Home Network - My first run

RouterOS General
1

Hello MikroTik community,
this is my first run with this product and i need a bit help. I am no professional and i have no experience with Mikrotik so far. So hope you can help me to understand a few things.

I work on my home network and try to get some goals achieved:

  • Main network for servers and clients
  • VLAN for WiFi internal
  • VLAN for Guest WiFi
  • VPN Connection to get access from outside to my smarthome via mobile devices and computers

Thats it …

My settings:

  • Main Network: 10.132.130.0/24
  • WiFi internal: 10.132.160.0/24
  • WiFi guests: 192.168.8.0/24
  • VPN Network: 192.168.77.0/24

I have created my configuration and except of a few things everything is running fine now.
So i hope you can help me to solve/understand those few things :slight_smile:

VLAN
I have created the vlans but i can not discover services from my “WiFi internal” to the “Main Network”.
Example: I have a SmartHome and i can control it with an App. The app can autodiscover the smarthome server via broadcast. But in this is not working now within my
“WiFi internal”.
So my first question is: How can i allow broadcasting (if this is the right word) to other networks ?

IPSEC VPN

i have created a VPN configuration based on the description of the following link in the MikroTik Wiki:
http://wiki.mikrotik.com/wiki/Manual:IP/IPsec#Road_Warrior_setup_with_Mode_Conf
I found out that it is only working with a few modifications:

  • In “PEERS” configuration i changed “Exchange Mode” to “aggresive”
  • I deactivated the “NAT Traversal”

So now VPN is workin in principal. I can access my Home from outside and i can use my applications from Home Network.
What i dont understand is that it takes a while until the VPN is established. First i got the following messages within the log:

no suitable proposal found.
213.225.12.XX failed to get valid proposal
213.225.12.XX failed to pre-process ph1 packet (side:1, status 1).
213.225.12.XX phase1 negotiation failed

I get this 2 to 3 times and then the connection works for some reason.
So my second question is: Did i miss something ? What goes wrong here ?

Next i would like to use the VPN also with a windows 10 notebook.I was not able to find the client configuration in the wiki,
I would like to have the same or another VPN which can be used from winows 10 embedded VPN client without a certificate. Preshared key would be enough.
Third question: How can i get access to the existing VPN with Windows 10 or should i create a new one ? Do you have a proposal for this ?

Thank you in advance for your help to understand the technique better …