United Kingdom
Catalog   /   Computing   /   Networking   /   Routers & Firewalls

Comparison MikroTik RB2011iLS-IN vs MikroTik RB1100AH

Add to comparison
MikroTik RB2011iLS-IN
MikroTik RB1100AH
MikroTik RB2011iLS-INMikroTik RB1100AH
from £209.68 
Outdated Product
from $265.40 up to $337.39
Outdated Product
TOP sellers
Typerouterrouter
Mountdesktoprack-mount
Ports
Connections
Ethernet
optics (SFP/SFP+)
Ethernet
 
Fast Ethernet5 pcs
Gigabit Ethernet5 pcs12 pcs
SFP (optics)1 pcs
Console port
Features
Control
SSH
Telnet
Web interface
SNMP
SSH
Telnet
Web interface
SNMP
Basic features
DHCP server
load balancing
channel reservation
port forwarding
VPN
DHCP server
 
 
port forwarding
VPN
Security
Security
MAC address filtering
DoS protection
web content filtering
MAC address filtering
DoS protection
web content filtering
PoE
PoE (input)passive+
PoE (output)passive
General
PSUbuilt-inbuilt-in
Operating temperature-35 °C ~ +65 °C
Dimensions (WxDxH)214х86x29 mm442х176х44 mm
Weight1200 g
Added to E-Catalogjanuary 2021august 2016

Mount

Desktop. Desktop routers include routers that do not use special rack mounts and are suitable for placement on any suitable surface — a table, shelf, etc. Although there are quite advanced models among desktop devices, however, most of them have relatively simple functionality and are designed for use in small networks where an abundance of equipment is not required.

Rack mounted. Routers that are standard installed in a telecommunications rack are usually 19 "standard (although technically many of them can also be used as desktop ones, albeit with less convenience). Racks are used in extensive networks that require a large amount of equipment; accordingly, routers of this type in general, more powerful and advanced than the desktop, and are designed primarily for professional use.

To the mast. Installation on a mast or other vertical structure — a tower, a pole, etc. Quite a rare form factor; It is mainly used in waterproof models designed for the possibility of working outdoors. Mobile network capable devices in this category may have a directional antenna to improve connectivity.

Connections

How the router connects to the Internet or other external network.

Almost all modern routers have ethernet network connectors for this purpose, however, in addition to them, other connection options can be provided — both wired ( ADSL, SFP / SFP + optics) and wireless (mobile access via 3G / 4G modem or SIM card). Here are the features of each option:

— Ethernet. A standard LAN network cable connector (“twisted pair”) is the most popular modern wired connection format in computer networks. Widely used both in "local" and to provide access to the Internet. This standard is somewhat inferior to SFP / SFP + (see below) in terms of speed and noise immunity, but it is much cheaper. The speed of work in modern versions of Ethernet can reach 10 Gbps (see "Connection speed of WAN ports"), theoretically, a further increase in throughput is possible.

— SFP / SFP + (optics). A connector for transmitting network traffic over a fiber optic cable. The main advantage of such a cable is complete insensitivity to electromagnetic interference. And data transfer rates can reach 2.7 Gbps in the original SFP and 16 Gbps in SFP+. At the same time, maintaining this standard is not cheap, and the benefits mentioned are not often needed in fact. Therefore, SFP / SFP + is found mainly in mid-range a...nd top-level routers.

— ADSL. Connecting to the Internet through a fixed telephone network using ADSL technology. The key advantage of this connection is the ability to use existing networks without laying additional wires; at the same time, Internet access is completely separated from telephone communication and traffic does not interfere with voice calls. On the other hand, the bandwidth of ADSL is very low by modern standards (less than 24 Mbps), moreover, the data transmission speed is noticeably lower than the reception speed. This can create problems for video communication and some other specific tasks. So nowadays ADSL is used less and less.

— 3G/4G modem (USB). Internet connection via mobile network using a separate 3G or 4G modem connected to the USB port. This feature can be useful where there is no full-fledged wired connection (for example, in rural areas), and also as a fallback option in case the main communication channel fails. And the type of network supported depends mainly on the modem used (the compatibility of the router with different models needs to be specified separately, but most often there are no problems with this). As for specific types of networks, most 3G modems work in UMTS networks (the same ones that are massively used by mobile phones); the data transfer rate in such networks can reach 75 Mbit / s (however, usually it is much lower). Less common are 3G modems for EV-DO networks based on CDMA — this standard has lower speeds (up to 14.7 Mbps) and not as extensive coverage as UMTS, however, both the equipment and the connection itself can be cheaper. And the designation "4G" means only one type of networks — LTE; it provides speeds up to 173 Mbps, but is not as widespread as 3G.

— SIM card. Another option for connecting to the Internet via mobile networks is its own SIM card slot provided in the design of the router. This option is convenient because you do not need to buy an additional device (modem) for mobile Internet — you just need to purchase an operator's SIM card. On the other hand, due to the built-in mobile communication modules, such routers themselves are more expensive than analogues for USB modems. In addition, the connectivity options in them are limited by the characteristics of the module: for example, a router for 3G networks will not be able to fully use 4G networks (whereas a USB modem can usually be changed to a more advanced one). As a result, this option is relatively rare in modern equipment.

Fast Ethernet

The number of standard RJ-45 network connectors of the Fast Ethernet format, provided in the design of the device.

Fast Ethernet is the most modest of the wired connection formats over a twisted-pair network cable in our time - it provides data transfer rates up to 100 Mbps. Nevertheless, even this speed is often enough for relatively simple tasks that are not associated with large amounts of data.

As for the number of connectors, it corresponds to the number of network devices that can be connected to the "switch" directly, without the use of additional equipment.

Gigabit Ethernet

The number of standard Gigabit Ethernet RJ-45 network connectors provided in the device design.

As the name suggests, these connectors provide data transfer rates up to 1 Gbps. Initially, Gigabit Ethernet was considered a professional standard, and even now the real needs for such speeds arise mainly when performing special tasks. Nevertheless, even relatively inexpensive computers are now equipped with gigabit network adapters, not to mention more advanced technology.

As for the number of connectors, it corresponds to the number of network devices that can be connected to the "switch" directly, without the use of additional equipment. At the same time, it is worth noting that in some "switches" individual connectors of this type are combined with optical SFP or SFP +. Such connectors are marked "combo" and are taken into account both when counting RJ-45 and when counting SFP / SFP +.

SFP (optics)

The number of optical network ports of the SFP standard provided in the design of the device. We emphasize that we are talking about "ordinary" SFPs; SFP+ data is usually listed separately.

Specifically, in switches, the marking “SFP” usually means a connector for fiber with a connection speed of 1 Gbps. Technically, this is not much compared to RJ-45 speeds; however, this connection format has a number of advantages. One of the main ones is a greater effective range: the mentioned gigabit standard works with a cable length of up to 550 m, and by the standards of optical fiber, this is still very little. True, the cable itself is sensitive to kinks and requires quite delicate handling; on the other hand, it is completely immune to electromagnetic interference. On the other hand, in general, the SFP format is noticeably less popular in network equipment than RJ-45; therefore, there are few ports of this type even in advanced devices ( 1 port or 2 ports, less often more). It is also worth considering that there may be so-called combo connectors that combine SFP and RJ-45; the presence of such ports is specified in the notes, they are taken into account both in the calculation of RJ-45 and in the calculation of SFP.

Console port

The presence of a console port in the router. This connector is used to control the device settings from a separate computer, which plays the role of a control panel — a console. The advantage of this format of operation is that access to the functions of the router does not depend on the state of the network; in addition, special utilities can be used on the console that provide more extensive capabilities than a regular web interface or network protocols (see "Management"). An RS-232 connector is often used as a console port, but in modern routers this role can also be played by a separate Ethernet input (not used for any other purpose).

Basic features

The basic capabilities of the router — that is, the functions directly related to the work for the main purpose. The most common of these features are DHCP server, load balancing, link reservation, port forwarding, MAC address cloning, VPN and DDNS support. Here is a detailed description of each item:

— DHCP server. A feature that makes it easy to assign IP addresses to devices connected to the router. An IP address is necessary for correct operation in TCP / IP networks (and this is the entire Internet and the vast majority of modern “local sites”). In the presence of DHCP, this process can be carried out completely automatically, which makes life much easier for both users and administrators. However, the administrator can also set additional DHCP options — for example, specify a range of available IP addresses (to prevent errors) or limit the time of using one address. If necessary, you can even manually enter a specific address for each device on the network, without automatically adding new devices — DHCP also simplifies this procedure, as it allows you to carry out all operations on the router without delving into the settings of each subscriber device.

— Load balancing. A feature found on models that have two or...more channels to connect to the Internet (and other external networks); most often these are two or more WAN ports, but there is another option — one port, supplemented by support for 3G / 4G mobile networks. Anyway, the idea of balancing is to use several channels for external connection at the same time, dividing the load between them in one way or another. This allows you to increase the efficiency of the connection, achieving maximum data transfer speeds and at the same time avoiding unnecessary congestion. For example, a channel for online games can be separated from the rest of the connection, minimizing lags and reducing the likelihood of failures. As for load distribution, it can be either automatic (when the router itself determines the optimal channel for each device, depending on the current traffic consumption), or manual (when specific channels are prescribed for different network devices, applications, or even types of traffic).

— Channel reservation. Another feature related to the simultaneous use of several channels to connect to the Internet (or other external network). In redundancy mode, the router constantly uses the main channel (or several channels) for external connection, and in case of failures on this channel, it automatically switches to the spare (spare). This relieves the administrator of the need to manually organize the connection when the main connection fails; and the spare channel works only when it is indispensable, which in some cases allows you to avoid unnecessary costs. A typical example of working with redundancy in everyday life is the use of a wired Internet connection as the main channel and a 3G / 4G modem as a spare; although, of course, other, more specific options are possible.

— Port forwarding. The ability to redirect traffic from the router's own ports to the address of a specific computer (or other device) on the local network. When working in this mode, such a computer “outside” will look like it is connected to the Internet directly, without a router. This mode may be needed to use some specific functions — for example, working in HTTP server mode or participating in P2P networks.

— Cloning the MAC address. The ability to copy the MAC address of one of the devices connected to it to the router — so that when accessing the router, it is the address of this device that is visible, and not the router itself. The MAC address is a unique identifier assigned to each device with a WAN port. And the need to clone this identifier arises from the fact that some Internet providers use not only a login / password, but also the MAC address of a specific computer connected directly to the network to authenticate users. If, however, such a computer is supplemented with a router, then the provider's equipment will see a new, unfamiliar device, and will not give access to the network. Cloning the MAC address allows you to fix this situation as quickly and simply as possible.

— VPN support. Support for the VPN function of the router — virtual private networks. One of the key principles behind this feature is the transmission of encrypted data over open networks, primarily the Internet. A VPN is used mainly in two formats:
  • Creating virtual networks based on an Internet connection. Thus, it is possible, for example, to combine branches of one company located in different cities or even countries into one logical network. At the same time, thanks to traffic encryption, the entire network remains closed to outsiders, although data is transmitted over an open channel. For this format, devices of the Firewall type (see "Type") are mainly used, while such a device actually plays the role of a VPN server.
  • Internet connection through an external VPN server. The functions of such a server are in many ways similar to a proxy: it serves as an "intermediary" in the exchange of traffic and replaces the user's IP address with its own address. The latter, in particular, allows you to bypass regional restrictions: nowadays, servers with IP addresses related to almost any country in the world are available. However, a VPN server, unlike a proxy, additionally encrypts the traffic transmitted to the user — this, again, has a positive effect on security and privacy. This mode is also available in regular routers.
Note that the connection to the VPN server can also be “raised” on individual devices on the network (for example, through tools in some Internet browsers). However, using this feature on a router is often more convenient: you only need to set up a VPN once, you don’t have to fiddle with options for each individual subscriber, and any network device can use such a connection (including those that do not have their own VPN tools) . On the other hand, the connection speed when working through a VPN can drop noticeably, and enabling and disabling this feature on a router is usually more difficult than on user devices.

— DDNS. Short for Dynamic DNS — "dynamic DNS". This feature allows you to assign a permanent domain name to a device with a dynamic IP address. A domain name is the name of a device on the local network or the address of a site on the Internet (for example, m.ua or e-katalog.ru). An IP address is service information in the form of a digital code; it is thanks to her that network equipment can find the desired device and issue the required data from it. Actually, IP is the primary network "coordinates"; however, remembering addresses as a sequence of numbers is quite difficult, so domain names appeared — they are much more convenient for a person. Both on the Internet and in local networks, the connection between a domain name and an IP address is responsible for the so-called DNS servers: for each domain in the database of such a server, its own IP is registered. However, for technical reasons, situations often arise when the router has to use a dynamic (changing) IP; accordingly, in order for information to be constantly available on the same domain name, it is necessary to update the data on the DNS server with each IP change. It is this update that the DDNS function provides.

PoE (input)

The standard for the PoE input provided in the device.

By itself, PoE (Power over Ethernet) technology makes it possible to transfer not only data over an Ethernet network cable, but also energy to power network devices. And the presence of a PoE input allows the router itself to receive power in a similar way. Note that there are special devices - the so-called PoE injectors - that allow you to add power to a regular network signal (that is, add PoE support to equipment that does not initially have such a function).

As for the PoE standards, they determine both the power supply and the main possibilities for coordinating the power source with the consumer - both must support the same standard, otherwise normal operation will be impossible. At the same time, formats that are marked like “802.3*” are called active; their common feature is that when a load is connected, the power source first “interrogates” it, checking whether the powered device complies with the requirements of the corresponding standard, and if so, what kind of power should be supplied to it. There is no such feature in the passive standard. And here is a more detailed description of specific options:

— 802.3at. A standard originally released back in 2009 and known as PoE +, or PoE type 2. The standard power received at this input is 25.5 W, with a voltage of 42.5 to 57 V and a pair power of up to 600 mA.

— 802.3af/at. This mar...king means that the PoE input supports both the 802.3at standard described above and the earlier 802.3af (PoE type 1). The second format is noticeably more modest in terms of capabilities: it provides power at the power input up to 13 W, input voltage 37 - 57 V and power in a pair of power wires up to 350 mA. Despite their "venerable age", many devices with 802.3af outputs are still in use today; so for the power input of the router, compatibility with this standard may not be superfluous. We only note that 802.3af covers as many as four so-called power classes (from 0 to 3), which differ in the specific number of watts at the output and input. So when connecting power from a device with this PoE standard, it does not hurt to further clarify compatibility by power class.

— Passive. The most simple and inexpensive standard, designed to be used mainly in entry-level equipment (since the implementation of active PoE standards is generally expensive). As mentioned above, the key difference from the formats described above is that the power supply supplies energy "as is" - with a strictly fixed voltage and power, without checking the characteristics of the load and without adjusting to it. This is what ensures low price and availability. On the other hand, when using a passive PoE input, care must be taken to ensure that the voltage and power of the power supply match the characteristics of the router; and such coordination can be quite difficult in light of the fact that the passive standard does not have strictly defined standards even for voltage, not to mention power. At the same time, the inconsistency leads to the fact that in the best case (if the output voltage / power is lower than tech required for the load), the power simply will not work, and in the worst case (with excess voltage / power), there is a high probability of overloads, overheating, and even breakdowns with fires - moreover such troubles may not occur immediately, but after a fairly considerable time. So you should pay attention to this option first of all in cases where simplicity and accessibility are more important than advanced power supply standards. At the same time, we note that some switches, which, in addition to the passive input, also have a passive PoE output, allow “cascade” connection - in the form of a serial chain of several devices powered by one external source (the main thing is that this source has enough power).

Separately, we emphasize that you should not try to connect an active power source to a passive input, and even more so vice versa. In the first case, the device simply will not pass the test that is carried out before power is applied, and the power will not turn on. And in the second case, serious failures and even accidents are possible: a passive power source supplies energy immediately, without checking the characteristics of the powered device, which creates the risk of overloads if the operating parameters do not match.

PoE (output)

The PoE output(s) standard used by the router.

By itself, PoE (Power over Ethernet) technology allows you to transfer not only data over an Ethernet network cable, but also energy to power network devices. And the presence of a PoE output (outputs) makes it possible to power such devices from the network connectors of the device. This eliminates the need to lay additional wires or use independent power sources, which is especially important for some equipment, such as external IP surveillance cameras. And when using the so-called splitters - devices that divide the PoE cable signal into purely network data and power power - using such outputs, you can also power equipment that does not initially support PoE (the main thing is that their power characteristics correspond to the capabilities of the switch).

As for PoE standards, they determine not just the overall power supply, but also compatibility with specific devices: the consumer must support the same standard as the router, otherwise normal operation will be impossible. Nowadays, including in the connectors of "switches", you can find two types of such standards - active (802.3af, 802.3at, 802.3bt) and passive (one, that's what it's called). The main difference between these varieties is that active PoE provides for matching the power source and load in terms of voltage and power, while passive PoE does not have such functions, and energy is supplied “as is”, witho...ut adjustments. And here is a more detailed description of specific standards:

— 802.3af. The oldest active PoE power format in use today. It provides power at the power output up to 15 W (at the input of the consumer - up to 13 W), output voltage 44 - 57 V (at the input - 37 - 57 V) and power in a pair of supply wires up to 350 mA. Despite the "venerable age", it still continues to be widely used; so there are still quite a lot of routers that work only with 802.3af on sale (as of the end of 2021). However, it is worth considering that this standard immediately covers 4 so-called power classes (from 0 to 3), which differ in the maximum number of watts at the output and input. So when using 802.3af, it doesn't hurt to make sure that the output power will be sufficient for the selected load.

— 802.3af/at. A combination of two standards at once - the 802.3af described above and the newer 802.3at. The latter allows you to supply power up to 30 W (up to 25.5 W at the input of the powered device), uses a voltage of 50 - 57 V (42.5 - 57 V at the input), while the power in a pair of wires does not exceed 600 mA. Such a combination is relatively inexpensive, while it makes it possible to power a wide variety of external devices; so at the end of 2021, it is this type of PoE outputs that is most popular in routers.

— 802.3af/at, bt. Combination of 802.3af/at above with 802.3bt (PoE++, PoE type 3 or type 4). 802.3bt is the newest PoE power format; unlike earlier ones, it uses not 2, but 4 power wires, which allows you to supply very solid power to external devices - up to 71 V (at 90 W at the power output). Such capabilities are indispensable when supplying power to equipment with increased consumption - for example, external surveillance cameras, supplemented by heating systems. On the other hand, support for the 802.3bt standard significantly affects the cost of the device, and such a connection puts forward special requirements for the quality of cables. In addition, you need to keep in mind that this standard also includes the UPoE format created by Cisco and used in its equipment; and this standard (it is known as PoE type 3) has a more modest power - up to 60 W at the output (up to 51 W at the consumer's input). Yes, and the general standard 802.3bt includes two power classes - class 8, at which maximum performance is achieved, and class 7, where 75 watts are supplied to the output, and about 62 watts reach the consumer. So if you plan to use 802.3bt equipment, when choosing a router from this category, you must make sure that the power supply is enough for the connected devices to work properly.

— Passive. As already mentioned, the key difference between passive PoE and the active standards described above is that in this case the power output produces a strictly fixed power, without any automatic adjustments and adjustments for a specific device. The main advantage of this standard is its low cost: its implementation is much cheaper than active PoE, so such ports can be found even in entry-level routers. On the other hand, the aforementioned lack of auto-tuning makes it much more difficult to coordinate the equipment with each other - especially in light of the fact that different devices can differ markedly in the output / consumption of voltage and power (power). Because of this, when using passive PoE, you need to pay special attention to the compatibility of the source and load in these parameters. If there is no match, then in the best case (if the output voltage / power is lower than required), the power simply will not work, and in the worst case (with excess voltage / power), there is a high probability of overloads, overheating, and even breakdowns with fires - and such troubles may not occur immediately, but after a fairly long time. And it is definitely impossible to connect devices with active inputs to passive PoE outputs - for the same reasons.

In conclusion, it should be said that if the router has both an input with PoE support and several outputs with this function, then all the possibilities of such outputs, as a rule, can only be realized when the switch itself is powered from the outlet, and not from the PoE input. See "PoE Outputs" for details.
MikroTik RB2011iLS-IN often compared
MikroTik RB1100AH often compared