Community discussions

MikroTik App
 
kwetcherod
just joined
Topic Author
Posts: 12
Joined: Mon Apr 29, 2013 2:41 pm

opvpn client (mikrotik) of a Linux deban openvpn server

Mon Apr 29, 2013 8:01 pm

Good evening community,
Please i need Help

it is possible to configure opvpn client on mikrotik routerboard 750 which will be a client of an openvpn server on Linux Debian machine?

if it is possible, can someone tell me how i could do it please!!

Thanks
 
FutileNetworks
newbie
Posts: 37
Joined: Tue Jan 15, 2013 9:14 pm

Re: opvpn client (mikrotik) of a Linux deban openvpn server

Mon Apr 29, 2013 9:38 pm

Yes it's possible. I can't give you the exact configs just some hints... set the openvpn server to TCP and disable comp-lzo.
 
kubco2
newbie
Posts: 42
Joined: Tue Mar 05, 2013 11:57 pm

Re: opvpn client (mikrotik) of a Linux deban openvpn server

Wed May 01, 2013 6:55 pm

maybe this will help you. At the bottom is my solution.
http://forum.mikrotik.com/viewtopic.php?f=2&t=70993
 
kwetcherod
just joined
Topic Author
Posts: 12
Joined: Mon Apr 29, 2013 2:41 pm

Re: opvpn client (mikrotik) of a Linux deban openvpn server

Fri May 03, 2013 9:44 am

Thanks!!

I try which that..
 
kwetcherod
just joined
Topic Author
Posts: 12
Joined: Mon Apr 29, 2013 2:41 pm

Re: opvpn client (mikrotik) of a Linux deban openvpn server

Fri May 03, 2013 6:31 pm

Hello Kubco2!
I am happy for the link you gave me (viewtopic.php?f=2&t=70993) .
But I am a beginner which Mikrotik router. Can you please give me a small exhibit (shema) of the configuration we have in this link?
it is possible to more describe it


Thanks
 
kubco2
newbie
Posts: 42
Joined: Tue Mar 05, 2013 11:57 pm

Re: opvpn client (mikrotik) of a Linux deban openvpn server

Fri May 03, 2013 7:41 pm

I added some more info. But on Mikrotik there is not a lot of settings. You need only set ovpn_client
name="ovpn-out1" mac-address=xyz max-mtu=1500
connect-to=serverIP port=1194 mode=ip user=client
password="" profile=default-encryption certificate=cert1 auth=sha1
cipher=aes256 add-default-route=no

Maybe it will be better if you describe your problem.
 
kwetcherod
just joined
Topic Author
Posts: 12
Joined: Mon Apr 29, 2013 2:41 pm

Re: opvpn client (mikrotik) of a Linux deban openvpn server

Mon May 06, 2013 11:31 am

Description of my problem.

We have many agencies connected to a (debian squeeze web server and open VPN server ).Every agency has a Mikrotik router board 750 and is connected to Internet.
But after the router we have install a PC (linux Red hat) which act as a openvpn client ; at end of the network, we have all the machine of agency.

Now what we want it is to delete The PC (linux Red hat) and make the router RB750 being open VPN client in all agency (so mikrotik RB750 openvpn client of the debian squeeze web server and open VPN server in every agency).

Thanks
 
kubco2
newbie
Posts: 42
Joined: Tue Mar 05, 2013 11:57 pm

Re: opvpn client (mikrotik) of a Linux deban openvpn server

Mon May 06, 2013 12:12 pm

And where is the problem in your configuration?
What doesnt work?
 
kwetcherod
just joined
Topic Author
Posts: 12
Joined: Mon Apr 29, 2013 2:41 pm

Re: opvpn client (mikrotik) of a Linux deban openvpn server

Mon May 06, 2013 2:05 pm

I try again!

My problem was where i would use the file key.crt and ca.crt generate by the server in Mikrotik RB750..

I will back whith u soon
 
kubco2
newbie
Posts: 42
Joined: Tue Mar 05, 2013 11:57 pm

Re: opvpn client (mikrotik) of a Linux deban openvpn server

Mon May 06, 2013 5:46 pm

upload files on ftp, or in winbox open Files and drag and drop files ...... import certificates from files... system>certificates>import ...you need to have "K" flag on certificate file in system>certificates ... then you can use interface > ovpn client and select your certificate
 
kwetcherod
just joined
Topic Author
Posts: 12
Joined: Mon Apr 29, 2013 2:41 pm

Re: opvpn client (mikrotik) of a Linux deban openvpn server

Tue May 14, 2013 7:15 pm

good evening,
I have two files generated by my openvpn server: client1.crt and client1.key
I had import them in Files of RB750 but when I go to System>certificate and tried to add them, nothing is added in certificate list window . I not know why

Can someone help me please
 
kwetcherod
just joined
Topic Author
Posts: 12
Joined: Mon Apr 29, 2013 2:41 pm

Re: opvpn client (mikrotik) of a Linux deban openvpn server

Wed May 15, 2013 3:52 pm

good afternoon,
I have two files generated by my openvpn server: client1.crt and client1.key
I had import them in Files of RB750 but when I go to System>certificate and tried to add them, nothing is added in certificate list window . I not know why

Can someone help me please
 
kubco2
newbie
Posts: 42
Joined: Tue Mar 05, 2013 11:57 pm

Re: opvpn client (mikrotik) of a Linux deban openvpn server

Wed May 15, 2013 8:46 pm

OK .... I tested it now ... First I added client.crt .... certificate entry appeared ... then I added client.key ... then certificate entry got KR flags .... in this order it works ... maybe you need input passphrase too ...

If it is not work for you, I cant help
 
kwetcherod
just joined
Topic Author
Posts: 12
Joined: Mon Apr 29, 2013 2:41 pm

Re: opvpn client (mikrotik) of a Linux deban openvpn server

Mon May 27, 2013 5:23 pm

nothing going well!!!
 
kwetcherod
just joined
Topic Author
Posts: 12
Joined: Mon Apr 29, 2013 2:41 pm

Re: opvpn client (mikrotik) of a Linux deban openvpn server

Wed Aug 28, 2013 1:31 pm

Good afternoon, community

I dont nkwow why but my mikrotik openvpn client is now connected to my server( Linux debian openvpn server). I have restart all the process step by step it is going well now
the server give to my mikrotik openvpn client the ip address 10.8.0.6 .

another problem is that : when i tried to ping the client (10.8.0.6) from the server (10.8.0.1) i got time out request

I dont know why. Please i need help

thanks
 
ivtts
just joined
Posts: 9
Joined: Tue Aug 20, 2013 12:47 pm
Location: Russia

Re: opvpn client (mikrotik) of a Linux deban openvpn server

Thu Aug 29, 2013 8:49 pm

May be your firewall rules block ping from openvpn server.
You may try disable firewall rules and try ping again.
To disable firewall rules select IP->Firewall in Winbox. In window Firewall select the rule and press button with red cross to disable it (after you may enable it).
Also check routes on mikrotik (IP->Routes).
Another way - you can try to ping openvpn server from your mikrotik. In Winbox select "New terminal" and type command:

ros code

ping 10.8.0.1

Who is online

Users browsing this forum: boxxed, Delid4ve, Google [Bot] and 81 guests