Okuqukethwe fihla
1 I-MikroTik Cloud Hosting Router
2 Imiyalo yokusetshenziswa komkhiqizo
3 Sebenzisa Amacala
4 Umhlahlandlela wokufaka
5 Iskripthi esijwayelekile (Eside) sokufakwa ngokuzenzakalelayo
6 I-ONE-LINER (Emfushane) SCRiPT Yokufaka Okuzenzakalelayo
7 I-Automation Scripts' Izibuyekezo Nezincazelo
8 FAQ
9 Amadokhumenti / Izinsiza
9.1 Izithenjwa
10 Okuthunyelwe Okuhlobene

I-MikroTik-LOGO

I-MikroTik Cloud Hosting Router

I-MikroTik-Cloud-Hosted-Router-PRODUCT

Imininingwane

  • Igama Lomkhiqizo: I-MikroTik CHR (I-Cloud Hosted Router)
  • Incazelo: Irutha ebonakalayo esekwe emafini yemisebenzi yomzila wenethiwekhi
  • Izici: Ukuphathwa kwenethiwekhi, izinsizakalo ze-VPN, ukuvikelwa kwe-firewall, ukuphathwa komkhawulokudonsa

Imiyalo yokusetshenziswa komkhiqizo

Umhlahlandlela wokufaka

  1. Lungiselela Indawo Yakho: Qinisekisa ukuthi indawo yakho yamafu ihlangabezana nezimfuneko zokufakwa kwe-CHR.
  2. Landa Isithombe se-MikroTik CHR: Thola isithombe se-CHR ku-MikroTik esemthethweni webindawo noma inqolobane.
  3. Sebenzisa i-CHR Endaweni Yakho Yefu: Landela imiyalelo eqondene nenkundla ukuze usebenzise i-CHR ekusethweni kwakho kwamafu.
  4. Ukucushwa Kwasekuqaleni: Lungiselela izilungiselelo eziyisisekelo njengezixhumi ezibonakalayo zenethiwekhi namakheli e-IP ngemva kokuthunyelwa.
  5. Ukucushwa Okuthuthukile (Ongakukhetha): Enza ngendlela oyifisayo izilungiselelo ze-CHR ngokusekelwe kuzimfuneko zenethiwekhi yakho nezinqubomgomo zokulawula.
  6. Ukuphatha nokuqapha: Sebenzisa amathuluzi e-MikroTik ukuze uphathe, ugade, futhi uxazulule isenzakalo sakho se-CHR.
  7. Ukunakekela Okuvamile: Yenza imisebenzi yokulungisa evamile ukuze uqinisekise ukusebenza kahle nokuphepha.

Inhloso: I-MikroTik CHR iyirutha ebonakalayo esekwe emafini eklanyelwe ukuhlinzeka ngemisebenzi yomzila wenethiwekhi ezindaweni ezingokoqobo. Ikuvumela ukuthi usebenzise izici ze-MikroTik's RouterOS kungqalasizinda yamafu, iyenze ilungele ukuphathwa kwenethiwekhi, izinsiza ze-VPN, ukuvikelwa komlilo, nokuphathwa komkhawulokudonsa ekusetheni okusekelwe emafini.

Sebenzisa Amacala

  1. I-Virtual Private Network (VPN): I-CHR ingasetshenziselwa ukuphatha kanye nomzila wethrafikhi ye-VPN, iqinisekisa ukuxhumana okuphephile nokuphumelelayo phakathi kwezindawo ezikude.
  2. Ukuphathwa Kwenethiwekhi: Ilungele ukuphatha izindawo zenethiwekhi eziyinkimbinkimbi, okuhlanganisa umzila, ukushintsha, nokuma kwethrafikhi.
  3. I-Firewall Nokuphepha: Ihlinzeka ngamakhono aqinile we-firewall ukuvikela ithrafikhi yenethiwekhi futhi ivikele ekufinyeleleni okungagunyaziwe.
  4. Ukuphathwa Komkhawulokudonsa: Iwusizo ekuhloleni nasekulawuleni ukusetshenziswa komkhawulokudonsa ukuze kuthuthukiswe ukusebenza kwenethiwekhi.

Umhlahlandlela wokufaka

  1. Lungiselela Indawo Yakho:
    Qinisekisa ukuthi unendawo yamafu noma inkundla yokwenza izinto ezibonakalayo lapho ungaphakela khona i-CHR. Amapulatifomu asekelwayo afaka i-AWS, i-Azure, i-Google Cloud, i-VMware, i-Hyper-V, nezinye.
  2. Landa Isithombe se-MikroTik CHR:
    Vakashela isikhulu seMikroTik webindawo noma I-MikroTik.com ukuze ulande isithombe esifanelekile se-CHR. Khetha phakathi kwezinguqulo ezihlukene ngokusekelwe ezidingweni zakho (isb., ezinzile noma ezihlolayo).
  3. Sebenzisa i-CHR Endaweni Yakho Yefu:
    • AWS: Dala isenzakalo esisha bese ulayisha isithombe se-CHR. Lungiselela isenzakalo ngezinsiza ezifanele (CPU, RAM, isitoreji).
    • I-Azure: Sebenzisa i-Azure Marketplace ukuze ukhiphe umshini obonakalayo we-MikroTik CHR.
    • VMware/I-HyperV: Dala umshini omusha obonakalayo bese unamathisele isithombe se-CHR kuwo.
  4. Ukucushwa Kwasekuqaleni:
    • Ukufinyelela CHR: Xhuma kusibonelo se-CHR usebenzisa i-SSH noma uxhumano lwekhonsoli.
    • Okuyisisekelo Ukucushwa: Setha izixhumi ezibonakalayo zenethiwekhi, amakheli e-IP, namaphrothokholi omzila njengoba kudingeka. Bheka imibhalo ye-MikroTik ukuze uthole imiyalo ethile nokucupha.
  5. Ukucushwa Okuthuthukile (Ongakukhetha):
    • I-VPN Setha: Lungiselela imigudu ye-VPN ukuze uthole ukufinyelela okukude okuphephile.
    • Imithetho ye-Firewall: Setha imithetho yokuvikela ukuvikela inethiwekhi yakho.
    • Umkhawulokudonsa Abaphathi: Sebenzisa ukubunjwa kwethrafikhi kanye nezinqubomgomo zokulawula umkhawulokudonsa.
  6. Ukuphatha nokuqapha:
    Sebenzisa i-MikroTik's WinBox noma WebFig ukuphatha nokuqapha isibonelo se-CHR. Lawa mathuluzi ahlinzeka ngesithombe esibonakalayo sokucushwa nokuqapha.
  7. Ukunakekela Okuvamile:
    Gcina isenzakalo sakho se-CHR sibuyekeziwe ngokukhishwa kwesofthiwe yakamuva namapeshi ukuze uqinisekise ukuphepha nokusebenza.

Okucatshangwayo:

  • Ilayisensi: I-MikroTik CHR isebenza ngaphansi kwamazinga elayisensi ahlukene. Khetha ilayisense ngokusekelwe ekusebenzeni kwakho nezidingo zesici.
  • Ukwabiwa Kwezinsiza: Qinisekisa ukuthi indawo yakho ebonakalayo ikunikeza izinsiza ezanele zokuphatha ithrafikhi yenethiwekhi yakho nezidingo zomzila.

Izinsiza:

  • Umbhalo we-MikroTik: MikroTik CHR Documentation
  • Izinkundla Zomphakathi: Xhumana nomphakathi we-MikroTik ukuze uthole ukwesekwa namathiphu engeziwe.

Iskripthi esijwayelekile (Eside) sokufakwa ngokuzenzakalelayo

  • # Nquma umphathi wephakheji
    uma umyalo -v yum &> /dev/null; bese pkg_manager=”yum”; umyalo we-elif -v apt &> /dev/null; bese pkg_manager="apt"; okunye
    • echo “Akutholakali i-yum noma i-apt. Lesi script asisekelwe.”; phuma 1; fi
  • # Buyekeza amaphakheji futhi ufake i-unzip, i-pwgen, nama-coreutils uma [“$pkg_manager” == “yum”]; bese sudo yum -y buyekeza && sudo yum -y faka unzip pwgen coreutils; elif [“$pkg_manager” == “apt”]; bese sudo apt-get -y update && sudo apt-get -y faka unzip pwgen coreutils; fi
    • echo "Isistimu ibuyekeziwe futhi amaphakheji adingekayo afakiwe."
  • # Thola impande file idivayisi yesistimu root_device=$(df / | awk 'NR==2 {print $1}') root_device_base=$(echo $root_device | sed 's/[0-9]\+$//')
    • echo “Mpande fileisistimu ikudivayisi: $root_device”
    • echo "Indlela yedivayisi: $root_device_base"
  • # Dala futhi ukhweze inkomba yesikhashana mkdir /mt_ros_tmp && mount -t tmpfs tmpfs /mt_ros_tmp/ && cd /mt_ros_tmp
  • # Thola ikheli le-IP kanye nesango
    INTERFACE=$(umzila we-ip | okuzenzakalelayo kwe-grep | awk '{print $5}')
    ADDRESS=$(ip addr show “$INTERFACE” | grep global | cut -d' ' -f 6 | inhloko -n 1)
    GATEWAY=$(uhlu lwemizila ye-ip | okuzenzakalelayo kwe-grep | cut -d' ' -f 3) echo “Sicela ufake isiteshi (okuzenzakalelayo='stable', or='testing'): ” funda isiteshi
  • # Okuzenzakalelayo kokuthi 'zinzile' uma kungekho okokufaka okunikezwayo uma [ -z “$channel” ]; bese isiteshi=”zinzile” fi
    echo "Ifaka i-RouterOS CHR esiteshini 'sesiteshini se-$..."
  • # Landa URL ngokusekelwe esiteshini esikhethiwe
    uma [ “$channel” == “testing”]; bese rss_feed=”https://download.mikrotik.com/routeros/latest-testing.rss“elserss_feed=”https://download.mikrotik.com/routeros/latest-stable.rss” fi
  • # Landa inguqulo yakamuva ye-MikroTik RouterOS rss_content=$(curl -s $rss_feed) latest_version=$(echo “$rss_content” | grep -oP '(?<= I-RouterOS )[\d\.] +rc\d+' | ikhanda -1) uma [ -z “$latest_version”]; bese
    • echo "Ayikwazanga ukubuyisa inombolo yenguqulo yakamuva." phuma 1 fi
    • echo “Inguqulo yakamuva: $latest_version” download_url=”https://download.mikrotik.com/routeros/$latest-version/chr-$latest-version.img.zip
    • echo “Ilanda kusuka ku-$download_url…” wget –no-check-certificate -O “chr-$latest_version.img.zip” “$download_url” uma [ $? -eq 0 ]; bese enanela “File ilandwe ngempumelelo: chr-$latest_version.img.zip” okunye
    • enanela"File ukulanda kuhlulekile.” phuma 1 fi
  • # Vula unzip futhi ulungise isithombe gunzip -c “chr-$latest_version.img.zip” > “chr-$latest_version.img”
  • # Khipha isithombe -o loop “chr-$latest_version.img” /mnt
  • # Khiqiza iphasiwedi engahleliwe PASSWORD=$(pwgen 12 1)
  • # Bhala iskripthi se-autorun ukuze ulungiselele isibonelo se-RouterOS
    • echo “Igama lomsebenzisi (Kullanıcı adı): admin”
    • echo “Iphasiwedi (Şifre): $PASSWORD”
    • echo “/ikheli le-ip engeza ikheli=$ADDRESS interface=[/interface ethernet thola lapho igama=ether1]” > /mnt/rw/autorun.scr
    • echo “/ip umzila engeza isango=$GATEWAY” >> /mnt/rw/autorun.scr
    • echo "/ip service khubaza i-telnet" >> /mnt/rw/autorun.scr
    • echo "/usethe umsebenzisi 0 igama=admin password=$PASSWORD" >> /mnt/rw/autorun.scr
    • echo “/ip dns set server=8.8.8.8,1.1.1.1” >> /mnt/rw/autorun.scr
  • # Khipha konke okufakiwe fileamasistimu wokuvumelanisa imodi yokufunda kuphela && echo u > /proc/sysrq-trigger
  • # Flash isithombe kudiski dd uma=”chr-$latest_version.img” of=$root_device_base bs=4M oflag=sync
  • # Phoqelela ukuqalisa kabusha uhlelo
    • echo 1 > /proc/sys/kernel/sysrq
    • echo b > /proc/sysrq-trigger

I-ONE-LINER (Emfushane) SCRiPT Yokufaka Okuzenzakalelayo

uma umyalo -v yum &> /dev/null; bese pkg_manager=”yum”; umyalo we-elif -v apt &> /dev/null; bese pkg_manager="apt"; enye i-echo “Akutholakali i-yum noma i-apt. Lesi script asisekelwe."; phuma 1; fi && \ [ “$pkg_manager” == “yum” ] && sudo yum -y buyekeza && sudo yum -y faka unzip pwgen coreutils || [“$pkg_manager” == “apt” ] && sudo apt-get -y update && sudo apt-get -y faka unzip pwgen coreutils && \ root_device=$(df / | awk 'NR==2 {print $1}' ) && root_device_base=$(echo $root_device | sed 's/[0-9]\+$//') && \ echo "Root fileisistimu ikudivayisi: $root_device” && echo “Umzila wedivayisi: $root_device_base” &&\mkdir /mt_ros_tmp && mount -t tmpfs tmpfs /mt_ros_tmp/ && cd /mt_ros_tmp &&\ INTERFACE=$(indlela ye-ip ezenzakalelayo |w phrinta $5}') && ADDRESS=$(i-ip addr show “$INTERFACE” | grep global | awk '{print $2}' | inhloko -n 1) && \ GATEWAY=$(uhlu lwendlela ye-ip | okuzenzakalelayo kwe-grep | awk '{print $3}') && \ funda -p “Faka isiteshi (okuzenzakalelayo='okuzinzile', noma='ukuhlola'): ” isiteshi; [ -z “$channel” ] && channel="stable”;rss_feed=”https://download.mikrotik.com/routeros/latest-$channel.rss” && rss_content=$(curl -s $rss_feed) && \ latest_version=$(echo “$rss_content” | grep -oP '(?<= I-RouterOS )[\d\.] +rc\d+' | ikhanda -1) && \ [ -z “$latest_version” ] && echo “Ayikwazanga ukubuyisa inombolo yenguqulo yakamuva.” && phuma ku-1 || \ echo "Inguqulo yakamuva: $latest_version" && download_url=”https://download.mikrotik.com/routeros/$latest_version/chr-$latest-version.img.zip” && \ echo “Ilanda kusuka ku-$download_url…” && wget –no-check-certificate -O “chr-$latest_version.img.zip” “$download_url” && \ [ $? -eq 0 ] && echo “File ilandwe ngempumelelo: chr-$latest_version.img.zip” || echo “File ukulanda kuhlulekile.” && \ gunzip -c “chr-$latest_version.img.zip” > “chr-$latest_version.img” && mount -o loop “chr-$latest_version.img” /mnt &&\PASSWORD=$(pwgen 12 1) && echo “\Username: admin&Sword" &Sword&SWD “/i-ip address add address=$ADDRESS interface=[/interface ethernet thola lapho igama=ether1]” > /mnt/rw/autorun.scr &&\ echo “/ip route add gateway=$GATEWAY” >> /mnt/rw/autorun.scr && echo “/ip service disable \ telnet” >> /0r/mtorscw. name=admin password=$PASSWORD” >> /mnt/rw/autorun.scr && echo “/ip dns set server=8.8.8.8,1.1.1.1″ >> /mnt/rw/autorun.scr &&\sync && echo u > /proc/sysrqddist=rich”-$irq of=$root_device_base bs=4M oflag=sync &&\ echo 1 > /proc/sys/kernel/sysrq && echo b > /proc/sysrq-trigger

I-Automation Scripts' Izibuyekezo Nezincazelo

  1. Ifaka amaphakheji engeziwe:
    • Kungezwe imiyalo yokufaka ye-pwgen nama-coreutils kukho kokubili abaphathi bephakheji be-yum kanye ne-apt.
  2. Ikheli lasesizindeni se-inthanethi kanye nokubuyiswa kwesango:
    • Umbhalo uthwebula ikheli le-IP yesistimu kanye nesango kusetshenziswa i-IP addr kanye nomzila we-ip.
  3. Ukuqaqa uziphu nokukhweza:
    • Isithombe siyembulwa uziphu futhi sifakwe kusetshenziswa i-gunzip bese ukhweza imiyalo enezinketho ezifanele.
  4. Ikhiqiza futhi Isetha Iphasiwedi:
    • Iphasiwedi engahleliwe enezinhlamvu eziyi-12 ikhiqizwa kusetshenziswa i-pwgen bese isethwa kusikripthi se-autorun se-RouterOS.
  5. I-Autorun Script:
    • Umbhalo we-autorun uhlanganisa imiyalo yokumisa isibonelo se-RouterOS, okuhlanganisa nokwengeza ikheli le-IP, ukusetha isango, ukukhubaza i-telnet, ukusetha iphasiwedi yomqondisi, nokumisa amaseva e-DNS.
  6. Qalisa kabusha isistimu:
    • Fileukuvumelanisa uhlelo kwenziwa ngaphambi kokuphoqelela ukuqalisa kabusha kwesistimu usebenzisa i-SysRq trigger, ukuqinisekisa ukuthi yonke idatha ibhalwe kudiski.
  7. Ukutholwa kwesixhumi esizenzakalelayo senethiwekhi:
    • INTERFACE=$(i-ip route | grep default | awk '{print $5}'): Ihlonza ngokuzenzakalela isixhumi esibonakalayo esisebenzayo ngokuthola isixhumi esibonakalayo somzila.
    • Okuguquguqukayo kwe-ADDRESS bese kusethwa kusetshenziswa lesi sixhumi esibonakalayo esitholiwe.

FAQ

Q: Yiziphi izimo zokusetshenziswa eziyinhloko ze-MikroTik CHR?
A: I-MikroTik CHR ijwayele ukusetshenziselwa ukuphatha ithrafikhi ye-VPN, izindawo zenethiwekhi, ukuvikelwa kodonga lomlilo, nokuphathwa komkhawulokudonsa ekusethweni okusekelwe emafini.

Q: Ngingaluthola kanjani usizo lwe-MikroTik CHR?
A: Ungabheka imibhalo ye-MikroTik noma uhlanganyele nezinkundla zomphakathi ukuze uthole ukwesekwa kanye namathiphu engeziwe okusebenzisa i-CHR.

Amadokhumenti / Izinsiza

I-MikroTik Cloud Hosting Router [pdf] Umhlahlandlela Womsebenzisi
Umzila Osingathwa Amafu, Umzila Ophethwe, Umzila

Izithenjwa

Okuthunyelwe Okuhlobene

Shiya amazwana

Ikheli lakho le-imeyili ngeke lishicilelwe. Izinkambu ezidingekayo zimakiwe *