I have connected 2 MTs via vpn (PPtP) and there are NATs(Masquerade) on the both site of connection,
My problem is if connection is broken, nat in pptp server is disabled because virtual pptp interface is missing. Connection is restored in few seconds, virtual interface is again on, but NAT stay set on the wrong interface now (unknown, or wlan1) and I have to make edit it manually.
Is there any way how to fixed it?
/interface list add name=PPTP
/ppp profile add copy-from=default-encryption name=pptp interface-list=PPTP
/ppp secret set the-name-of-the-client profile=PPTP
/ip firewall nat add out-interface-list=PPTP action=masquerade
Move away from PPTP if you want to remain the only administrator of your devices. L2TP over IPsec is three clicks more complex and much more secure.
This practice make NAT for all VPN clients but I want to NAT only one. Is there another way except making another VPN2 profile for cam vpn client?
Another way would be to create a static “server binding” interface. But that can be used only if the client makes only one connection at a time.
Surprise… when I looked at this last time (months or years ago), I believe static server bindings were only available for L2TP, not for PPTP.
Hi,
what if you set a ppp profile specific for the VPN that you wanna add to interface list?
Bye.
Must have been many months ago, I can see it in 2.9.27 from 2006. 