So, I’ve got two ipsec VPN up and running on my Mikrotik
- VPN A: remote addr=1.0.0.1, local addr=dynamic
- VPN B: remote addr=1.0.0.1, local addr=dynamic
I’m somewhat confused because in /ip routes, those two vpn interface share the same remote addr (1.0.0.1), so what I want to achieve is set an IP address for each of the interfaces. For example:
- 10.10.10.1 will go to Interface_VPN A
- 10.10.10.2 will go to Interface_VPN B
I’ve been playing with static routes, NAT, mangle, and filter rule with no avail. I still cannot ping 10.10.10.1. What is the correct way to do that?
Is this not possible to achieve? I’m honestly at lost here, I’ve tried setting a route rule with the VPN as a gateway but the IP is still not routing the traffic to the VPN
# DST-ADDRESS PREF-SRC GATEWAY DISTANCE
0 A S 0.0.0.0/0 192.168.1.1 1
1 ADC 1.0.0.1/32 10.000.1.000 SSTP-DNS 0
SSTP-DNS-2
As you can see, there are two SSTP interfaces that show 1.0.0.1/32 as their remote address, what I want to achieve is that so each of them had a unique remote IP address. Changing the server’s config is out of options.
Another thing, is it possible to make the Mikrotik itself use the VPN? I know how to route all the traffic coming to Mikrotik and then pushing it into the VPN traffic but even with those routes, the Mikrotik itself still didn’t use the VPN. To specify my question, how to make the DNS setting in Mikrotik (/ip dns) so that it will resolve the address(es) through a VPN.
Thank you