Remote Access to Local OLTs via VPN on MikroTik Without Public IP

Plink4 · October 15, 2024, 5:57pm

i have firewall rules but excluded from this attach

anav · October 15, 2024, 6:20pm

Your choice, will move on to help others…

I was quite clear…
Need full config of router.
/export file=anynameyouwish (minus router serial number, any public WANIP information, keys )

Also the wireguard configuration of the client ( minus any public WANIP information, keys etc. )

Plink4 · October 15, 2024, 6:38pm

Hey, I was able to successfully connect to WireGuard, and I can access my MikroTik router using its local IP address remotely from another city. However, I’m still unable to access my OLTs through their local IP addresses (like 192.168.20.20) from my remote PC.

I haven’t applied the firewall rules you provided yet. Do you think that’s the reason I can’t access the OLTs? Should I apply those rules, or is there something else I might be missing?

Thanks for the help!

Larsa · October 15, 2024, 6:52pm

@Plink4, I think @anav was pretty clear that he’s only willing to keep helping if you provide the full router config (i.e., a full export). Otherwise, you’ll need to reach out to a Mikrotik consultant: https://mikrotik.com/consultants.

Plink4 · October 16, 2024, 1:00pm

Hey, just wanted to let you know that I managed to get my OLT access working via WireGuard VPN. The two NAT rules below did the trick:

Source NAT Rule:
chain=srcnat action=masquerade dst-address=192.168.20.0/24
This ensures that traffic from the VPN (192.168.77.0/24) can reach the internal network (192.168.20.0/24).

Destination NAT Rule:
chain=dstnat action=dst-nat to-addresses=192.168.20.20 to-ports=443 protocol=tcp src-address=192.168.77.0/24
This allows me to access my OLT at 192.168.20.20 over port 443 when connected through WireGuard.

Thanks for your help!

Plink4 · October 16, 2024, 1:04pm

Hey, thanks again for your help yesterday. I have one more question—I’ve set up the WireGuard VPN and can now successfully access my OLT when connected. However, when my PC is connected to the VPN, the internet on my PC stops working. And what can i do for multiple olts with one rule.

Do you have any idea what might be causing this or how I can fix it so that I can use both the VPN and my internet at the same time?

Thanks in advance for your help!

anav · October 16, 2024, 1:44pm

Wrong, its not the right way its a work around which looks like is already leading to other issues, since the config is not optimized yet for the requirements.
Slow learner, as one has not yet grasped what is required for assistance. …

Larsa · October 16, 2024, 2:58pm

@Plink4, here’s a hint to get you on track. Read this how-to: http://forum.mikrotik.com/t/forum-rules/173010/5