Hi to all users!
I’m testing OpenVPN server on RB750.
I see I can set only one OpenVPN server.
Is this an hardware issue or RouterOS issue?
I need two OpenVPN servers on same hardware, I would like to buy RB3011 or something similar but I don’t know if I can use it or if I must buy two different devices…
Thanks.
What’s the reason to have two OpenVPN servers on same hardware?
I need two VPN (for two different systems) and I would avoid to buy two devices.
I do not know what do you mean “two different systems”, but single instance of OpenVPN server is able to handle various situations.
Possible solution: in .ovpn config file at the end you can add directive “route 192.168.0.0 255.255.255” to allow only needed subnet for that particular client.
In this way you can separate vpn users to access different subnets with single OpenVPN server. With firewall rules you can block packets between subnets.
Note: OpenVPN in case of large number of users, on heavy traffic will create load on router CPU (because of encryption).
IPSec is the best way i think. RB3011 contains hardware ipsec encryption. It means router CPU will be offloaded from encryption.
https://wiki.mikrotik.com/wiki/Manual:IP/IPsec#Hardware_acceleration