Hello,
I want to setup a VPN server using one RB411 and one laptop usion Windows 7 or Mac. The laptop is conectec with another ISP. I setup the VPN server with pptp, I think the conection doesn’t work because I miss a route, It any way to get the routes dinamic in the laptop? or I have to insert the route Manual?
Thanks
Can you provide more information?
Generally you can add an invalid IP range on your VPN server (as an IP pool), use that IP range for connected clients (in profile or secret of PPP section), and NAT the invalid IP range on server.
If you can connect to VPN server using windows but you have no internet access or no network communications, use Ping and Trace to for troubleshooting. They can help you to solve 90% of all problems.
Thanks for your help, I put the configuration of the antena, I can get acces to the antena but no to the LAN
This is the SERVER VPN
/interface ethernet
set 0 arp=enabled auto-negotiation=yes comment=“” disabled=no full-duplex=yes
l2mtu=1526 mac-address=00:0C:42:37:DA:04 mtu=1500 name=ether1 speed=
100Mbps
/interface pptp-server
add comment=“” disabled=no name=pptp-in1 user=admin
/interface wireless security-profiles
set default authentication-types=“” eap-methods=passthrough group-ciphers=“”
group-key-update=5m interim-update=0s management-protection=disabled
management-protection-key=“” mode=none name=default
radius-eap-accounting=no radius-mac-accounting=no
radius-mac-authentication=no radius-mac-caching=disabled
radius-mac-format=XX:XX:XX:XX:XX:XX radius-mac-mode=as-username
static-algo-0=none static-algo-1=none static-algo-2=none static-algo-3=
none static-key-0=“” static-key-1=“” static-key-2=“” static-key-3=“”
static-sta-private-algo=none static-sta-private-key=“”
static-transmit-key=key-0 supplicant-identity=MikroTik tls-certificate=
none tls-mode=no-certificates unicast-ciphers=“” wpa-pre-shared-key=“”
wpa2-pre-shared-key=“”
/interface wireless
set 0 ack-timeout=dynamic adaptive-noise-immunity=none allow-sharedkey=no
antenna-gain=0 antenna-mode=ant-a area=“” arp=enabled band=5ghz-turbo
basic-rates-a/g=6Mbps burst-time=disabled comment=“” compression=no
country=uzbekistan default-ap-tx-limit=0 default-authentication=yes
default-client-tx-limit=0 default-forwarding=yes dfs-mode=none
disable-running-check=no disabled=no disconnect-timeout=3s
frame-lifetime=0 frequency=5250 frequency-mode=manual-txpower
frequency-offset=0 hide-ssid=no hw-fragmentation-threshold=disabled
hw-protection-mode=none hw-protection-threshold=0 hw-retries=4 l2mtu=2290
mac-address=00:15:6D:65:92:85 max-station-count=2007 mode=station mtu=
1500 name=wlan1 noise-floor-threshold=default on-fail-retry-time=100ms
periodic-calibration=default periodic-calibration-interval=60
preamble-mode=both proprietary-extensions=post-2.9.25 radio-name=
00156D659285 rate-set=default scan-list=default security-profile=default
ssid=www.ibred.es station-bridge-clone-mac=00:00:00:00:00:00
supported-rates-a/g=6Mbps,9Mbps,12Mbps,18Mbps,24Mbps,36Mbps,48Mbps,54Mbps
tx-power-mode=default update-stats-interval=disabled wds-cost-range=
50-150 wds-default-bridge=none wds-default-cost=100 wds-ignore-ssid=no
wds-mode=disabled wmm-support=enabled
/interface wireless nstreme
set wlan1 comment=“” disable-csma=no enable-nstreme=no enable-polling=yes
framer-limit=3200 framer-policy=none
/interface wireless manual-tx-power-table
set wlan1 comment=“” manual-tx-powers=“1Mbps:17,2Mbps:17,5.5Mbps:17,11Mbps:17,
6Mbps:17,9Mbps:17,12Mbps:17,18Mbps:17,24Mbps:17,36Mbps:17,48Mbps:17,54Mbps
:17,HT20-0:0,HT20-1:0,HT20-2:0,HT20-3:0,HT20-4:0,HT20-5:0,HT20-6:0,HT20-7:
0,HT40-0:0,HT40-1:0,HT40-2:0,HT40-3:0,HT40-4:0,HT40-5:0,HT40-6:0,HT40-7:0”
#error exporting /interface bridge calea
/interface bridge settings
set use-ip-firewall=no use-ip-firewall-for-pppoe=no use-ip-firewall-for-vlan=
no
/interface l2tp-server server
set authentication=pap,chap,mschap1,mschap2 default-profile=
default-encryption enabled=no max-mru=1460 max-mtu=1460 mrru=disabled
/interface ovpn-server server
set auth=sha1,md5 certificate=none cipher=blowfish128,aes128 default-profile=
default enabled=no keepalive-timeout=60 mac-address=FE:6E:EE:34:A1:44
max-mtu=1500 mode=ip netmask=24 port=1194 require-client-certificate=no
/interface pptp-server server
set authentication=mschap1,mschap2 default-profile=default-encryption
enabled=yes keepalive-timeout=30 max-mru=1460 max-mtu=1460 mrru=disabled
/interface wireless align
set active-mode=yes audio-max=-20 audio-min=-100 audio-monitor=
00:00:00:00:00:00 filter-mac=00:00:00:00:00:00 frame-size=300
frames-per-second=25 receive-all=no ssid-all=no
/interface wireless connect-list
add area-prefix=“” comment=“” connect=yes disabled=no interface=wlan1
mac-address=00:00:00:00:00:00 security-profile=default signal-range=
-120.120 ssid=www.ibred.es
add area-prefix=“” comment=“” connect=yes disabled=no interface=wlan1
mac-address=00:00:00:00:00:00 security-profile=none signal-range=-120.120
ssid=www.ibred.es
/interface wireless sniffer
set channel-time=200ms file-limit=10 file-name=“” memory-limit=10
multiple-channels=no only-headers=no receive-errors=no streaming-enabled=
no streaming-max-rate=0 streaming-server=0.0.0.0
/interface wireless snooper
set channel-time=200ms multiple-channels=yes receive-errors=no
/ppp profile
set default change-tcp-mss=yes comment=“” name=default only-one=default
use-compression=default use-encryption=default use-vj-compression=default
set default-encryption change-tcp-mss=yes comment=“” name=default-encryption
only-one=default use-compression=default use-encryption=yes
use-vj-compression=default
/ppp aaa
set accounting=yes interim-update=0s use-radius=no
/ppp secret
add caller-id=“” comment=“” disabled=no limit-bytes-in=0 limit-bytes-out=0
local-address=10.0.0.1 name=admin password=vpnibred profile=
default-encryption remote-address=10.0.0.2 routes=“” service=pptp
/ip address
add address=192.168.1.1/24 broadcast=192.168.1.255 comment=“” disabled=no
interface=ether1 network=192.168.1.0
/ip firewall nat
add action=masquerade chain=srcnat comment=“” disabled=no out-interface=wlan1
The client I don’t have the configuration because can be in to much networks with difirents ip’s
Thanks