I have an PPTP set up on my mikrotik, I can connect with windows built in vpn and it can only ping router, I’m unable to use RDP through it.
Also with android it keeps disconnecting. I’m pretty sure I have missed something:
/interface bridge
add admin-mac=* auto-mac=no comment="created from master port" name=bridge1 protocol-mode=none
add fast-forward=no name=home-LAN
/interface ethernet
set [ find default-name=ether1 ] mac-address=* name=ether1-WAN
set [ find default-name=ether2 ] name=ether2-IPTV
set [ find default-name=ether3 ] name=ether3-DHCP
/interface pptp-server
add name=pptp-interface user=""
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
add authentication-types=wpa-psk,wpa2-psk eap-methods="" management-protection=allowed mode=dynamic-keys name=abadok supplicant-identity=""
/interface wireless
set [ find default-name=wlan1 ] band=2ghz-b/g/n disabled=no mode=ap-bridge security-profile=abadok ssid=abadoka wps-mode=disabled
/ip pool
add name=dhcp_pool_home ranges=10.1.0.2-10.1.0.100
add name=VPN_pool ranges=10.1.1.150-10.1.1.160
/ip dhcp-server
add address-pool=dhcp_pool_home authoritative=after-2sec-delay disabled=no interface=home-LAN name=dhcp-home
/ppp profile
set *0 dns-server=8.8.8.8
add dns-server=8.8.8.8 local-address=10.1.1.10 name=VPN_home remote-address=VPN_pool
/interface bridge port
add bridge=home-LAN hw=no interface=ether3-DHCP
add bridge=home-LAN hw=no interface=ether4
add bridge=home-LAN hw=no interface=ether5
add bridge=home-LAN hw=no interface=ether6
add bridge=home-LAN hw=no interface=ether7
add bridge=home-LAN hw=no interface=ether8
add bridge=home-LAN hw=no interface=ether9
add bridge=home-LAN hw=no interface=ether10
add bridge=home-LAN hw=no interface=wlan1
add bridge=bridge1 interface=ether2-IPTV
add bridge=bridge1 interface=ether1-WAN
/interface bridge settings
set use-ip-firewall=yes use-ip-firewall-for-pppoe=yes use-ip-firewall-for-vlan=yes
/ip neighbor discovery-settings
set discover-interface-list=!dynamic
/interface pppoe-server server
add disabled=no interface=<l2tp> service-name=service1
/interface pptp-server server
set enabled=yes
/ip address
add address=10.1.0.1/24 interface=home-LAN network=10.1.0.0
/ip dhcp-client
add dhcp-options=hostname,clientid disabled=no interface=bridge1
/ip dhcp-server network
add address=10.1.0.0/24 dns-server=8.8.8.8 gateway=10.1.0.1
/ip firewall address-list
add address=10.1.0.0/24 list=MyLocalLAN
/ip firewall filter
add action=accept chain=input comment="allow access to the router from LAN" src-address-list=MyLocalLAN
add action=drop chain=forward comment="drop invalid connections" connection-state=invalid
add action=accept chain=forward comment="allow connections from the LAN" connection-state=new in-interface=home-LAN
add action=accept chain=forward comment="Allow established connections" connection-state=established
add action=accept chain=forward comment="Allow related connections like ftp" connection-state=related
add action=drop chain=forward comment="drop all other traffic through the router"
add action=accept chain=input comment="allow established connections to the router" connection-state=established
add action=accept chain=input comment="allow related connection to the router" connection-state=related
add action=accept chain=input comment="allow tcp port 1723 for PPTP" dst-port=1723 protocol=tcp
add action=accept chain=input comment="allow GRE protovcol ID 47" protocol=gre
add action=accept chain=input comment=IPTV in-interface=bridge1 protocol=igmp
add action=drop chain=input comment="drop all other traffic to the router"
/ip firewall nat
add action=masquerade chain=srcnat out-interface=bridge1
/lcd
set enabled=no touch-screen=disabled
/ppp secret
add name=* profile=VPN_home service=pptp
/system clock
set time-zone-name=Asia/Tbilisi
/system identity
set name=*