wanted a slightly less consumer option? After almost a decade with the Asus and never touching all the marketing buzzwords in its web interface and going straight to the advanced settings, what if I wanted to step it up a notch?

Ubiquity seem to be the current flavour of the month for their prosumer networking gear. Their new-ish UniFi Express is a nice little all-in-one that I could probably recommend pretty comfortably to anyone who wanted something configurable, but backed with a great user interface that makes setting it all up easy enough. I can even see myself trying out a UniFi Express to see if I like the Ubiquity ecosystem as a whole, as it’s also a pretty cheap entry point into the UniFi ecosystem. It would probably also be suitable for someone to deploy at a “secondary” site like their parent’s house to replace their ageing network gear, too, and even comes with cool features like remote management.

But as nice as the UniFi Express is, it “only” comes with Wi-Fi 6, so wouldn’t be that much of an upgrade. It’s also lacking some features. There’s no USB port, for example, if you wanted to share a 4G/5G USB modem between all your devices, just like I had to do while I was waiting for the internet to be connected at my place after moving in. That isn’t a huge deal these days given the relatively fast provisioning times of NBN, but it’s a nice to have. There’s also only one LAN port, like Ubiquity expect you to have a switch if you plan to network a few computers together like it’s 1999 or something. It’s a reasonable assumption, but would it have killed Ubiquity to put a few more Ethernet ports on the thing? Fortunately, this also isn’t a big deal for me as I already have a switch connecting my computers together on a LAN like it’s 1999.

Which brings us to the third option, separate out my router, switch, and wireless access point into three separate devices. While there’s nothing particularly wrong with having an all-in-one wireless router, sometimes you just can’t find the right device at the right price. There’s also something about the modularity of having three separate devices, meaning that if you want to upgrade something in the future, you can do so without having to replace everything. But now instead of having one decision to make, I have three! Make that two, on account of the fact I already have a switch. It’s an 8-port, 2.5G RJ45 switch with one 10G SFP+ port from Keeplink, which you can also have for the low price of around $70 if you’re willing to buy it from AliExpress.

Continue Reading →