Community discussions

MikroTik App
  4. RouterOS
  5. General

sstp client handshake timed out from only one router

Post Reply
 
farzin
just joined
Topic Author
Posts: 16
Joined: Wed Feb 29, 2012 4:12 pm

sstp client handshake timed out from only one router

Sat Apr 01, 2023 2:29 am

hi, I have a mikrotik as sstp server. which seems to be working fine ( I can connect to it using android mobile and windows and one other mikrotik sstp client )
and I have a mikrotik as sstp client. on this client it is giving me handshake timed out (6) error.

I have tried doing factory reset, restoring backup of that other working mikrotik sstp client, and also tried configuring with or without bridge. with no success yet.
also I updated firmwares of both server ( mispe ) and client ( hap lite smips) mikrotiks to version 7.8

tried with and without fast track.
actual mtu is showing as 1500 ( I read a post maybe setting it to 1492 can help?)

/ip firewall filter
add action=reject chain=input dst-port=53 protocol=udp reject-with=\
icmp-port-unreachable
add action=reject chain=input dst-port=53 protocol=tcp reject-with=\
icmp-port-unreachable
add action=accept chain=forward dst-port=500 protocol=udp
add action=accept chain=input dst-port=500 protocol=udp
add action=accept chain=output dst-port=500 protocol=udp
add action=accept chain=forward protocol=ipsec-esp
add action=accept chain=input protocol=ipsec-esp
add action=accept chain=output protocol=ipsec-esp
add action=accept chain=forward comment="L2TP port 1701" dst-port=1701 \
protocol=udp
add action=accept chain=output comment="L2TP port 1701" dst-port=1701 protocol=\
udp
add action=accept chain=input comment="L2TP port 1701" dst-port=1701 protocol=\
udp
add action=accept chain=forward comment="L2TP port 4500" dst-port=4500 \
protocol=udp
add action=accept chain=input comment="L2TP port 4500" dst-port=4500 protocol=\
udp
add action=accept chain=output comment="L2TP port 4500" dst-port=4500 protocol=\
udp
add action=fasttrack-connection chain=forward connection-state=\
established,related hw-offload=yes
add action=accept chain=forward connection-state=established,related
/ip firewall nat
add action=masquerade chain=srcnat comment="defconf: masquerade"
any suggestions?
Top
Post Reply

Who is online

Users browsing this forum: emzdev404 and 57 guests
  4. RouterOS
  5. General