ok thanks for that. Here is my updated config: [Interface] PrivateKey = "privatekey" ListenPort = 21232 Address = 10.255.199.3/24 DNS = 192.168.2.1 [Peer] PublicKey = "publickey" AllowedIPs = 192.168.2.0/24 Endpoint = endpoint:21232 PersistentKeepalive = 25 The router vpn ip is 1...

Hi, Before i knew about wireguard in mikrotik i used L2TP+Ipsec. With L2TP+Ipsec i could give the client an ip address that is on the same network as the lan he was connecting to. Is this possible with wireguard? If so please share how its done. To clarify: Lan network is 192.168.2.0/24 Windows clie...

I am using v7.7

ok i will try and read through that.

Hi, I have one scenario where wireguard wont connect until i disable\enable peer on host. On all my other setups if i setup script to disable\enable peer on client then works great, i set that up here too but about once a week or so that vpn looses connection then i login to host mikrotik disable\en...

This is pretty complicated to explain but i have to try. We have had on a few different networks that we manage a device that will take down the network almost entirely. Usually this has been a debit machine and all it takes to fix it is reboot the debit machine but it would be nice if there was a w...

Sorry not good at making diagrams. I wanted MTB to be a router because incase PTP (Nanobeams) would go down that they would still have a fully functioning internal network. The PTP is not very stable. MTA its only function is Receiving internet, sending it to MTB and being able to access PTP Units t...

Hi, I have fibre internet at location A with mikrotik router with 1 public ip address Location B is connected to location A with ubiquiti equipment and location B also has mikrotik router. Location B is VPN server and has site to site vpn with several other locations outside of these 2 locations. Lo...

Thank you very much!
I just added one NAT rule as per your instructions and it worked right away.
I'm in Mikrotik Heaven

Hi, I have an ipsec tunnel from cisco to mikrotik established and working well. LAN clients on MT connect to a device 10.255.231.12 which is a LAN client on cisco side. Now i have setup wireguard on the MT and connecting windows clients to the MT. The wireguard clients can access the MT LAN just fin...

The answer is ZEROTIER.

Hi, I have LTE internet and Mikrotik router which is double or tripple nat'd because well its LTE internet. I need to setup the mikrotik router to be a vpn server so that windows wireguard clients can connect. What i did in one place was use a different mikrotik router that was not behind LTE intern...

Maybe someone can throw me a bone here: Mikrotik side lan device can ping edge side lan device with this masquerade in the mikrotik: masquerade chain=srcnat action=masquerade src-address=192.168.88.0/24 log=no log-prefix="" ipsec-policy=out,none But it does not work with the default masque...

Hi, I have an EdgeRouter X v2.0.6 and it is the L2TP+IPSec server. I have Mikrotik RB951Ui-2HnD with v7.5 on it as the client. VPN connection is established between the 2 routers From the mikrotik i can ping the lan device on the EdgeRouter. From the lan on the mikrotik side i cannot ping the lan de...

Your PC does not know about 172.16.0.x network, ROUTERB knows about 172.16.0.x because you added a route for it. You need to tell PC how to reach 172.16.0.x Run this in powershell: Replace $ConnectionName with your vpn name in windows #Add-VpnConnectionRoute -ConnectionName $ConnectionName -Destinat...

I am having multiple customers call me because they can't use the vpn to connect to their work because DDNS does not work. an NSLOOKUP reveals *** UnKnown can't find MYNETNAME.NET: Non-existent domain.

Do the people at Mikrotik know about this?

Hi,

Thank you for the reply.

I ended up setting up PPPoE server and having client routers connect to that and it works great.

So once i am finished then all my customers will be off of main router and have their own routers without double nat.

I am sharing my internet with a few customers and now I need to have one more joined and I am needing a bit of help on how to do it. My current setup is not like what i have below. What i have below is how i prefer to have it setup. My current setup i do have some of them double nat and my vpn's are...

Thank you to all that replied. im learning so much about networking and about mikrotik!

What ended up working perfectly for me was creating a route on the sonicwall to the 192.168.0.223 port which is on the mikrotik.

Could you tell me how to do this: "add route on the said server (instead of adding IP address) saying that 192.168.20.0/24 is reacheable through gateway with address 192.168.0.223." Also is it possible to have a bridge with port 2 - 5 and have dhcp on that bridge but exclude port 5 from re...

thanks for the replys. Solved. Should anyone come across this in future this is how i got it to work. Not perfect but it works. I made no changes to sonicwall because i did not really know what to change on there to allow sonicwall devices to see devices on mikrotik network. So i just went to server...

ok i can see if i can get access to sonicwall. what info do you need?

The sonicwall was is in router mode. I cannot mess with that one. The sonicwall has its own internet source. The mikrotic has its own internet source. But the 2 networks need to talk to each other. The way its setup now the mikrotik port5 is plugged into lan port on sonicwall. Currently all mikrotik...

Hi, I need communication between 192.168.20.0 subnet and 192.168.0.0 subnet both ways. With the configuration i have now 192.168.20.0 can talk to 192.168.0.0 but not the other way around. Please let me know what need to be done. thanks. I have an RB750Gr3. I have default config loaded on this router...

Hi, If i go to http://192.168.2.1/accounting/ip.cgi It works without problem, but i cannot get anything to show up in the viewer...Service started no problem. 2015/12/04 08:24:06 - Info: Starting up sniffer service 2015/12/04 08:24:06 - Info: Mikrotik user: sniffer 2015/12/04 08:24:06 - Info: Mikrot...