I'm trying to create a travel router setup and got recommended both GL-iNet and Mikrotik for this purpose.
Could you give some advice on whether this is possible?
We have a person who has a GlobalProtect IPSec-VPN running for work on their work laptop (Windows app handles the VPN).
He would also like to access his home network during the week, but he doesn't have admin rights to install another VPN solution (eg Wireguard).
We thought about constructing the VPN before the laptop, so the company VPN gets incapsulated in his own VPN. (E.g. Wireguard, to avoid TCP on top of TCP).
An additional challenge is that his home connection is IPv4 CGNAT (but public IP can be gotten for a monthly fee), or IPv6.
There are plenty of guides on how to set up a Wireguard server on a multitude of devices, we're comfortable with that.
Can we use RouterOS and a Mikrotik device to become a travel router, i.e.
- set up a Wireguard client which will route everything through that tunnel
- let a laptop connect through ethernet/wifi
- can also connect to eg hotel wifi and let other wifi devices connect to the tunnel
- drop/block the entire WAN-connection if the tunnel stops working