Hi all,
Actually I have about 200 mikrotiks in different locations. All this mikrotiks are running routeros 6.25. All this mikrotiks have two sstp-clients tunnels (master and backup) to a sstp-server at office.
Because routerOs has a bug on 6.25 i have to keep 6.25 on both side client and server. Otherway sstp won’t work.
I’m planning to migrate all clients and server to 6.30.4. But because not all of them are connected at the same time I know that the migration will take maybe a week or so. So during this time I will have some tunnels working and others not working,
What I would like to do is setup a new sstp-server 6.30.4 and if sstp is not stablished with sstp-server 6.25 redirects to sstp-server 6.30.4.
So the theory steps will be (for me).
On 6.25 sstp-server:
If comes some traffic to sstp-server let it try to connect (add address list FIRST for a while)
All sstp-server with stablish connection add address list OK_6.25 (that means client sstp-6.25)
If comes some traffic to sstp-server and is on FIRST and not on OK_6.25 address list then redirect TO IP of mikrotik with routerOS 6.30.4 that will stablish connection…
Anyone can help with this firewall rules ?
Any other suggestion?
Thanks