I'm experimenting with RouterOS CHR and trying to use it as a L2TP/IPSec VPN Server. I've followed the tutorial linked below and have the VPN working (I can connect to it from a remote MacBook) but the remote client does not have internet access.

I know I'm missing a whole chunk of routing to enable internet access for the VPN clients but have no idea where to start! Can someone give me some help here?

Thanks.

https://manuth.life/l2tpipsec-vpn-serve ... -routeros/

just add a default route trough vpn at your client device.

Can you post your config?

I have a CHR in colo which it’s secondary job is a VPN server so I may be able to pick through it and compare to what I have.

Thanks both for your replies.

The client device works fine when not connected to the VPN. When connected to the VPN, I can ping the VPN server but can not access the internet. I have a default route on the client device so I am thinking that I am missing some routing on the server.

I've taken a look at the server again and think I have worked it out. I added an L2TP interface and then assigned both the L2TP interface and Ether1 to a Bridge. Then I added a default route for the Bridge and it all seems to be working.

Thanks.

I have to ask this considering that you might be familiar with this info ..

Does CHR Licensing have any limits on the amount of PPPoE - PPTP - L2TP - EOIP connections?

Thanks !

Don't inject the unrelated topics and don't duplicate the posts.

Hi!

Are you source natting the VPN IPs?

Could you please post the export of your config?

you're missing nat/masquerade over the wan connection or for the ip pool that you assign to your clients.

also, on client, make sure "use default gateway" box is checked under ipv4 advanced.