Community discussions

Search found 24 matches

by msusmani
Fri Oct 18, 2019 9:47 am
Forum: General
Topic: Site To Site IPSEC Tunnel with NAtting at Branch End
Replies: 5
Views: 413

Re: Site To Site IPSEC Tunnel with NAtting at Branch End

Thanks for your prompt response and support I am able to reach branch office . Now from branch to HQ can you suggest which option will work. Should I go with filter rule or NAT rule or should I define VPN policy at HQ and ISP VPN routers.
by msusmani
Thu Oct 17, 2019 9:53 pm
Forum: General
Topic: Site To Site IPSEC Tunnel with NAtting at Branch End
Replies: 5
Views: 413

Re: Site To Site IPSEC Tunnel with NAtting at Branch End

Thanks for your prompt response. A bit of typo error in diagram .Site to site IPSEC Tunnel is established between HQ and ISP core router. Any traffic coming from 192.168.78.0/24 is reachable to 10.126.192.160/28 i.e ISP end. Now ISP routes this traffic on their media and branch is getting IP 10.126....
by msusmani
Thu Oct 17, 2019 6:58 pm
Forum: General
Topic: Site To Site IPSEC Tunnel with NAtting at Branch End
Replies: 5
Views: 413

Site To Site IPSEC Tunnel with NAtting at Branch End

Dear Members Kindly help me out to solve config issue. As per attached diagram I am able to setup IPSEC VPN and it works. Now I have to NAT local network at branch end to connect servers at branch with HQ. I have no control over VPN Router at ISP end. Kindly let me know how to make traffic from bran...
by msusmani
Thu May 30, 2019 8:52 am
Forum: General
Topic: Routing Internet to Remote Network over Site to Site IPSEC VPN
Replies: 7
Views: 602

Re: Routing Internet to Remote Network over Site to Site IPSEC VPN

I only have access to HQ router and the VPN router at gateway is not under my control. Also there is no Mikrotik device installed at branch A and Branch B instead these are satellite modems for providing connectivity. Further yes firewall rules are still missing but I will implement it. Regards Muha...
by msusmani
Wed May 29, 2019 10:36 am
Forum: General
Topic: Routing Internet to Remote Network over Site to Site IPSEC VPN
Replies: 7
Views: 602

Re: Routing Internet to Remote Network over Site to Site IPSEC VPN

Attached please find network diagram and config.
HQ Router Config.txt
Network Diagram.jpg
by msusmani
Wed May 29, 2019 10:00 am
Forum: General
Topic: Routing Internet to Remote Network over Site to Site IPSEC VPN
Replies: 7
Views: 602

Re: Routing Internet to Remote Network over Site to Site IPSEC VPN

Dear Group Member Thanks for your quick response. Let me clarify the requirement a bit more. The branch network is 10.10.10.0/28 all the IP's in branch will be used for data transfer over IPSEC and only one IP 10.10.10.2 will have access to internet. Internet access to IP 10.10.10.2 will be given fr...
by msusmani
Wed May 29, 2019 9:03 am
Forum: General
Topic: Routing Internet to Remote Network over Site to Site IPSEC VPN
Replies: 7
Views: 602

Routing Internet to Remote Network over Site to Site IPSEC VPN

Dear Members I have configured IPSEC VPN between my branch office and HQ and able to reach branch through HQ LAN and vice versa. Now I have to transport internet from HQ for users at Branch office using this IPSEC VPN tunnel but I am not sure how to do this. Can anyone help me out with this ? Regard...
by msusmani
Tue Oct 09, 2018 1:28 pm
Forum: General
Topic: Getting Error with IPSEC Configuration [SOLVED]
Replies: 3
Views: 558

Re: Getting Error with IPSEC Configuration [SOLVED]

Enable ipsec debug logs to get more info. Routers log shared below can you help me with this logs. 14:56:04 ipsec,debug c0ce7241 a55a6d9b 4152fc8e eb729cbb c721c1f0 05000084 dbd835ee 1991fd58 14:56:04 ipsec,debug c09f41c3 a34fe897 b6a9cf12 a24ef33b 75e6d5eb 39f5f3d3 b748ba95 3cc777ff 14:56:04 ipsec...
by msusmani
Mon Oct 08, 2018 4:12 pm
Forum: General
Topic: Getting Error with IPSEC Configuration [SOLVED]
Replies: 3
Views: 558

Getting Error with IPSEC Configuration [SOLVED]

Dear Forum Members I have established IPSEC VPN connectivity with one of my service providers using Mikrotik RB-750 router. Provider is using Juniper at their end. As per service provider VPN is connected but I am getting following error in mikrotik logs : ipsec error 192.168.12.2 failed to pre-proc...
by msusmani
Fri Aug 03, 2018 3:06 pm
Forum: Beginner Basics
Topic: IP Firewall Filter rule not working with Bridge Mode
Replies: 4
Views: 2628

Re: IP Firewall Filter rule not working with Bridge Mode

I am able to block access of my router from WAN except an specific IP through this config but unable to block access to host connected to bridge interface. Can any one help?
by msusmani
Thu Aug 02, 2018 10:35 am
Forum: Beginner Basics
Topic: Using mikrotik Firewall Feature
Replies: 15
Views: 1653

Re: Using mikrotik Firewall Feature

I'm not sure why you are choosing to not answer my questions, yet you still ask for help.... Based on what you have and have not provided, your answers are in my first post. When you decide to answer my questions I will revisit this thread an provide additional details that I think you will need to...
by msusmani
Tue Jul 31, 2018 1:31 pm
Forum: Beginner Basics
Topic: IP Firewall Filter rule not working with Bridge Mode
Replies: 4
Views: 2628

Re: IP Firewall Filter rule not working with Bridge Mode

If you are using a bridge then the firewall won't work from default. Why would a firewall filter a LAN bridge? You need to go into Bridge > Settings and check "use IP firewall" to run the bridge traffic through your filters. I have already enabled use IP firewall in bridge settings /interface bridg...
by msusmani
Tue Jul 31, 2018 12:57 pm
Forum: Beginner Basics
Topic: IP Firewall Filter rule not working with Bridge Mode
Replies: 4
Views: 2628

IP Firewall Filter rule not working with Bridge Mode

Hi Experts I have just configured a mikrotik router in bridge mode and trying to apply firewall filter rules but its not working. Details of connectivity and config mentioned below: Router's Ethernet1 and ethernet 2 interface is running in bridge mode. Both interfaces have public IP. There is anothe...
by msusmani
Fri Jul 27, 2018 3:26 pm
Forum: Beginner Basics
Topic: Using mikrotik Firewall Feature
Replies: 15
Views: 1653

Re: Using mikrotik Firewall Feature

The solution to your problem largely depends on IP address that your server (hooked to ether2) is using. If it's some private IP address, then solution will be completely different from solution where your server is using public IP address. To have FW any governance over traffic of your server you'...
by msusmani
Thu Jul 26, 2018 3:39 pm
Forum: Beginner Basics
Topic: Using mikrotik Firewall Feature
Replies: 15
Views: 1653

Re: Using mikrotik Firewall Feature

Ethernet 2 will have public IP .
by msusmani
Thu Jul 26, 2018 2:11 pm
Forum: Beginner Basics
Topic: Using mikrotik Firewall Feature
Replies: 15
Views: 1653

Re: Using mikrotik Firewall Feature

Dear Fellow Members Following is my Mikrotik Configuration. I have connected my ISP router to mikrotik WAN port. Now I have to config firewall rules so that my desktop users are allowed to access internet.Further server connect on interface 2 of mikrotik must be able to access only server located at...
by msusmani
Fri Jul 06, 2018 3:39 pm
Forum: Beginner Basics
Topic: Using mikrotik Firewall Feature
Replies: 15
Views: 1653

Re: Using mikrotik Firewall Feature

Dear Member I am looking for a config to allow users at branch site to use internet and call to other extensions by getting connected with VOIP. VOIP device installed at HQ and branch ends can communicate over public IP. I need to insert firewall before VOIP devices at both ends and only enable them...
by msusmani
Fri Jul 06, 2018 2:16 pm
Forum: Beginner Basics
Topic: Using mikrotik Firewall Feature
Replies: 15
Views: 1653

Re: Using mikrotik Firewall Feature

Dear Member Kindly find my response below [Okay, I have a better understanding of your network. Why the insertion of the RB750? What are you trying to achieve with adding it to your network? Why would you not have your users and your "PABX" both connect to the RB750 and only your Mikrotik connects t...
by msusmani
Thu Jul 05, 2018 10:07 pm
Forum: Beginner Basics
Topic: Using mikrotik Firewall Feature
Replies: 15
Views: 1653

Re: Using mikrotik Firewall Feature

Dear Member To explain you the scenario i have attached diagram and tried to explain why I am trying to achieve. My basic purpose is to conbect RB750 with my ISP router and then connect my VOIP device with mikrotik and configure mikrotik as firewall to protect my voice device. Kindly let me know if ...
by msusmani
Thu Jul 05, 2018 2:55 pm
Forum: Beginner Basics
Topic: Using mikrotik Firewall Feature
Replies: 15
Views: 1653

Re: Using mikrotik Firewall Feature

Dear Member Thanks for your response. Attached please find my network diagram. As per network diagram at point A and point B I am trying to add mikrotik to use it as firewall. I dont want my both devices to be exposed to internet so trying to insert firewall. Kindly help me on configuring this scena...
by msusmani
Mon Jul 02, 2018 9:34 am
Forum: Beginner Basics
Topic: Router Selection For VPN
Replies: 1
Views: 334

Router Selection For VPN

Dear Members

I need to create VPN between my branch office and Head Office. I have 80 branch sites that needs to be connect to head office using VPN. Branches are using RB750 can you suggest router at Head Office that can support 80 VPN's.
by msusmani
Mon Jul 02, 2018 9:03 am
Forum: Beginner Basics
Topic: Using mikrotik Firewall Feature
Replies: 15
Views: 1653

Re: Using mikrotik Firewall Feature

Thanks a lot for your response and helping me out on this. Kindly find response to queries below: Internet router installed at my office is not RB 750 it is a satellite router provided by ISP. [Are you referring to the RB750 here? 1st LANA port is connected with Wifi device for giving internet acces...
by msusmani
Sat Jun 30, 2018 9:52 pm
Forum: Beginner Basics
Topic: Using mikrotik Firewall Feature
Replies: 15
Views: 1653

Using mikrotik Firewall Feature

Hi Members I have recently purchased RB750 for my office use. I have an internet router installed in my office with 2 LAN ports. 1st LANA port is connected with Wifi device for giving internet access to users. From second LAN port I have to connect a device that needs to get connected to its peer de...
by msusmani
Thu Jun 29, 2017 11:26 am
Forum: General
Topic: Unable to run two site to site GRE Tunnels on Mikrotik RB-750 Board
Replies: 1
Views: 389

Unable to run two site to site GRE Tunnels on Mikrotik RB-750 Board

Dear Forum Members I have recently started working on mikrotik routers. In one of our customer requirements we have to configure multiple site to site GRE tunnels between HO and remote locations. As per test scenario I have configured GRE tunnel between HQ and site A which is running perfect. Now wh...