F
F
fixie2016-09-10 19:26:35
VPN
fixie, 2016-09-10 19:26:35

How to forward l2tp+ipsec ports via mikrotik?

As you can see from the rules - in addition to everything, there is RDP and SSH connection forwarding - it works without any problems. Similarly, configured rules for protocol UDP ports 1701, 4500, 500, and 50 did not work. Next, filtering rules were added, but what with them, without them, there was no result. Inside the local network, everything connects without problems. The l2tp settings do not specify a pool of addresses from which you can connect to it - as I understand it, this allows you to connect from any addresses.
There is one "BUT" - in the WAN settings I have a static ip-address of the provider's network (10.х.х.х), but the external IP (static) differs from it (5.19.х.х 7ff9604c2eca4e27a6dd726881b324e1.PNG)
c5abd2a9b9d140e3bc38197e778b22ea.PNG
What am I missing?

Answer the question

In order to leave comments, you need to log in

1 answer(s)
K
Kirill Vasiliev, 2016-09-24
@vasilevkirill

Well, firstly, it makes no sense to allow formware traffic in the filter that passes through NAT, since it is not explicitly prohibited in your filter.
ipsec-esp and ipsec-ah will run when ipsec is running.
Obviously, the problem is not in Mikrotik, but in the settings of the equipment located on NAT.
and netmap is not used for port forwarding

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question