Hello everyone,
I am the guy who manage the information infrastructure of a very small business. Mainly for security all my network is not cennected to internet. Due to the covid I would like to allow some colleagues to work at home with a PC joined to the domain. In fact I would like to create a kind of secured virtual ethernet cable between the company and the user’s PC, all this without any leak between the internet side and the “out of internet” side, both at the office and at the user’s home.
I tried to make a diagram showing what I want to do:
Is it possible to do that, knowing I don’t have advanced skills?
Thank you very much for your advice.
What I would recommend is Wireguard but thats in beta only so not available as its doable/ easy enough / to get you where you need to be … DONT RECOMMEND using beta firmware for work, or even stable (prefer long term version).
Anything else I agree you need professional help.
If your network structure was used to external attacks, there would be no problem.
But if you have never thought of exposing it on the Internet, even putting it in part,
on a single PC that goes on the Internet before making the VPN, is extremely risky.
It is, to stay on the subject with anav, as when the “Conquistadores” met the indigenous Americans for the first time,
they killed many with the now banal viruses to which the European population was now “accustomed” …
Good advice!! Eoip is Mikrotiks proprietary method of sharing LANs across the net so as long as you have two MT routers at either end, good to go.
However you should put a layer of encryption on it. https://help.mikrotik.com/docs/display/ROS/EoIP