Hello everyone, I’m new to Mikrotik world, but I know how to read with google tutorials made by others, so please don’t take me hard.
Let’s go to subject, my problem, and looking for help from you.
In my home network I have an TP-Link for internet access and local network DHCP server. Also an Mikrotik RB750GL, witch I want to use it for OVPN server.
I managed to set up OVPN server, for TAP interfaces, using IP from 169.254.0.0/16, because I have to access some devices with has dynamic IP adrdresses from same 169.254.0.0/16. The things stays like this : on laptop connected with wire to that device, and wifi to internet, OVPN TAP interface to my OVPN server. Laptop wired interface and OVPN TAP interfaces are bridged together . From an inside my home network I’m connecting to OVPN server also, both inside and outside computers can ping each others on 169.254.x.y/16 IP set by OVPN server. The problem is that laptop outside my network can ping device as long as VPN is not up, when I rise the VPN connection, laptop lose connection with device. Also from tests with other devices I saw that an wired device to outside laptop takes IP from my internal DHCP server, and that is not what I want.
Is there a way to block DHCP over VPN connections? I need TAP connection not TUN, because I have to be layer 2 with external device connected to external laptop.
I will attach also an picture with network diagram, maybe it will be easy to understand my problem.
For the start I think I need to block local DHCP server to be access by OVPN clients, and I don’t know how to do that.
Thank you for any ideea.
