forward vpn network to another interface

RouterOS General
1

Hi,

I have an RB750 with the follow setup:

  • Interface 1 = WAN static IP
  • Interface 2 = Static IP from a LAN network (LAN provided by another FW)
  • MK as a IPSec/L2TP working well providing to clients the subnet x.x.x.x
    I would like to redirect all traffic from VPN clients to the LAN network provided in Interface 2.

I mean; User setup in his computer the VPN with success, when connected they need to access the server z.z.z.z located inside the network provided in Interface 2.

Any ideas how to configure it?

2

You need to two things:

  1. VPN clients must know how to reach z.z.z.z. So either they need route to z.z.z.z, or you’d have to play with dstnat, i.e. clients would be connecting to e.g. IP address on router’s end of tunnel and you’d dstnat these requests to z.z.z.z.

  2. Server z.z.z.z must know where to send responses to clients. If this router is not z.z.z.z’s default gateway, either z.z.z.z or its default gateway need static route to x.x.x.x via your router. Or you could use srcnat and hide all clients behind your router’s address.