Dear all,

On this time we needed to build a lot of VPN services, all works fine but the people, has your PC's with P2Ps software installed, for this, i think the best solution are that redirect the public IP traffic to the origin.

This point is very simple, we can configure a static route on the local PC's only to use the VPN for private IP, no? yes, but i think this ins't the best solution. For us, the best solution is that Mikrotik receive all traffic and build (with script) dynamic default route for each VPN with gateway the origin.
We works with enviroments with 100 - 200 PC's and configure static routes for each is too much.

First question, this rule can be loop? maybe, but i want to test this solution.

Secon question. We can configure new script on VPN prifile when up, for example: "ip route add dst-address=0.0.0.0/0 gateway=(dynamic) pref-src=(dynamic)". The most important on this point are how can extract the dynamic VPN name (for gateway) and remote IP assigned (for pref. source) to configure the script?

Can someone tell anything about this?


Thanks a lot,

Don't have anyone any response? I think on other firewalls, when the VPN is up, this firewall can send static routes to client (windows). If it not possible on Mikrotik maybe can configure dynamic routes on itself


Thanks,