Mikrotik VPN server - why don't pings pass between clients?

O

OrangePi2019-04-23 14:59:56

VPN

OrangePi, 2019-04-23 14:59:56

Hello!
There is Mikrotik, where PPTP and L2TP servers are raised, with a white ip, with its own local network 192.168.88.0/24
. There are two types of client:

another mikrotik on PPTP, with a local network 192.168.2.0/24 (ppp remote address 192.168.10.2). Its LAN must be reachable from the LAN of the central router with VPN server (192.168.88.0/24), this works, as well as from other VPN clients (remote address pool 192.168.10.3-192.168.10.254) and this does not work
PC win10 on L2TP, you need to get access from it...

Registered route:

add distance=1 dst-address=192.168.2.0/24 gateway=192.168.10.2

Eventually:

from the Mikrotik server, as well as its local network 192.168.88.0/24, clients and devices in the local network of the client-router are pinged
from the second client, the client-router is not pinged, and its LAN, respectively, is also not visible.

In general, how to make it possible to access the router-client and its networks both from the local network 192.168.88.0/24 and from the remote VPN client on the PC?

Reply

Answer the question

In order to leave comments, you need to log in

2 answer(s)

2

20ivs, 2019-04-24
@20ivs

Let's start with the fact that the pool of clients, in a good way, should not be "remote address pool 192.168.10.3-192.168.10.254", but in the network of the router to which they connect. or, if they need a separate subnet, then there must be a route.
192.168.10.2 is the vpn connection interface, not the clients subnet. add distance=1 dst-address=192.168.2.0/24 gateway=192.168.10.2 is the route to the 192.168.2.0/24 subnet through the vpn interface, not the route to the 192.168.10.0/24 subnet

R

Roman Koksharov, 2019-05-05
@allivut

Is proxy arp enabled in the interfaces?