Greetings to all.
New to the forum but not new to mikrotik products. I’ve been using for a good long time and have been very happy with the products.
To the subject,
I’m installing some remote systems (estimated to be arround 150-200) that each one of them is equipped with a small Mikrotik router for VPN, so I’m able to connect back for remote service.
The main problem is related to the CG-NAT, not all the remote destinations have public IP.
So I have installed a Mikrotik CHR instance in VPS hosting as the main VPN server, all the remote units are connecting over VPN to the main server. Till this part everything is installed and working as it should.
Now the problematic part is this, I need to connect to the main VPN server from windows PC over VPN and get access to each one of the remote units subnets. I do not need the remote units to “talk” to each other. I need to work only in one remote unit at a time, so the remote units vpn dont need to be connected at the same time.
For making things straight i can use the same subnet in all remote units and have its secret disabled in the server and enable it only when it is needed. Two secrets will be enabled in each session, one of the remote unit that I’m working on and one of my windows pc.
In short i need somehow to enable client to client VPN through the main vpn server.
any ideas?