Tegning1.pdf
Hello.
I’m trying to setup an Mikrotik CCr1009 as VPN server.
The main problem here is the clients which should connect to Mikrotik - is som mobile Routers ( NATted IP)
Which and how would be the best way to make this Happens
The Mikrotik Is on a static IP - and should be a VPN-server
All Clients should be the initiating part of the VPN connection.
The option in the clients are IP-sec, SSL , L2PT.
All clients are the same Mobile Router with a simcard behind some NATTED network.
I’ve tried some of the guides but cannot seems to make it work - so can someone guide me to the right guide and the right way for this to work!
You say the snom’s is behind some natted network, am I correct if I assume that is the cellular providers network that is natted and that the CCR cannot ping any one mobile router directly?
I just made a quick network view.
As Correct assumed - the Mobile Router Is natted behind a Celluar network - thats allso why the mobile router should be the initiating part
The Network drawing is attached!
The Meaning is getting the Mikrotik as the VPN server - And getting LAN-to-LAN access.
As far as I can see I can ping the Mikrotik Router - but not pinging the PC on the LAN Network from neither Mobile router LAN to M ikrotik LAN (or the other way around)
Allthough I can from Mobile Router Ping 192.168.90.2 ( Mikrotik VPN IP)
Google “Greg Sowell mikrotik vpn dynamic”. He has some examples of how to set up a VPN connection when one or both sides of the connection have a dynamic IP address. He focuses on IPSec, but I’m pretty sure you can adapt it for whatever type of VPN you plan to run.