Community discussions

 
hamedta
just joined
Topic Author
Posts: 4
Joined: Fri Aug 30, 2019 9:46 pm

Can't access to the device connected to router over VPN

Sun Sep 01, 2019 2:43 pm

Hello

I have a problem, I need to access to web config of a network device which is located in another city, so as to I connected a USB 3G modem to the Mikrotik router in order to provide internet, then I connected the network device to the Lan2 of router and by setting a nat the network device is connected to the Internet, but as 3G modem doesn't support DMZ or port forwarding I can't access to the network device, for a solution I configured a OpenVpn client interface on the router and it connectes to the public server, from office I also connect to the OpenVpn server so now I can have my router and my pc in a same network from therefor I can ping my router through the IP address of OpenVpn interface and even can connect to it with WinBox but the problem is I can
t have access to the device which is connected to the the Lan2, what could be a solution or a better approach ?

I need to open the web config of my network device which is http on port 80.

Your MikroTik LAN IP: 192.168.20.20 (LAN2)
Your LAN DHCP Range:192.168.20.21 - 192.168.20.22 (LAN2)

/ip pool print
# NAME RANGES
0 dhcp_pool 192.168.20.21-192.168.20.22

/ppp profile print detail
1 name="OVPN-client" use-mpls=no use-compression=no use-encryption=required only-one=default change-tcp-mss=yes use-upnp=default
address-list="" on-up="" on-down=""

/interface ovpn-client print
Flags: X - disabled, R - running
0 R name="OPENVPN" mac-address=FE:14:B2:5E:B4:33 max-mtu=1500 connect-to=x.x.xx port=434 mode=ip user="user"
password="pass" profile=OVPN-client certificate=client.crt_0 verify-server-certificate=no auth=sha1 cipher=blowfish128
add-default-route=yes

/ip firewall filter print detail
Flags: X - disabled, I - invalid, D - dynamic
0 ;;; allow established connections
chain=forward connection-state=established

1 ;;; allow related connections
chain=forward connection-state=related

2 ;;; drop invalid connections
chain=forward action=drop connection-state=invalid

/interface ethernet print
Flags: X - disabled, R - running, S - slave
# NAME MTU MAC-ADDRESS ARP SWITCH
0 R LAN1 1500 D4:CA:6D:29:6F:B7 enabled switch1
1 LAN2 1500 D4:CA:6D:29:6F:B8 enabled switch1
2 LAN3 1500 D4:CA:6D:29:6F:B9 enabled switch1
3 LAN4 1500 D4:CA:6D:29:6F:BA enabled switch1
4 WAN 1500 D4:CA:6D:29:6F:B6 enabled switch1

/ip firewall nat print detail
Flags: X - disabled, I - invalid, D - dynamic
0 chain=srcnat action=masquerade src-address=192.168.20.0/24
out-interface=OPENVPN log=no log-prefix=""

OPENVPN ip is 10.8.0.26

my pc ip address is 10.8.0.30
Last edited by hamedta on Tue Sep 03, 2019 5:04 pm, edited 1 time in total.
 
hamedta
just joined
Topic Author
Posts: 4
Joined: Fri Aug 30, 2019 9:46 pm

Re: Can't access to the device connected to router over VPN

Mon Sep 02, 2019 7:22 am

any Idea ?

Who is online

Users browsing this forum: No registered users and 17 guests