MikroTik

PLEASE i NEED HELP WITH PPTP SETUP.
I SUCCEFULLY ENABLED PPTP SERVER ON MY MIKROTIK RB100.
I SETUP MY XP AS CLIENT AND CONNECT TO THE PPTP SERVER OVER THE INTERNET. I CAN SEE THE SESSION IN ACTIVE CONNECTION WINDOWS BUT I CANNOT CONNECT TO ANY LOCAL RESOURCES OR PING ANY PC ON THE LOCAL LAN.
I ENABLED ARP-PROXY ON THE LAN INTERFACE BUT NO SUCCESS.

PLEASE HELP.

GUYS i DISCOVERED THE PROBLEM OCCURED COS I AM RUNNING HOTSPOT. IT WORKS PERFECTLY WITHOUT HOTSPOT.
PLEASE HOW CAN I CONFIGURE WALLED GARGEN TO ALLOW REMOTE USER CONNECT TO LAN RESOURCES WITHOUT HOTSPOT AUTHENTICATION?

a) Please turn off caps lock
b) Add walled garden IP rules that permit access to the desired IP targets. If you local network is 192.168.1.0/24 that would be something along the lines of

thanx fewi, but i tried that problem exists. I cant still connect. am just thingking dont u think I should specify protocol in the above script?

expecting ur reply pls

I think I don't properly understand what you are trying to do. Please draw a network diagram and give details on what you are trying to achieve. Adding a protocol filter to the above would be pointless. If it doesn't do what you want it to do based on just IP addressing it is not going to magically start working if you reduce the rule to a subset of what already didn't work.

OK I WILL UPLOAD A NET DIAGRAM TO YOU SOON

fewi please find attached the network diagram and scenerio. thanks for helping

I'm confused. What do Hotspots have to do with this?

i dont know too but I noticed that when I disabled hotspot, pptp clients can ping the pcs on the LAN after connecting.
I think that with hotspot enabled, the pptp clients are trying to authenticate to hotspot.

Why do you have a Hotspot running? You shouldn't mix Hotspots with other authentication methods.

You can mix auth methods.. but.. why you need to access a machine that is in the other side of a hotspot..¿?! this has no sense..

You need to make a script to mantain a rule before hotspot rules that accepts PPTP before entering the hotspot rules.. but it has no sense..

why I need it is because my office LAN uses the hotspot and marketers will be connecting to the office LAN via PPTP using their laptops.

do you understand why now? please if there is another means of getting this done let me know

Maybe try setting the PPTP IPs to 'bypassed' in "/ip hotspot ip-bindings".

While in some circumstances you can mix authentication methods, bringing VPN tunnels back behind a Hotspot makes very little sense. Why do you need a Hotspot in your office? Permanent employees should just authenticate to a WPA2 protected wireless network, bringing in PPTP clients to that network is easy. Only guests should have to go through a Hotspot, and they should be a on completely separate network firewalled off from the main network.

yeah!!! thanx fewi. that last solution is working. I did the bypass in ip binding.
thanx so much for helping

i will recommend to use different eth for hotspot & pptp.