Hello there! I come to know that instead of setting up PPTP client at MT router we can use direct VPN setup in Windows XP as a PPTP client to access MT router remotely over inernet. For that i have setup VPN at my laptop’s windows XP. To solve my dynamic IP address assigned problem from my ISP at remote location i got a dynamic DNS host name service from DynDNS.org. I am able to access my ADSL modem+router attached to MT router RB450 at remote location from my home using my dyndns host name i.e “http://hostname.dyndns.org:8080” through web browser, But when i tried to access my MT router through VPN setup at XP it drops the connection when it verifies user name and password and send an Error 619. Could you please generally let me assist what i am missing i am very near to access the RB450 and trying to find out what i am missing. Any help will be appreciated greatly. Below is my configuration at both ends:
RB450 setup at remote location:
Winbox—> menu—> IP—> Routes—>add(+)----> Destination:0.0.0.0/0----> Gateway: 192.168.0.1 (default internal IP of NetGear ADSL modem+router)----> Apply—> OK.
DNS----> add DDNS----> HostName----> hostname.dyndns.org----> Username: Username of hostname account---->password: used password with hostname account---->Save/apply.
PC at Home:
Network connections----> create new connections---->connect to network at my places---->VPN connection----->company name:Mikrotik---->Public network: select don’t dial the initial connection—>VPN server selection----> Host name or IP address: hostname.dyndns.org—>Finish
—> connect Mikrotik window pops up-----User name: ex1(used with pptp-server in secrets at RB450)—>passwoad:*****(used with pptp-server in secrets at RB450) ---->“verifying user name and password”------> Error619: Unable to establish VPN connection with remote computer.
Please let me help in establishing this VPN connection and let me know where and what i am missing in the pptp configuration as i have been tried every configuration at both ends one-by-one with no PPTP link connectivity. Any one there who can please fix this problem and guide me where i am making mistake in this setup and let me assist further with the configuration.
Once again any help will be appreciated greatly in establishing this PPTP link.
Your netgear ADSL modem/router may not be passing PPTP traffic (GRE) properly. It is best to put that modem into bridge mode, and let your mikrotik router receive the public ip.
It is also possible that your ISP is blocking PPTP traffic (GRE). This may or may not be intentional. I have had that happen in the past.
Hopefully it is your own modem blocking it. Bridge mode will fix it if that is the case.
Hi jandafields! Thanks for your assistance. I have switched my Neatgear DSL Mode+router at remote location in bridge mode and run PPPoE client session at RB450, but i am afraid to say that none of these sessions worked for me at bridge mode in DSL modem/router. PPPoE client at RB450 keeps remaining in dialing... and disconnecting..... mode. Then i started an auto detection process to check connection type from the ISP and get these conclusions for the connection type from ISP:
Scanning internet connection type:
PVC(8/35): No response
PVC(0/38): No response
PVC(0/35): Detected a PPPoE LLC/SNAP connection type from your ISP.
Back Next.......Finish
and setup this connection at modem/router for internet access with DHCP sever "ON" mode at DSL modem+router. At this connection RB450 worked well for both as a PPPoE client and DHCP client with no problem at all.
If you are able to enable DHCP on your modem, then I don’t believe it is in true bridge mode.
Also, you don’t need DHCP client on your Mikrotik. Your Mikrotik should not be a DHCP client… it will get it’s address directly from PPPOE, not DHCP.
Once your modem is in bridge mode, there should not be any settings available, as it will pass through EVERYTHING directly from your ISP to your Mikrotik.
Those modem/router combos are great for the average user, but a pain for someone that has their own router. Putting a router behind another router can cause problems. Bridge mode should basically disable the router part completely, and leave you with a simple modem which really has no settings of its own.
Hi jandafields! Thanks keeping to assist me. I have switched DSL modem+router to bridge mode by keeping DHCP server and NAT in “OFF” mode at modem end and run the PPPoE client session at RB450. Firstly, it didn’t respond and try so many times to run PPPoE client session, but no success. Then i powered off all the devices for 30 minutes and then restart all of them again and PPPoE session started to run at RB450. Why happens so? Is that the devices at ISP end reconfigure its PPPoE client’s MAC address every time when an PPPoE client connects to it? Now i am accessing the Internet at network associated with RB450, but afraid to say that PPTP link connectivity still didn’t work. Now RB450’s ether1 is accessing public IP address (Dynamic) from ISP and ether2 is setup for the network on local IP scheme. Could you please let me help in accessing RB450 remotely in any other same way as i was used to accessing the attached DSL modem+router over internet using “hostname.dyn.dns.org:8080” address through a web browse, when it was getting the public IP from ISP. Please let me assist with the configuration at RB450 to access it over internet through web browser. I’ll be grateful to you for this help.
Hi jandafields! Thank you so much to assist me with my PPTP link problem. Actually because of living in rural area i have only one option at this time to access internet through GPRS at my home and i am using internet over GPRS provided by a mobile phone service operator in my area. My mobile phone acts as modem and i used to access internet without any problem from anywhere. I have contacted this home ISP about PPTP problem and he has said that most of the ports are blocked and are not permitted to open it because of security reasons and can’t help no longer with my PPTP problem.
Secondly, you are right i don’t need PPTP link to get access RB450 remotely, so i tried to access RB450 with writing the address “http:publicIPaddress:8080/”, the public IP address assigned to RB450’s ether1 interface from remote ISP as per your instructions at internet explorer window, but come out with a blank web page. Do i need to have configure something at RB450 to access its web interface remotely over internet? If yes! please let me provide the configuration. You have mentioned that it can be accessed through winbox over internet remotely? Could you please explain with both of these configuration at RB450 to make it work once again and let me assist what i am missing. I’ll be really very grateful to you for this and appreciate your help from my heart.
Hi jandafields! I am little bit confused between using winbox and web access to RB450 from public network (internet). I undersatand that by using winbox i need to have entered the public IP address assigned to RB450 by ISP and not use 8080 part along with it. I have tried as per your instruction, but winbox always keep remains in connecting mode and a message displays "can’t connect to xx.xx.xx.xx (public IP address). But when i run PING command at home PC to that public IP address assigned to RB450 at remote location it pinged very well with 0% data loss. And when tried using web server taking out 8080 part a bank web page displays. Do i need to configure firewall and/or NAT rule settings at RB450 to access it from public network (internet)? Any further help will be greatly appreciated.
Do you have a default route set on the RB? If using DHCP-Client, there is a checkbox for set as default route.
If it still doesn’t work, it is likely your ISP is blocking required ports. Unless you specifically block it in your config, it will be configured to work already. There is nothing special you have to do to enable access.
Yes Jandafields! default route is checked in checkbox on the RB450 in PPPoE client window setup. I am using RB450 as a PPPoE client, because at PPPoE client RB450’s ether1 is acquiring public IP from ISP, but in case of using DHCP client ether1 acquires ip assigned from attached DSL modem+router. I think ISP is not blocking required port, if this were the case i wouldn’t be able to access modem from public network(internet) remotely using both public IP and dyndns.org hostname. Please let me know did winbox accessing from public network (internet) worked for you?
