OpenVPN - UDP?

ofca · December 17, 2007, 5:22am

Is UDP support for OpenVPN planned anytime soon?

I also wanted to use this post to thank you for both OpenVPN and MPLS - good to see RouterOS developing in good directions - so, THANK YOU!

wsgtrsys · December 18, 2007, 5:29am

also lzo support

netrat · December 17, 2009, 5:59pm

Bump on this. Any plans to add UDP support to RouterOS’ implementation of OpenVPN?

calman · January 2, 2010, 12:56am

You can solve this using zeroshell, suports open vpn udp, compression

roadracer96 · January 3, 2010, 12:15am

And RADIUS and proper certificate authentication.

PLEASE!

NetworkPro · March 23, 2010, 9:12pm

What’s the status on this ?

roadracer96 · March 23, 2010, 10:05pm

I got RADIUS to work right, and certificates to a point, but not the way I want em.

MT doesnt seem to care about adding lzo or UDP support into OVPN.

NetworkPro · March 24, 2010, 9:17am

RouterOS is kept lightweight and that’s good, so… I wound’t want to rush the developers to put in a big pile of code that might break things.

But this functionality seems to eb extremely useful for a ton of potential and current buyers of MT products.

Sooo…

roadracer96 · March 24, 2010, 5:57pm

The only part of it that I could see making it not “small and lightweight” is lzo. I understand they would have to compile lzo into it but that would add add what? 20-30k to the openvpn executable if complied statically?

I might be off base, but UDP support is the default for OpenVPN and I dont see why it wouldnt remain enabled by default.

NetworkPro · March 24, 2010, 6:30pm

I am on your side. I even edited the wiki here http://wiki.mikrotik.com/wiki/MikroTik_RouterOS/v4/Feature_Requests And I hope I made it clear that people are asking for this.

roadracer96 · March 24, 2010, 8:57pm

Damn dude… You were busy.

I was already on that list. Although there are other features I would like, I try to minimize my requests to the most important. Im fine with not asking for everything as long as I get something.

NetworkPro · March 24, 2010, 9:12pm

I will give them 100$ right now cash if they make 'em happen - the things that I and my clients need. But the devs will need more time Maybe in v7

roadracer96 · March 24, 2010, 11:25pm

My 2 other wishes are arpwatch and rogue ap detection.

pantone · March 25, 2010, 10:33am

RouterOS OpenVPN support UDP is our wish. Because Performance was not good when Using TCP in over 10 openvpn site-to-site mesh infrastructure.

l337ingDisorder · June 8, 2010, 9:36pm

+1 for UDP.

OpenNMS requires UDP to monitor SNMP info

Currently we need to have an OpenNMS server running to monitor all our non-RouterOS locations, and another ONMS server running inside each of our RouterOS locations for SNMP collection.

This means instead of keeping track of all our systems in one ONMS interface we have to maintain and monitor numerous ONMS deployments.

If UDP support were enabled we could just VPN all our locations and have a single OpenNMS server keeping track of everything.

NetworkPro · June 8, 2010, 10:00pm

If your monitoring thing is so leet, why don’t you just PPTP , or EoIP to it ? To collect UDP packets and whatever.

l337ingDisorder · June 8, 2010, 10:17pm

Can’t find any clear guide for setting up a PPTP or EoIP tunnel between a Routerboard 450 and a CentOS/RHEL server.

Can you point me in the right direction?

I’m unfamiliar with both PPTP and EoIP.

Thanks!

roadracer96 · June 9, 2010, 4:48am

PPTP is minimally secure… Shouldnt be used for permanent VPN connections.

NetworkPro · June 9, 2010, 6:35am

Do you think that the farmers from the viligaes have any security ? It’s the ISP business reality.

Some networks need security, it is true. But then IPSec is an option as well.

mrz · June 9, 2010, 6:42am

I think you misunderstood what is not supported. OpenVPN tunnel can forward UDP packets or any other protocol packets without any problems. So you can easily set up ovpn tunnels to your server and use that monitoring tool.