dear users
frankly, I have been struggling! The past few years I have been using IP Cop with the open VPN add-on called Zerina.
I want to replace the ageing IP Cop system with a spanking new Microtik router. I have been experimenting with open VPN tunnels and it is causing me some grief!
Firstly, I currently do all the authentication using certificates, so that the tunnels come up automatically without the need for typing username and password. I have been unable to do this on the Router OS implementation of open VPN. Can anyone point me in the right direction, or is this a limitation?
Secondly, my Linux implementation of open VPN server nicely pushes out the correct route configurations to my Windows and Linux clients. I cannot find a way of doing this cleanly on Router OS.
I think at the moment, unless I am missing a trick somewhere, the current implementation has too many limits to make it a usable tunnel endpoint for windows open VPN clients.
Can anyone shed any light, or add any comments to this? I am quite willing stand corrected!
oh, and another thing. My general preference would be to use UDP for such tunnels, but it seems only TCP tunnels are supported. Is this something else that is going to be supported soon?
So can you please explain the implementation is so limited when compared to a standard open VPN solution on a Linux system? Surely the code is all but written for you anyway?
but the problem is that L2 TP tunnels are generally used within networks. I think there is a lot of demand for an easy-to-use OpenVPN server which works nicely with Linux and Windows clients. Perhaps you should make a separate openVPN module based on the Linux implementation? I think you are missing an opportunity here.
I would also like to see a complete and standard implementation of OpenVPN in RouterOS, at least for the most powerful routerboard models if there are limitations in memory or processing power. That would make this the all-round all-terrain device that I’m looking for.
there seems to have been a few responses to this thread, and I have also had one person e-mail me directly.
Please, please can you take a look at improving the VPN solutions on RB to make it more usable as a road warrior VPN server? At the moment, it isn’t really a viable option, unless I have really misunderstood something.
