I’m experimenting with RouterOS CHR and trying to use it as a L2TP/IPSec VPN Server. I’ve followed the tutorial linked below and have the VPN working (I can connect to it from a remote MacBook) but the remote client does not have internet access.
I know I’m missing a whole chunk of routing to enable internet access for the VPN clients but have no idea where to start! Can someone give me some help here?
Thanks.
just add a default route trough vpn at your client device.
Can you post your config?
I have a CHR in colo which it’s secondary job is a VPN server so I may be able to pick through it and compare to what I have.
Thanks both for your replies.
The client device works fine when not connected to the VPN. When connected to the VPN, I can ping the VPN server but can not access the internet. I have a default route on the client device so I am thinking that I am missing some routing on the server.
I’ve taken a look at the server again and think I have worked it out. I added an L2TP interface and then assigned both the L2TP interface and Ether1 to a Bridge. Then I added a default route for the Bridge and it all seems to be working.
Thanks.
I have to ask this considering that you might be familiar with this info ..
Does CHR Licensing have any limits on the amount of PPPoE - PPTP - L2TP - EOIP connections?
Thanks !
Don’t inject the unrelated topics and don’t duplicate the posts.
Hi!
Are you source natting the VPN IPs?
Could you please post the export of your config?
you’re missing nat/masquerade over the wan connection or for the ip pool that you assign to your clients.
also, on client, make sure “use default gateway” box is checked under ipv4 advanced.