hi @all,
i would install a vpn-server on a mikrotik device. many users (20 user) should log in on this vpn-server. i would use certifikates. but the most important thing for me is to configure host- or net-routes on the server that the server pushes to the vpn-client.
i know this feature from a openvpn-server on linux. i don’t know if or how i can configure routes that get pushed.
here is a simple overview of my wish:
-
there is an internet connection with a public ip address
-
i have 2 lans on my mikrotik (192.168.100.0/24 and 192.168.110.0/24)
-
now there sould be a vpn-net (172.16.0.0/24)
-
now a vpn-client (windows OS) start a connection from its public ip address to the public ip address of the mikrotik
-
only if there is a valid certificate the vpn-client get an ip address from network 172.16.0.0./24
-
one client should get a networkroute to the lan 192.168.100.0/24 over the vpn-tunnel and another client should get a networkroute to the lan 192.168.110.0/24 and a third client should get both routes. this configuration i would set on the vpn-server (mikrotik)
is this possible to implement it on a mikrotik? is it possible to require client certificates? if i activated this i cant establish a connection that works before. please tell me what kind of vpn i could use…
kind regards,
eric