If the users from China, they had problem to connect to our Web Site due to high latency.
Therefore, we had managed the user’s connection to IP Address on Server Collocation in Hong Kong, then Destination Nat the connection through PPTP to DMZ IP Address of our server.
Users --> Web Site --> Hong Kong’s IP (on Mikrotik) --> PPTP --> Mikrotik (Our Local ISP) --> DMZ IP of Web Server
We had problem if the Traffic is reach up to 1.5Mbps or more, the connection through tunnel got timeout.
We found out the timeout connection by ping to the internal IP Address of PPTP (ping to 192.168.99.1), but the ping to public Hong Kong’s IP is not timeout at all (ping to 203.a.b.c).
Is there any maximum traffic limit for the PPTP connection?
Mikrotik of Local ISP
Code: Select all
# This is the configuration for the PPTP in the Mikrotik of Local ISP (IP 202.a.b.c)
/ ppp profile
add name="Shared_Profile" use-compression=yes use-vj-compression=no \
use-encryption=required only-one=default change-tcp-mss=yes comment=""
/ interface pptp-client
add name="pptp-out_S" max-mtu=1460 max-mru=1460 connect-to=203.a.b.c user="VPN_to-203.a.b.c" \
password="PasswdVPN_to-203.a.b.c" profile=Shared_Profile add-default-route=no allow=mschap2 disabled=no
# This is the configuration for the routing to Hong Kong in the Mikrotik of Local ISP
/ ip route
add dst-address=0.0.0.0/0 gateway=192.168.99.1 scope=255 target-scope=10 routing-mark=tunnel-HK comment="" disabled=no
# The Mangle for routing mark not included in here
. . . . . . . . Code: Select all
# This is the configuration in the Mikrotik of Hong Kong ISP (IP 203.a.b.c)
/ ppp profile
add name="Shared_Profile" use-compression=yes use-vj-compression=no \
use-encryption=required only-one=default change-tcp-mss=yes comment=""
/ interface pptp-server server
set enabled=yes max-mtu=1460 max-mru=1460 authentication=pap,chap,mschap1,mschap2 keepalive-timeout=30 \
default-profile= Shared_Profile
/ ppp secret
add name=" VPN_to-203.a.b.c" service=pptp caller-id="202.a.b.c" password=" PasswdVPN_to-203.a.b.c" profile= Shared_Profile \
local-address=192.168.99.1 remote-address=192.168.99.2 routes="" limit-bytes-in=0 limit-bytes-out=0 comment="" \
disabled=no
/ interface pptp-server
add name="pptp-in-TAN" user=" VPN_to-203.a.b.c" disabled=no
# This is the configuration for the routing to Hong Kong in the Mikrotik of Local ISP
/ ip route
add dst-address=192.168.10.0/24 gateway=192.168.99.2 scope=255 target-scope=10 comment="" disabled=no
# The Destination Nat of the Web Server to DMZ IP Address not included in here
. . . . . . . . . . I had tried to add new PPTP connection, and then the traffic is round robin load balance between the two PPTP connections.
Somehow, it was reducing the response timeout in the PPTP connection.
Please give me any suggestion, thanks.