So i finally have some basics down and got my first firewall setup and doing what i wanted it to do except for setting up a PPTP vpn to a Windows Server essentials 2012 R2 machine behind the Firewall.
So my setup looks something like this, i have a Huawei 4G router providing me with internet access connected to ether 1 on my RB750r2, ether 2-4 are bridged for LAN.
so my 4g router has a IP of x.x.0.1, my wan port on my rb750 has the ip x.x.0.25, on the LAN side my router ip is x.x.1.1 and my server has the IP of x.x.20. what i have done thus far is forward the ports from my 4g router to my rb750, this part works as i have a firewall rule in the input chain that allows packets to the router and i can see the packet count go up every time i try to initiate the connection
any and all help would be appreciated.
Just to make sure - you want MikroTik to work as PPTP server and you remote machine as a client, right? If so, I understand that your ISP gives you public IP or your server and client are in the same local network. It’s hard to understand from your hidden IP addresses.
Don’t forget to forward ip protocol 47, too… 1723 is only the control port, the actual data transport happens over GRE.
Helpers may not work properly over NAT, so manual forwarding may be needed.
Forward TCP port 1723 (dst-nat chain) to server IP
Forward GRE packets to server IP. GRE is an IP Protocol, alternative to TCP.
Input Filters have no effect on packets forwarding through your router. Adding the input filter rule in the firewall is only required if your Mikrotik is the PPTP server.