i have 2 mikrotik routers
one used at home will name it A
and another one hosted outside will name it B

i succesfully vreated sstp link between both routes
but i have an email server behind A and would like to route all traffic from it to show as if going from B
also all traffic coming to B should go to this email server behind A
can somebody assist me?

any help will be much appreciated

hadizeid, please show your routing table:

hadizeid, please show your routing table:

Code: Select all

ip route print

from which router?
Router B :
[admin@MikroTik] > ip route
[admin@MikroTik] /ip route> print
Flags: X - disabled, A - active, D - dynamic,
C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme,
B - blackhole, U - unreachable, P - prohibit
# DST-ADDRESS PREF-SRC GATEWAY DISTANCE
0 A S ;;; added by setup
0.0.0.0/0 xx.xx.1xx.49 1
1 ADC 10.10.10.2/32 10.10.10.1 <l2tp-exchange> 0
2 ADC xx.xx.1xx.48/29 xx.xxx.xx.54 ether2 0
3 ADS 192.168.0.0/20 10.10.10.2 1



Router A :
[admin@router] > ip
[admin@router] /ip> route
[admin@router] /ip route> print
Flags: X - disabled, A - active, D - dynamic,
C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme,
B - blackhole, U - unreachable, P - prohibit
# DST-ADDRESS PREF-SRC GATEWAY DISTANCE
0 ADS 0.0.0.0/0 2x3.xxx.8.34 1
1 X S ;;; added by setup
0.0.0.0/0 80.xx7.xx.xx 2
2 ADC 10.10.10.1/32 10.10.10.2 l2tp-out1 0
3 ADC 172.16.1.2/32 172.16.1.1 <sstp-Voyager> 0
4 ADC 172.16.1.4/32 172.16.1.1 <sstp-hadi> 0
5 ADS 172.168.10.0/24 172.16.1.2 1
6 ADS 172.168.11.0/24 172.16.1.4 1
7 ADC 192.168.0.0/20 192.168.10.3 Local 0
8 ADC 2x.xx.8.xx/32 xx.97.xxx.119 Etisalat 0
[admin@router] /ip route>

i have a server of ip address 192.168.2.50 behinf mikrotik A

i want all the traffic of this server to go from ether2 of MIKROTIK B, and all traffic coming to Mikrotik B to be forwarded to same ip
is that possible?

no suggestions?

i need all traffic of ip 192.168.2.50 to go through the 76.xx.x.xx/29 interface
and all traffic comming to 76.xx.x.xx/29 to be forwarded to 192.168.2.50
if not all atleast traffic on ports 25, 110, 443, 587, 993
can any body help or advice from where to begin?

Regards

This is working for me:



USA Office France Office

This is working for me:



USA Office

Code: Select all

/ppp secret
add caller-id="" disabled=no limit-bytes-in=0 limit-bytes-out=0 local-address=192.168.25.200 name=vpn-fr-client password=******* profile=default remote-address=192.168.25.201 routes="" service=sstp
#
/ip route
add comment="Route to France Office via PPTP VPN" disabled=no distance=1 dst-address=192.168.35.0/24 gateway=192.168.25.201 scope=30 target-scope=10

France Office

Code: Select all

/interface sstp-client
add add-default-route=no authentication=mschap2 certificate=none connect-to=1.1.1.7:443 dial-on-demand=no disabled=no http-proxy=0.0.0.0:443 keepalive-timeout=60 max-mru=1500 max-mtu=1500 mrru=disabled name=sstp-vpn-us-client password=******** profile=default user=vpn-fr-client verify-server-address-from-certificate=yes verify-server-certificate=no
#
/ip route
add comment="Route to USA Office via PPTP VPN" disabled=no distance=1 dst-address=192.168.25.0/24 gateway=192.168.25.200 scope=30 target-scope=10

Hi Slech,
what if you want to have a pc in france office to browse the internet as if he is in the us office?
thats what i need?

hadizeid
I think you have 2 variants:

1. Proxy Server in France Office
This can be done with or without VPN - as you want.
As I know you can use Mikrotik web-proxy for this, or squid or small 3proxy on linux box.

2. VPN with France Office
You can setup VPN server on France office side. When you connect to the France office via SSTP from you Windows7(as example), by default all your traffic will go via France.

I have no experience of using mikrotik proxy with my france vpn service.
Also no idea about this technology.
Have any further details about it that can be helpful to improve my vpn?

DongasVille
This is advertising ?

No dear, I just described my experience that I have faced.

Any Body can help or describe the best setup to be done wether it is sstp or something else?

hadizeid, my setup described above ?

yes slech but i have different situation.
i will upload a new image to describe what i want exactly tonight.

Regards

Try using the SSTP interface name as the gateway for the far end LAN instead of the IP.

Using the IP address of the SSTP endpoint might follow the default gateway on the originating router before the tunnel is established.

I use SSTP tunnels with OSPF on them and it works great.