Set up RB fiber router with L2TP

HI All. Just got myself a RB fiber model and set up a L2TP with IPSEC connection. It seems to work fine in that I can connect to my home over VPN but I’m not able to ping my internal server once connection.

I’m brand new to the Winbox tool so is there a document somewhere that explains how to use it?

At the point, I see the user authentication and connected in Winbox, but I don’t know if the user traffic (ping) is making it into the VPN, or if maybe if the ping reply is not getting sent back into the tunnel?

Can anyone guide me to this? I also noticed that the VPN configuration on Winbox has a lot of options (masquerade, etc etc) that are different than i’ve ever seen before.

Would appreciate the guidance. Thank you

G

Can anyone help? I’m stuck with a non working configuration at this point

Not really,
But you can use available documentation
https://help.mikrotik.com/docs/display/ROS/Getting+started

In winbox go to New terminal (CLI)
/export hide-sensitive file=anynameyouwish

And download/upload to your pc, open in notepad++ and paste in the thread (use code tags - square brackets around the config).

I had the same problem, the fix is: Bridge → ARP → proxy-arp

Why is that a solution? It is the fact that all VPN needs proxy ARP on bridges??
Please explain!

If the VPN clients are assigned IP addresses from the same subnet as the local LAN proxy ARP is required - the Mikrotik then responds with its own MAC address in response to ARP requests from the local LAN.

If the VPN clients are assigned IP addresses from a completely different subnet the problem is elsewhere, often firewall rules if the default Mikrotik ones are not suitably changed.

Great explanation!!!

In my case the VPN clients were not on the same segment as the clients, it was a different pool.

It seems I was having trouble with teh access lists