I don't know what I am missing or doing wrong!
This is my mikrotik config
Code: Select all
# jun/28/2021 15:37:19 by RouterOS 6.48.2
# software id = QKPS-A6GL
#
# model = RB941-2nD
# serial number = D1130C7B1A51
/interface bridge
add arp=proxy-arp name=bridge1
/interface wireless
set [ find default-name=wlan1 ] arp=proxy-arp band=2ghz-b/g/n country=albania \
disabled=no frequency=auto mode=ap-bridge ssid=Power wireless-protocol=\
802.11
/interface ethernet
set [ find default-name=ether1 ] advertise=\
10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full
/interface pppoe-client
add add-default-route=yes disabled=no interface=ether1 name="Digicom PPPoE" \
password=xxxxx user=xxx
/interface pwr-line
set [ find default-name=pwr-line1 ] disabled=yes
/interface list
add name=WAN
add name=LAN
/interface wireless security-profiles
set [ find default=yes ] authentication-types=wpa2-psk eap-methods="" mode=\
dynamic-keys supplicant-identity=MikroTik wpa-pre-shared-key=\
Pikpikpresje2 wpa2-pre-shared-key=Wifipassword
add authentication-types=wpa-psk,wpa2-psk,wpa-eap,wpa2-eap group-key-update=\
2h5m mode=dynamic-keys name=profile1 supplicant-identity="" \
wpa-pre-shared-key=wifipassword wpa2-pre-shared-key=\
Pikpikpresje3mikrotik
/ip pool
add name=dhcp ranges=192.168.1.2-192.168.1.254
add name=Wlan-pool ranges=192.168.2.2-192.168.2.254
add name=pool-vpn ranges=10.0.0.2-10.0.0.250
/ip dhcp-server
add add-arp=yes address-pool=dhcp disabled=no interface=bridge1 lease-time=\
2h10m name=dhcp1
add add-arp=yes address-pool=Wlan-pool disabled=no interface=wlan1 name=wifi
/ppp profile
add dns-server=10.0.0.1 local-address=10.0.0.1 name=VPN remote-address=\
pool-vpn
/interface bridge port
add bridge=bridge1 interface=ether2
add bridge=bridge1 interface=ether3
add bridge=bridge1 interface=ether4
/ip neighbor discovery-settings
set discover-interface-list=LAN
/interface list member
add comment=External interface="Digicom PPPoE" list=WAN
add comment=Internal interface=bridge1 list=LAN
/interface ovpn-server server
set auth=sha1 certificate=Server cipher=aes256 enabled=yes
/ip address
add address=192.168.1.1/24 interface=bridge1 network=192.168.1.0
add address=192.168.2.1/24 interface=wlan1 network=192.168.2.0
/ip dhcp-server network
add address=192.168.1.0/24 dns-server=8.8.8.8 gateway=192.168.1.1
add address=192.168.2.0/24 dns-server=8.8.8.8 gateway=192.168.2.1
/ip dns
set servers=8.8.8.8,8.8.4.4
/ip firewall filter
add action=fasttrack-connection chain=forward
/ip firewall nat
add action=masquerade chain=srcnat
/ip service
set telnet disabled=yes
set ftp disabled=yes
set ssh disabled=yes
set api disabled=yes
set api-ssl disabled=yes
/ppp secret
add name=Gabriel password=Refxxxxx profile=VPN
/system clock
set time-zone-name=Europe/Tirane
/system identity
set name="GL HN"Code: Select all
client
dev tun
proto tcp-client
persist-key
persist-tun
tls-client
remote-cert-tls server
redirect-gateway def1
verb 4
auth-nocache
mute 10
remote gabriel92.dns.com
port 1194
auth SHA1
cipher AES-256-CBC
auth-user-pass secret
ca [inline]
cert [inline]
key [inline]
<ca>
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
</ca>
<cert>
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
</cert>
<key>
-----BEGIN RSA PRIVATE KEY-----
MIIEowIBAAKCAQEAza/Gmhm7Tk/H9iVug+21zdZhIXGCRcNwkkHRW8BQt5HB1Qy9
8ZCUHiOii31F82l9RcA2XfUqct4LmrGrC54oUPiJLH3vMLW+hj33aYwhOHalOeiz
M4QeWG/2Y5A9ZeGAT0+z6o8AnUEjYSXr4pDsykL8S+ypsmmH2Ue2SeT9X3gwvZA0
OBPeL+I6Yfu4YgNzNMMWEj/EiVT2nR1s3cmFjDpSGdZlEDIl6ay4I3FFn1qkitL+
kSe7z81q9SnH//tyJklLnySTcDayXiaxMpwESWPxC1li4tDchR9gYbyUg6SPH3Oh
QDEF+/Ne9eGfIhhlFOcxGSEqaLQtNX1PbdGyNQIDAQABAoIBAQCN5z0fR61fw87y
1LRANJl/Hu34ArWbp9BcNyhXIoENhHOzpozMwbBOcstLbOv7mMWif4+ClwfoI6Th
3r1g0IaEBlOs7F0+v8RoHQw6N0EcEU7AevhXDElbPjNAUVzqkv7QuO4pXutPkob0
GRN6Rf33NOuW/fm9au0cTEtJA8CCQc2X22jZ9DZSpIKkPtvqiNy9U1uZb1FhbCUj
pY2CjnzwbDt6UBh9uXNLiXagNDB5dvBzu723xeGnaD6toSnKp4DHYBW/7idaYgiB
dHbwLqdT7LRRHzjOa4Kvqk09+mgfVJYiW+yf4qdUWf11FHCDT7Pnu5xXdjxxxxxx
OR61aUqBAoGBAPp0kCYMkZv8zeAju8AXhBrxAToeWDsZYKaSXh0AQrz+c75Y5gCl
k/HBd29gMc4W5xsRaJOLKhlbapTkGImCqv7xNgazVsAr7de2SO//KYy5fkH/1A5q
4HvzUnFtTGphrJbnPWUcXeS4OF9VdgB3d+hvuLOlVSrSfeq625N7W6bFAoGBANI9
fUtBO8EXMf3EiCXOKATOaCg56kLleguIjV3t1T0Jsrcu4qynHz7UdqI5PRXGiEtT
I8Vs0HSS+PrKdq0AMFmTiNm6joo2inLXQz+yZuh4PchVEoRe6UsjVHysFIrIrOrr
gNTVNPBrNaNDPIO6cfj/GKg3e4c/aTRB0j2XfBSxAoGAMtyLDX8N7uyW7oazMR5V
cJcy1Zel+VJ9AzbEMAWGiBTwcl5hTw5RDg5o79BMLPsPsbqGTzg6s22SJmxv4zUK
/r0DaLbwzhPduCnHhB2AVZix4DtQ2CCyN9nBC1HT6+KsBvUszaTGGJWktQ+I6C1a
x3QwwSK5OfoHIi0SPFAX27UCgYBx/rNELb/Hp9sMXRbxYMHkMULapOR3l1PAky8L
whyANxT3LG3t7cQMXklhFqYfe4GFTjQ0JRc2TkbAPS1yCoss1sk6PWRyXrZdJIkr
LYGNBT2CtVYP/iKDAkoaO3f79GmGC2HUhTJqNcdkmd1jE6Iev7rP4x2QrPpPQm1L
xiqaUQKBgBuud95Dva8eE92/GcN9NU+PpOpPhIaoa9N6GZnfp6vFkHuapU68sap/
o/d5r6ZUPxyKQfs005OaMFamvogcfNiQGDy3YLPkmLwTbNFzSscAyAgx6zlXhIQA
+muG1CjwJZ3U8rbXrfic09CTpyK25ESuZ+NAwMvtDPHyx4jb5wW0
-----END RSA PRIVATE KEY-----
</key>