This is my first technical post, so, bear with me. For sure it belongs to category "Can it be done?"
I have an interesting installation in an NGO (Non Goverment Organisation) where i'm struggling for the past few days and i ran out of ideas.
Any suggestion is more than welcomed.
I'm not looking for an A to Z solution, but rather directions and some enlightenment to accomplish the task.
I have the following layout;
Location A consist of the following :
- No control on the gateway (192.168.1.1). Internet feed is for free and provider doesn't bother to proceed to extra (re)configuration (in other words that was the offer, take it or leave it)
- Mikrotik address 192.168.1.2
- Lot's of devices in the LAN served by DHCP from gateway
Location B :
- Mikrotik as router on the edge of the network
- Full access
- To create a VPN from site A to B through existing internet feed without reconfigure the whole network
(due to some port forwards printer redirections ,and an existing IPSEC tunnel to site C which -of course- is not documented)
Steps so far :
I've connected the gateway (192.168.1.1) on mikrotik and created a bridge in order not to interrupt normal usage of the network.
VPN from site A to site B through gateway 192.168.1.1 is working as expected.
But in order for the vpn to be accessible from the clients, i have to point mikrotik as gateway which is not desirable (several things will stop working..) For the past two days i'm struggling with documentation and experimentation but no luck.
- Which is the best way to rewrite the gateway address in the case that destination is the vpn'd subnet??
Through bridge NAT or simple L3 firewalling and NAT? Should i continue to have the two interfaces in bridge? (what else?)
Thank you in advance,