:( :( :( :( MIKROTIK OPENVPN CLIENT - FIREWALL - NO PING

kazimnaim · November 23, 2013, 3:39pm

Dear All

I am in need to help urgently

Following is my scenario:

Mikrotik RB 750 ether 1 connected as PPPOE
Ether2 and rest of the ports as LAN
Internet working
No firewall filter rules defined
OVPN-OUT1 interface connected to a linux OVPN Server with tcp and without lzo compression
From mikrotik I can ping LAN side of the vpn server
From Server side unable to ping to any device behind mikrotik

OVPN Server IP: 10.3.8.1
LAN Behind Server: 172.10.10.0/24

OVPN Client (Mikrotik) : 10.3.8.6
LAN Side behind MIkrotik : 172.20.20.0/24

From server side I can ping 10.3.8.6 but not the 172.20.20.0/24

Please advise

Sob · November 23, 2013, 4:06pm

Is there route on server to 172.20.20.0/24?

kazimnaim · November 23, 2013, 4:19pm

yes there is a route on server

172.20.20.0/24 10.3.8.2 UGS 0 12 1500 ovpns3

from server I can even ping 10.3.8.6 which is on mikrotik client but not the lan side

Sob · November 23, 2013, 6:27pm

Is it a typo, or the route really goes via 10.3.8.2? Because if your client has 10.3.8.6, it needs to go there.

kazimnaim · November 23, 2013, 6:29pm

no its not a typo. i was also looking at the same…

Actually these are autocreated by pfsense

I have more clients also but not on mikrotik…With others as well i can see the same settings but those works

whats ur idea

Sob · November 23, 2013, 8:08pm

It sure looks like your packets are going somewhere else than you need them to. Unfortunately I’m not familiar with pfsense, so I can’t give you any specific advice.

kazimnaim · December 1, 2013, 4:57pm

Is there anyone who can help me out. im completely lost with this now…