Hello All
I wanted to know which VPN can I implement with mikrotik to connect 11 sites
with good response time
Thanks
Re: VPN for 11 sites
Hello All
I wanted to know which VPN can I implement with mikrotik to connect 11 sites
with good response time
Thanks
I have implemented an VPN from one HQ to 3 delegations. All dynamic ip. Very simple.
Follow this instructions: http://www.mikrotiktutorial.com/downloa ... te_vpn.pdf
-
-
wilsongamo
newbie
- Posts: 45
- Joined:
Re: VPN for 11 sites
What are the constraints of this implementation to have a best time of response
-
-
wilsongamo
newbie
- Posts: 45
- Joined:
Re: VPN for 11 sites
What are the constraints of this implementation to have a best time of response
-
-
wilsongamo
newbie
- Posts: 45
- Joined:
Re: VPN for 11 sites
What are the constraints of this implementation to have a best time of response
-
-
wilsongamo
newbie
- Posts: 45
- Joined:
Re: VPN for 11 sites
Hello xavierbt ;,
The account is connect but is not working i cannot ping the differents lan !!!!!
The account is connect but is not working i cannot ping the differents lan !!!!!
-
-
wilsongamo
newbie
- Posts: 45
- Joined:
Re: VPN for 11 sites
This is my architecture
Router 1
Ip public :1.1.1.2
Lan :192.16.1.0/24
Router 2
Ip public :1.1.2.2
Lan :192.16.2.0/24
My configuration
Router 1
Enable L2TP Server
/interface l2tp‐server server
set default‐profile=Branch1 enabled=yes
Create L2TP Profile
/ppp profile
add name=Branch1
Create Login account for branch
/ppp secret
add local‐address=1.1.1.2
name=branch1‐l2tp
password=branch1‐l2tp profile=Branch1
remote‐address=1.1.2.2
routes=192.16.2.0/24 service=l2tp
Make NAT Exception for VPN Traffic
/ip firewall nat
add chain=srcnat dst‐address=192.16.2.0/24 src‐address=192.16.1.0/24
Router 2
Create L2TP Client Connection
/interface l2tp‐client
add name=l2tp‐to‐hq user=branch1‐l2tp
password=branch1‐l2tp add‐default‐route=no
connect‐to=1.1.1.2 disabled=no
name=l2tp‐to‐hq profile=default‐encryption
Route back to HQ
/ip firewall nat
add chain=srcnat dst‐address=192.16.1.0/24 src‐address=192.16.2.0/24
/ip route
add dst‐address=192.16.1.0/24 gateway=l2tp‐to‐hq
please tell me where is the error because its not working
Router 1
Ip public :1.1.1.2
Lan :192.16.1.0/24
Router 2
Ip public :1.1.2.2
Lan :192.16.2.0/24
My configuration
Router 1
Enable L2TP Server
/interface l2tp‐server server
set default‐profile=Branch1 enabled=yes
Create L2TP Profile
/ppp profile
add name=Branch1
Create Login account for branch
/ppp secret
add local‐address=1.1.1.2
name=branch1‐l2tp
password=branch1‐l2tp profile=Branch1
remote‐address=1.1.2.2
routes=192.16.2.0/24 service=l2tp
Make NAT Exception for VPN Traffic
/ip firewall nat
add chain=srcnat dst‐address=192.16.2.0/24 src‐address=192.16.1.0/24
Router 2
Create L2TP Client Connection
/interface l2tp‐client
add name=l2tp‐to‐hq user=branch1‐l2tp
password=branch1‐l2tp add‐default‐route=no
connect‐to=1.1.1.2 disabled=no
name=l2tp‐to‐hq profile=default‐encryption
Route back to HQ
/ip firewall nat
add chain=srcnat dst‐address=192.16.1.0/24 src‐address=192.16.2.0/24
/ip route
add dst‐address=192.16.1.0/24 gateway=l2tp‐to‐hq
please tell me where is the error because its not working
-
-
wilsongamo
newbie
- Posts: 45
- Joined:
Re: VPN for 11 sites
Please somebody can help me ???
its not working i dn't no why
its not working i dn't no why
-
-
wilsongamo
newbie
- Posts: 45
- Joined:
Re: VPN for 11 sites
Please somebody can help me ???
its not working i dn't no why
and the l2tp client its not stable (connect and disconnect ))
its not working i dn't no why
and the l2tp client its not stable (connect and disconnect ))
-
-
wilsongamo
newbie
- Posts: 45
- Joined:
Re: VPN for 11 sites
Thanks
Its Working ...
Sorry,
Didn't see your messages.
Are your VPN working fine now ? What was your problem ?
regards
x
-
-
wilsongamo
newbie
- Posts: 45
- Joined:
Re: VPN for 11 sites
HELLO
What can i do to optimize my request time
serveur to client its good
but client 1 to client 2 its very slow
thanks
What can i do to optimize my request time
serveur to client its good
but client 1 to client 2 its very slow
thanks
Re: VPN for 11 sites
Go direct client to client. not hub and spoke. Work with multiple tunnels, to create a mesh
In cisco land (even vyos now) DMVPN would be the answer, in mkt land - you deal with a lot of configuration for a similar outcome.
In cisco land (even vyos now) DMVPN would be the answer, in mkt land - you deal with a lot of configuration for a similar outcome.
-
-
wilsongamo
newbie
- Posts: 45
- Joined:
Re: VPN for 11 sites
I m not understand
please explain well
i need router for all my client
please explain well
i need router for all my client
Re: VPN for 11 sites
rjickity is surmising that your performance problem when sending data from client1 to client2 is due to the traffic being sent via the main site. This could be due to either congestion on the WAN link at the main site, or CPU load on the router at the main site. There are a wealth of tools available that will help you work out which one is the culprit.
The solution would be to have VPNs directly between all the clients [a mesh, as rjickity said]. This is more configuration to manage but will improve resilience and performance.
The solution would be to have VPNs directly between all the clients [a mesh, as rjickity said]. This is more configuration to manage but will improve resilience and performance.
-
-
wilsongamo
newbie
- Posts: 45
- Joined:
Re: VPN for 11 sites
Thanks for your explain
but I dn't know how to make this
"The solution would be to have VPNs directly between all the clients [a mesh, as rjickity said]. This is more configuration to manage but will improve resilience and performance"
Thanks
but I dn't know how to make this
"The solution would be to have VPNs directly between all the clients [a mesh, as rjickity said]. This is more configuration to manage but will improve resilience and performance"
Thanks