Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
A
A
Alexey Koval2018-11-23 16:22:56
VPN
Alexey Koval, 2018-11-23 16:22:56

How to connect 2 mikrotik via L2TP over IPSEC?

Good afternoon friends!
There are 2 offices, it is necessary to connect via L2TP over IPSEC (mikrotik with zyxel keenetik)
A VPN L2TP server has been raised on Mikrotik. Everything works correctly. Clients connect, get access to the internal Mikrotik network.
By connecting to Zyxel Keetetik, computers on the side of the Zyxel see the Mikrotik network, while Mikrotik clients do not see the Zyxel clients.
All the necessary rules are written in the firewall. What could be the reason?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

5 answer(s)
Report
W
Wexter, 2018-11-23
@Wexter

https://linkmeup.ru/sdsm/

Report
I
Ingvar, 2018-11-24
@take

Clients see "kinetics", since it is a gateway for them and it also raises the network through itself via VPN (receives an address from the vpn server, raises dynamic routes). That is, it resolves routes and is a gateway in its network. Therefore, it works. But in order for the machines to see the "kinetics" network from the "mikrotik" side, you need to specify the path in the IP--Routes section is static: they say if you need such a network - the gateway is .. is .. vpn-gateway. This is theory.
In practice:
in the PPP section , an L2TP interface is created (or we create it by hand, I don’t remember here). In the IP --> Addresses section, we assign an address to it (so that it becomes a full-fledged vpn gateway) and already in the IP --> Routes routingwe prescribe that for such a network, for example, 192.168.1.0/24, the gateway is the vpn address of the gateway. It is also strongly advised to enable ARP proxying on interfaces: Interfaces --> Interface and for each interface in the settings: ARP --> proxy-arp

Report
M
Michael, 2018-11-23
@Imisario

I am tormented by vague doubts that the route to the subnet in which the zyxel clients sit on mikrotik-e is not registered

Report
A
athacker, 2018-11-23
@athacker

Is Mikrotik listed as the default gateway for its clients? Is the announcement of networks from Zyxel'ey registered in IPsec?

Report
P
poisons, 2018-11-24
@poisons

Vanga mode ... you have a zixel for everyone who is behind it.

Similar questions
S
solinter2015-05-07 11:40:01
How to share folders in Windows 7 via VPN? 2Reply
N
nak-alexey2019-09-30 21:17:08
Responsibility of vpn provider? 2Reply
I
Ivan Semenov2019-10-04 12:34:32
How to set up ping by short name through vpn? 1Reply
J
JohnMirra2021-04-12 14:23:56
Are there any “traces” left when using a laptop via VPN (or Tor) of the Internet distributed from a phone? 3Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question