Hi there. I have some problems issuing vpn traversal through Mikrotik routers. The situation is:
I have several routers using OSPF through a separate backbone. Some of these routers act as PPPoE access serves and runs on mikrotik routerOS v2.8.16, others act as NAT servers running on RouterOS v2.9.43 and route traffic statically to BGP router. Some users who connect to access servers obtain real internet ip addresses, and pass through NAT servers without translation, others obtain private ip adresses and pass through translation to get to the internet.
The problem is:
When both gre and pptp options in service ports are enabled those users who obtain private ip adresses and passthrough NAT can connect using VPN to internet vpn servers but those who obtain real ip adresses can’t.
When gre and pptp are disabled real ip users can connect to external vpn servers but private ip users can’t… But i need them both to be able to connect to external vpn servers and i have no idea where to dig in to solve this trouble. Please, help me…
check you drop/reject firewall rules. maybe you use ‘connection type’ filtering…