Hello everyone, I have an rb3011 and I have configured a l2tp/ipsec vpn, I am using it to transfer media files (videos) and documents (pdf, etc), however the file transfer is limited to 15mbps, and when there is more than one user, this speed is divided (i.e., it becomes 8mbps for each user during the file transfer)… I have 1GB of internet, I would like to know how I can increase the speed capacity of my VPN…
I really need help and have never set up a VPN before so I need some good help here! thanks in advance!!!
tutorial video that i used for setup l2tp vpn: https://youtu.be/DjW5EXbkbrI
Any reason you chose L2TP vice wireguard??
Tbh I’m new to this VPN thing, could you explain it better?
Wireguard has generally better performance and easier to setup.
Do you control both ends of the tunnel? ( what is at both ends?)
Does at least one end have a publicaly reachable IP address ( not cgnat or natted behind another router )??
If natted behind lets say an ISP modem router, can you forward ports on that router??
Yes i can, i have 100% control of the ends, both have public ip btw, and yes i can port forward 100%
There is any good easy guide to use wireguard with the mikrotik rb3011? especially for NAS servers
Before thinking about configurating, its best to understand the requirements and PLAN!!!
identify users/devices, groups of users/devices, including admin
identify what traffic they need.
Do the devices have single WAN or dual WAN?
Is there any port forwarding involved on the two devices?
What two devices do you have (both Mikrotik?).
Select one as a server for handshake ( main device )
My current situation is:
My company, which has 2 separate buildings (relatively far apart, making it impossible for everyone to work in SMB LAN), is why we want to set up a single SMB server and we want to release this access to employees so that both buildings can work in “synchronization” between them. .
We already have SMB fully configured and operational! however, we made the vpn configuration I mentioned previously using mikrotik l2tp/ipsec.
And that’s when the problem arose, both buildings have 1GB of internet but with the L2TP VPN the maximum that goes through is 15MBPS which causes aggressive slowdowns.
We want to make the most of what our internet speed has to offer.
Our job is to work with many word/pdf documents and some heavy media files daily… So we need a faster VPN
The number of users will be on average 10 simultaneous users.
We have an rb3011 in both buildings
We have port forwarding on the main building to one of our backup servers and one to a database for querying one of our systems
Sounds very doable.
Basically
server router - input chain rule for port
both routers.
define interface
add ip address
add peers, wireguard Ip and remote subnets ( see article for difference between client peer setting and server peer setttings )
add forward chain rules needed for traffic flow
add ip routes for remote subnets
done…
Well not quite that easy but will get you most of the way.
once you have a config you want reviewed post here.
/export file=anynameyouwish (minus router serial #, any public WANIP information, keys, long dhcp lease lists etc.)
U think that doing all this i will be able to get at least 100mbps of transfer speed when using the vpn?
And have u any video guide or documentation that i can follow to make this steps?
Yes…
and
https://help.mikrotik.com/docs/display/ROS/WireGuard
https://www.youtube.com/watch?v=vn9ky7p5ESM&t=8s&pp=ygUSd2lyZWd1YXJkIG1pa3JvdGlr
https://www.youtube.com/watch?v=OGBWSpl1Wik&t=103s&pp=ygUSd2lyZWd1YXJkIG1pa3JvdGlr
https://www.youtube.com/watch?v=7F9LG7Qgpmg&pp=ygUSd2lyZWd1YXJkIG1pa3JvdGlr