The first thing to do is a network design where the segment is defined for both the backhaul links and the sectorial links. Generally, /29 segments are used for backhaul links, while for the sectorial links either /27,/26, /25,/24 in the case of the sectorial one, the selectivity of the mask will depend on the number of clients that will connect to the sectorial ones.

Assigning IP segmentation in a WISP (Wireless Internet Service Provider) network using MikroTik equipment involves carefully planning the network structure to ensure efficient traffic management, security, and scalability.

We detail a general approach that you can follow:

1. Network Planning

• Determine the Requirements: Consider the number of clients, services offered, network topology and bandwidth requirements.
• Design the Subnet Structure: Divide the network into smaller subnets to improve management and security. This may include subnets for network infrastructure (routers, switches, servers), end clients, internal services, etc.

2. IP Address Scheme

• IP Block Allocation: Based on scheduling, it assigns blocks of IP addresses to different network segments. It uses CIDR (Classless Inter-Domain Routing) notation to efficiently define subnets and preserve IP addresses.
• Subnets for Clients: For clients, you can assign dynamic subnets using DHCP or static subnets if required for specific use cases.
• Directions for Infrastructure: Assign static IP addresses to all critical infrastructure devices, such as routers, switches, and servers.

3. Configuration in MikroTik RouterOS

• Interfaces and IP Addresses: In the MikroTik RouterOS, assign the IP addresses to the corresponding interfaces according to your segmentation scheme. Use the menu IP > Addresses for this.
• Static and Dynamic Routes: Configure static routes if necessary to route traffic between subnets. For more complex networks, consider using dynamic routing protocols such as OSPF.
• DHCP for Clients: Configure the DHCP server in MikroTik to assign IP addresses to clients dynamically. Be sure to define the IP address range and other necessary options in IP > DHCP Server.
• VLANs for Segmentation: If your network uses wired and wireless technology, consider using VLANs to further segment traffic within the network. Configure VLANs in Interfaces > VLANs and assigns the corresponding IP addresses to each VLAN.

4. Security Considerations

• Firewall and Security: Configure firewall rules in MikroTik to protect subnets and control traffic between them. Use the menu IP > Firewall to configure filtering, NAT, and mangle rules.
• Client Isolation: For wireless networks, use client isolation functionality to prevent direct traffic between clients and increase security.

5. Maintenance and Monitoring

• Network Monitoring: Use tools built into MikroTik RouterOS, such as Torch and Traffic Flow, to monitor network traffic and detect potential problems.
• Updates and Backups: Keep the software on your MikroTik devices updated and make regular backups of your settings.

IP segmentation in a WISP network is a critical task that requires careful planning and detailed implementation. The flexibility and powerful features of MikroTik RouterOS allow you to design and deploy a scalable, secure network that can grow and adapt to your customers' needs.