The Lab

Advanced QoS using mangle rules to mark traffic and queue trees for protocol prioritization. Prioritize VoIP and gaming over downloads, use PCQ for fair sharing, create hierarchical bandwidth allocation by department, and monitor marked traffic in real-time.

Control bandwidth with Simple Queue. Learn max-limit vs guaranteed bandwidth (limit-at), priority system (1-8), and bursting for better user experience. Configure per-user limits, guest network sharing, service guarantees, and monitor/troubleshoot queue performance.

Segment networks with VLANs for security and organization. Configure bridge VLANs, assign ports (tagged/untagged), set PVID, and enable VLAN filtering. Covers guest WiFi isolation, management access control, VoIP with QoS, and firewall rules for inter-VLAN restrictions.

Set up DHCP server with IP pools, network configuration, and lease management. Assign static leases for servers and devices. Learn best practice IP address organization, DHCP options (DNS, domain, NTP), and troubleshoot common DHCP issues like clients not getting addresses.

Manage network resources professionally in 64 minutes. Set up DHCP, segment with VLANs, control bandwidth per user, prioritize critical traffic, and build secure guest networks. Learn to organize IP addresses, isolate devices, and prevent bandwidth abuse with QoS.

Complete VPN troubleshooting decision trees for IPsec, WireGuard, and L2TP. Step-by-step diagnostics for connectivity issues, handshake failures, authentication errors, and routing problems. Includes common error messages and solutions.

Complete remote user VPN configurations using WireGuard and L2TP/IPsec. Includes server setup, client configurations for Windows/Mac/iOS/Android, user management, access controls, and troubleshooting. Choose WireGuard for speed or L2TP for built-in OS support.

Simple 5-minute WireGuard VPN setup between two MikroTik routers. Modern encryption, faster than IPsec, easier troubleshooting. Includes interface creation, peer configuration, routing, firewall rules, and support for hub-and-spoke topologies.

Complete copy-paste ready IPsec VPN configuration for connecting two sites. Includes peer configuration, proposal settings, policy setup, firewall rules, NAT exceptions, and troubleshooting. Best for MikroTik-to-non-MikroTik or when IPsec is required.

Deploy working VPN in 30 minutes with copy-paste templates. Four scenarios: Site-to-Site WireGuard (20 min), IPsec (30 min), Remote User WireGuard (25 min), and L2TP/IPsec (30 min). Includes verification checklists and common adjustments for quick implementation.