Hello everyone and thank you for trying to help me
I have an issue with a GRE Tunneling scenario. Here is the scenario:
We have 2 RouterOSes on site A and Site B.
Router A has an Valid Static IP: 218.219.1.1/30 And Router B has a Valid Static IP: 218.219.1.2/30
We have some people who will connect to Router A via PPTP/L2TP VPN.
We want this people to gain access to internet using an interface from Router B.
Now we want to do this via GRE Tunnel.
We make a GRE tunnel between Router A and Router B.
We are working with Winbox here.
In router "B" We just need to do this:
Interfaces => GRE Tunnel => Add =>
Name: GRE
Remote Address: 218.219.1.1
=
IP => Addresses => Add
192.168.100.2/30
Interface: GRE
=
IP => Firewall => NAT => Add
Chain: srcnat
Action: masquerade
=================
In router "A" we wil go this ways step by step:
Interfaces => GRE Tunnel => Add =>
Name: GRE
Remote Address: 218.219.1.2
==
Now we add an IP to GRE Interface that we created to create a local network between 2 GRE interfaces:
IP => Addresses => Add
192.168.100.1/30
Interface: GRE
======
Now we ping 192.168.100.2 from Router "A" and ping 192.16.100.1 from Router "B" and both are successful. It means the GRE communication is established successfully.
=======
VPN Configurations:
We activated PPTP Server on Router "A" and we can connect to it... So no problem on VPN Protocol.
We have an IP Pool named "vpn" with addresses of: 192.168.5.5-192.168.5.254 .
We used profile named "default-encryption" for PPTP Server and We sated up this setting on profile:
Local Address: 192.168.5.1
Remote Address: "vpn"
===
Add NAT rules:
IP => Firewall => NAT => Add
Chain: srcnat
Action: masquerade
=
IP => Firewall => Mangle => Add
Chain: prerouting
Src. Address: 192.168.5.0/24
Action: mark routing
New Routing Mark: Tunnel
Passthrough checked.
===
Now we need to add a static route to send all traffics that coming from VPN Clients to the GRE tunnel.
So:
IP => Routes => Add
Dst. Address: 0.0.0.0/0
Gateway: 192.168.100.2
Routing Mark: Tunnel
Now we create a PPP Secret (Username and password) To make a VPN connection to Router "A" and we connect it on Host.
Connection passed!
But now I can't establish a connection!
I can ping 4.2.2.4 from the Host but I can't open any website , I can't create a RDP session completely (It starts to securing the connection but after a few Milliseconds it stops working.
I also can establish a FTP session but I can't transfer any file!
It seems it will drop the connection after a few bytes sent! Something like "MTU limitation" or something!
Could anyone help me through that ? I'm going crazy about that! And i thing this problem is from NAT/Routing....
Note that i checked firewall rules on both Routers... not from that!
Router A OS Version: 6.6 Level 6
Router B OS Version: 5.26 Level 6
PN: Is the version even matter!?
Thanks...