Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
A
A
Anton Bulkin2018-10-17 18:34:09
VPN
Anton Bulkin, 2018-10-17 18:34:09

How to set up stable access to network resources behind Mikrotik VPN?

Greetings!
There is such a problem: in the central and remote offices there were old dead Zuksels as gateways. It was decided to replace them with 951 Mikrotiks.
At the central office there is a server group with a file share. AD, 1c with SQL. It was required to connect a remote office via VPN to access network resources.
I set up an L2TP server at the central office on Mikrotik without ipsec. At the remote office, microt was configured to connect to this server.
Both microtas are tuned plus or minus the same. Access to the Internet, DHCP server to your subnet, routes to the neighboring grid.
At first, both grids rustled normally. A day later, the office started having problems loading pages (the "host definition" hangs for a few seconds when opening pages), and in the remote office, users' access to network resources and disks randomly falls off. Enabling disabling the interface in Windows for a while solves the problem, but then this crap is repeated.
I searched many forums and didn't find anything similar.
Maybe someone faced a similar problem? Or at least offer an option where to dig.

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

4 answer(s)
Report
A
Anton Bulkin, 2018-10-18
@wulxgarnyj

On a fresh head in the morning I sat down to understand.
I found a running DHCP server on one of the servers, made by some other previous admin. Apparently he got along with the zuksels, because dhcp was launched on each zuksel. Disabling this server seems to have solved both problems. Computers on the remote network started to go to the main network normally, page loading works as it should.
Thanks to all!

Report
N
nick56reg, 2018-10-18
@nick56reg

Dig towards IP-Firewall-Filter Rules
You can try to play around with MTU values ​​on L2tp interfaces

Report
M
MityaevMaxim, 2018-10-18
@MityaevMaxim

And you are brave, drive a ton of traffic in the tunnel.
Z.Y. nobody does that. need to work with balls? RDP.

Report
Y
younghacker, 2018-10-18
@younghacker

A picture is worth hundreds of words!
What does the Windows interface have to do with the tunnel?
What is the routing logic/scheme? Default gate for Mikrotiks - two? Does everyone have their own?
What happens on Mikrotik in terms of CPU/RAM/traffic/number of sessions?
What happens to ping from office networks to the Internet and to the external IP of the opposite office?
What about pinging both external IPs from the internet?

Similar questions
R
Rostislav2017-06-27 15:37:43
How to set up pppoe + vpn on windows 10? 1Reply
S
shahneff2019-11-25 21:50:58
How to provide failover web service and ipsec vpn? 1Reply
J
jeezy_th2015-07-23 23:05:18
Change IP Address? 2Reply
V
Vitaly2019-12-03 13:23:29
Which vpn l2tp client (console) for Ubuntu works fine with Mikrotik VPN server? 1Reply
S
Skywalker732015-07-30 13:13:07
Isolated VPN server behind a router? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question