Here is my config:
# dec/26/2021 13:22:07 by RouterOS 7.2rc1
# software id = 7HJJ-N0I9
#
# model = RouterBOARD 3011UiAS
# serial number = 783D066965C5
/interface bridge
add name=LAN
add name=Loopback
/interface ethernet
set [ find default-name=ether2 ] mac-address=6C:3B:6B:69:69:69
set [ find default-name=ether3 ] mac-address=6C:3B:6B:96:96:96
set [ find default-name=ether4 ] mac-address=6C:3B:6B:99:99:99
/interface l2tp-server
add name=DumDum user=mainak
/interface gre
add !keepalive local-address=10.28.115.18 mtu=1472 name=Madhyamgram \
remote-address=10.14.96.109
/interface list
add name=lans
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/ip ipsec profile
set [ find default=yes ] enc-algorithm=aes-256 hash-algorithm=sha256
/ip ipsec proposal
set [ find default=yes ] auth-algorithms=sha256 enc-algorithms=\
aes-256-cbc,aes-256-ctr pfs-group=modp2048
/ip pool
add name=dhcp_pool0 ranges=172.22.146.2-172.22.146.62
add name=dhcp_pool1 ranges=172.22.146.66-172.22.146.126
/ip dhcp-server
add address-pool=dhcp_pool0 interface=LAN lease-time=1w name=dhcp1
add address-pool=dhcp_pool1 interface=ether10 lease-time=1w name=dhcp2
/port
set 0 name=serial0
/interface pppoe-client
add ac-name=abs_78 allow=pap disabled=no interface=ether3 name=ABSPL profile=\
default-encryption service-name=abs_78 user=kanika_cenn
/routing ospf instance
add name=ospf-instance-v2
/routing ospf area
add instance=ospf-instance-v2 name=ospf-backbone-v2
add area-id=0.0.0.1 instance=ospf-instance-v2 name=ospf-area-1
add area-id=0.0.0.2 instance=ospf-instance-v2 name=ospf-area-2
/routing table
add disabled=no fib name=abspl-inbound
add disabled=no fib name=sswl-inbound
add disabled=no fib name=abspl-outbound
add disabled=no fib name=sswl-outbound
/zerotier
set zt1 comment="ZeroTier Central controller -
https://my.zerotier.com/" \
disabled=yes disabled=yes name=zt1 port=9993
/interface bridge port
add bridge=LAN interface=ether6
add bridge=LAN interface=ether7
add bridge=LAN interface=ether8
add bridge=LAN interface=ether9
/ip neighbor discovery-settings
set discover-interface-list=all
/interface l2tp-server server
set allow-fast-path=yes authentication=pap,chap enabled=yes \
one-session-per-host=yes use-ipsec=yes
/interface list member
add interface=LAN list=lans
add interface=ether5 list=lans
add interface=ether10 list=lans
/interface ovpn-server server
set auth=sha1,md5
/ip address
add address=172.28.55.3/24 interface=ether4 network=172.28.55.0
add address=192.168.72.1/23 interface=ether5 network=192.168.72.0
add address=10.28.115.18/30 interface=ether2 network=10.28.115.16
add address=172.22.146.65/26 interface=ether10 network=172.22.146.64
add address=172.22.146.1/26 interface=LAN network=172.22.146.0
add address=192.168.254.1 interface=Loopback network=192.168.254.1
add address=192.168.168.13/30 interface=Madhyamgram network=192.168.168.12
/ip cloud
set ddns-enabled=yes
/ip dhcp-server network
add address=172.22.146.0/26 gateway=172.22.146.1
add address=172.22.146.64/26 gateway=172.22.146.65
/ip dns
set servers=2407:cb00:c702:dead:beef::7272
/ip firewall address-list
add address=10.0.0.0/8 list=bypass-list
add address=172.16.0.0/12 list=bypass-list
add address=192.168.0.0/16 list=bypass-list
add address=192.168.72.0/23 list=own-lan
add address=172.22.146.0/26 list=own-lan
add address=172.22.146.64/26 list=own-lan
add address=192.168.55.0/29 list=own-lan
add address=4.2.2.0/24 list=bypass-list
/ip firewall mangle
add action=mark-connection chain=prerouting dst-address-list=bypass-list \
new-connection-mark=exclude_conn passthrough=yes src-address-list=own-lan
add action=mark-routing chain=prerouting connection-mark=exclude_conn \
new-routing-mark=main passthrough=yes
add action=mark-connection chain=input in-interface=ether2 \
new-connection-mark=abspl_out_conn passthrough=yes
add action=mark-routing chain=output connection-mark=abspl_out_conn \
new-routing-mark=abspl-inbound passthrough=no
add action=mark-connection chain=input in-interface=ether4 \
new-connection-mark=sswl_out_conn passthrough=yes
add action=mark-routing chain=output connection-mark=sswl_out_conn \
new-routing-mark=sswl-inbound passthrough=no
add action=mark-connection chain=forward connection-state=new in-interface=\
ether2 new-connection-mark=abspl_out_pfw passthrough=no
add action=mark-routing chain=prerouting connection-mark=abspl_out_pfw \
in-interface-list=lans new-routing-mark=abspl-inbound passthrough=no
add action=mark-connection chain=forward connection-state=new in-interface=\
ether4 new-connection-mark=sswl_out_pfw passthrough=no
add action=mark-routing chain=prerouting connection-mark=sswl_out_pfw \
in-interface-list=lans new-routing-mark=sswl-inbound passthrough=no
add action=accept chain=prerouting in-interface=ether2
add action=accept chain=prerouting in-interface=ether4
add action=mark-connection chain=prerouting connection-mark=!exclude_conn \
dst-address-type=!local new-connection-mark=abspl_conn passthrough=yes \
per-connection-classifier=both-addresses-and-ports:2/0
add action=mark-connection chain=prerouting connection-mark=!exclude_conn \
dst-address-type=!local new-connection-mark=sswl_conn passthrough=yes \
per-connection-classifier=both-addresses-and-ports:2/1
add action=mark-routing chain=prerouting connection-mark=abspl_conn \
in-interface-list=lans new-routing-mark=abspl-outbound passthrough=yes
add action=mark-routing chain=prerouting connection-mark=sswl_conn \
in-interface-list=lans new-routing-mark=sswl-outbound passthrough=yes
/ip firewall nat
add action=masquerade chain=srcnat out-interface=ether2
add action=masquerade chain=srcnat out-interface=ether4
add action=masquerade chain=srcnat out-interface=DumDum
add action=dst-nat chain=dstnat dst-address=10.28.115.18 dst-port=8006 \
in-interface=ether2 protocol=tcp to-addresses=192.168.72.2 to-ports=8006
add action=dst-nat chain=dstnat dst-address=10.28.115.18 dst-port=80 \
in-interface=ether2 protocol=tcp to-addresses=192.168.72.72 to-ports=80
/ip firewall service-port
set ftp disabled=yes
set tftp disabled=yes
set irc disabled=yes
set h323 disabled=yes
set sip disabled=yes
set pptp disabled=yes
set udplite disabled=yes
set dccp disabled=yes
set sctp disabled=yes
/ip route
add check-gateway=ping disabled=no dst-address=0.0.0.0/0 gateway=10.28.115.17 \
routing-table=main suppress-hw-offload=no
add disabled=no distance=2 dst-address=0.0.0.0/0 gateway=172.28.55.1 \
pref-src="" routing-table=main scope=30 suppress-hw-offload=no \
target-scope=10
add distance=1 gateway=10.28.115.17 routing-table=abspl-inbound
add distance=1 gateway=172.28.55.1 routing-table=sswl-inbound
add check-gateway=ping distance=1 gateway=10.28.115.17 routing-table=\
abspl-outbound
add check-gateway=ping distance=2 gateway=172.28.55.1 routing-table=\
sswl-outbound
add disabled=no dst-address=4.2.2.1/32 gateway=10.28.115.17 routing-table=\
main suppress-hw-offload=no
add disabled=no distance=1 dst-address=4.2.2.2/32 gateway=172.28.55.1 \
pref-src="" routing-table=main scope=30 suppress-hw-offload=no \
target-scope=10
/ip service
set telnet disabled=yes
set ftp disabled=yes
set ssh disabled=yes
set api disabled=yes
set api-ssl disabled=yes
/ip upnp
set enabled=yes
/ip upnp interfaces
add interface=ether2 type=external
add interface=LAN type=internal
add interface=ether10 type=internal
add interface=ether5 type=internal
/ipv6 address
add address=2407:cb00:c702:dead:beef::1 advertise=no interface=ether5
add address=2407:cb00:c702:babe::1 interface=ether10
add address=2407:cb00:c702:b00b::1 interface=LAN
/ipv6 dhcp-client
add add-default-route=yes interface=ABSPL pool-name=ABSPL-v6 \
pool-prefix-length=48 request=prefix use-peer-dns=no
/ipv6 nd
set [ find default=yes ] dns=\
2407:cb00:c702:dead:beef::7272,2407:cb00:c702:dead:beef::7373 mtu=1492
/ppp secret
add local-address=192.168.168.21 name=mainak profile=default-encryption \
remote-address=192.168.168.22 service=l2tp
add local-address=192.168.55.1 name=kalpak profile=default-encryption \
remote-address=192.168.55.2 remote-ipv6-prefix=2407:cb00:c702:d0d0::/64 \
service=l2tp
/routing igmp-proxy interface
add interface=ether2 upstream=yes
add interface=LAN
add interface=ether10
/routing ospf interface-template
add area=ospf-area-1 interfaces=DumDum networks=192.168.168.20/30 type=ptp
add area=ospf-backbone-v2 interfaces=Loopback networks=192.168.254.1/32
add area=ospf-area-2 interfaces=Madhyamgram networks=192.168.168.12/30 type=\
ptp
/system clock
set time-zone-name=Asia/Kolkata
/system identity
set name=home-lab
/system logging
add disabled=yes topics=ospf
/system ntp client
set enabled=yes
/system ntp client servers
add address=10.28.115.17
add address=172.28.55.1
/system package update
set channel=testing
/system routerboard settings
set auto-upgrade=yes
/tool netwatch
add host=10.28.115.17 interval=5s
add host=172.28.55.1 interval=5s
/tool romon
set enabled=yes