Community discussions

MikroTik App
  4. RouterOS
  5. General

Bridge mode with VPN

Post Reply
 
User avatar
KitMikro
newbie
Topic Author
Posts: 43
Joined: Thu Apr 30, 2015 11:52 am

Bridge mode with VPN

Fri Jun 23, 2017 10:28 pm

Hi All,

I've been trying to use a RB750Gr3 in bridge mode with a VPN server.
The situation is as follows:

Internet ---> Modem/router---> Mikrotik
1.1.1.1 ---> 192.168.5.1 ---> 192.168.5.100

Port 1 is connected to Modem/router
I need port 2,3,4,5 to be acting as switch.

What did I overlook?
Code: Select all
# jun/23/2017 18:54:29 by RouterOS 6.36.1

/interface bridge
add name=bridge1
/ip pool
add name=pool-VPN ranges=172.31.80.1-172.31.80.20
/ppp profile
add change-tcp-mss=yes dns-server=8.8.8.8 local-address=pool-VPN name=\
    L2TP-Profile remote-address=pool-VPN use-upnp=no
/interface bridge port
add bridge=bridge1 interface=ether1
add bridge=bridge1 interface=ether2
add bridge=bridge1 interface=ether3
add bridge=bridge1 interface=ether4
add bridge=bridge1 interface=ether5
/interface l2tp-server server
set authentication=mschap2 default-profile=L2TP-Profile enabled=yes \
    ipsec-secret=SOME-SUPER-TOP-SECRET-PASSWORD use-ipsec=yes
/ip address
add address=192.168.5.100/24 interface=ether2 network=192.168.5.0
/ip ipsec peer
add address=0.0.0.0/0 enc-algorithm=3des exchange-mode=main-l2tp secret=\
    SOME-SUPER-TOP-SECRET-PASSWORD
/ip route
add distance=1 gateway=192.168.5.1
/ppp secret
add name=USERNAME password=SOME-SUPER-TOP-SECRET-PASSWORD profile=L2TP-Profile service=l2tp
Top
 
User avatar
pukkita
Trainer
Trainer
Posts: 3051
Joined: Wed Dec 04, 2013 11:09 am
Location: Spain

Re: Bridge mode with VPN

Sat Jun 24, 2017 12:36 pm

What is the problem exactly?

Do the remote L2TP client connects but no reachability to the network the 750 is in? If so, set the arp mode of bridge1 to proxy-arp
Top
 
User avatar
KitMikro
newbie
Topic Author
Posts: 43
Joined: Thu Apr 30, 2015 11:52 am

Re: Bridge mode with VPN

Mon Jun 26, 2017 10:22 am

What is the problem exactly?

Do the remote L2TP client connects but no reachability to the network the 750 is in? If so, set the arp mode of bridge1 to proxy-arp
couldn't connect from outside... seemed the solution was to UPDATE and as follows
Code: Select all
/interface bridge
add name=bridge1
/ip ipsec proposal
add enc-algorithms=aes-256-cbc,3des name=L2TP-Proposal pfs-group=none
/ip pool
add name=poolVPN ranges=172.31.80.1-172.31.80.20
/ppp profile
add change-tcp-mss=yes dns-server=8.8.8.8 local-address=poolVPN name=\
    l2tp-profile remote-address=poolVPN
/interface bridge port
add bridge=bridge1 interface=ether1
add bridge=bridge1 interface=ether2
add bridge=bridge1 interface=ether3
add bridge=bridge1 interface=ether4
add bridge=bridge1 interface=ether5
/interface l2tp-server server
set authentication=mschap2 default-profile=l2tp-profile enabled=yes \
    ipsec-secret=PASSWORD use-ipsec=yes
/ip address
add address=192.168.5.100/24 interface=ether2 network=192.168.5.0
/ip dns
set servers=8.8.8.8
/ip firewall nat
add action=masquerade chain=srcnat out-interface=bridge1 src-address=\
    172.31.80.0/24
/ip ipsec peer
add address=0.0.0.0/0 enc-algorithm=aes-256,3des exchange-mode=main-l2tp \
    generate-policy=port-override secret=SHARED_SECRET
/ip ipsec policy
add proposal=L2TP-Proposal template=yes
/ip route
add distance=1 gateway=192.168.5.1
/ppp secret
add name=USERNAME password=PASSWORD profile=l2tp-profile service=l2tp
Top
 
afuente26
just joined
Posts: 22
Joined: Mon Jan 28, 2019 12:24 pm

Re: Bridge mode with VPN

Mon Jan 28, 2019 4:27 pm

I have the same problem. Both routers are connected but I can not access to the remote network.

I´ve configured ip-routes, etc.

Any idea?

Thanks
Angel
Top
 
User avatar
anav
Forum Guru
Forum Guru
Posts: 22041
Joined: Sun Feb 18, 2018 11:28 pm
Location: Nova Scotia, Canada
Contact:
Contact anav

Re: Bridge mode with VPN

Mon Jan 28, 2019 6:37 pm

Try taking ether1 off the bridge!
Top
Post Reply

Who is online

Users browsing this forum: No registered users and 111 guests
  4. RouterOS
  5. General