Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
V
V
vityushka2014-10-30 22:53:59
VPN
vityushka, 2014-10-30 22:53:59

Port forwarding through 2 Mikrotik and VPN?

Good day.
There is the following configuration:
- Office1: Mikrotik1 with a real ip-address (two interfaces: Inet (the provider's channel comes there) and LAN (internal IP Mikrotika 192.168.1.200)
- Office2: Mikrotik2 with a gray IP (two interfaces: Inet with a gray IP from provider and LAN (internal IP Mikrotik 192.168.1.1)
- Server with services (for example: Web port 80), located behind Mikrotik2, connected to LAN (IP 192.168.1.6)
- To simplify access from Mikrotik2 to Mikrotik1, raised a PPTP tunnel ( IP Mikrotik2 in the tunnel 172.19.1.1)
There is such a non-trivial task:
It is necessary to provide access to the server resources behind Mikrotik2 through the white IP Mikrotik1.
For example: I access port 80 of the Inet interface Mikrotik1 >> Mikrotik1 forwards the request to the PPTP interface Mikrotik2 >> Mikrotik2 sends the request to the internal server via the LAN interface.
In general, at first glance, the problem is not very complicated (but non-standard). In theory, there should be some kind of tricky NAT here, but somehow an attempt to solve the issue in a hurry didn’t work, I already forgot the basics.

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
C
Cool Admin, 2014-10-31
@ifaustrue

And why not just forward to the server address behind Mikrotik2, provided that all routes are built (you seem to have intersecting IP networks) and the traffic is not blocked? Well, that is, it is enough to do masquerading in one place, then traffic may well go through your set already with the addressing that you use, you just need to configure this walking correctly.
Correctly I understood that all grain of a problem in the intersecting IP networks of both offices? If this is not solvable, then yes, listen to Artyom. Only double nat.

Report
D
Denis Shishkov, 2014-11-03
@deniracer

Wouldn't it be easier then to get rid of the very grain of the problem? Twisting such crutches when expanding tasks in the future will be, to put it mildly, not easy.

Similar questions
N
NemoiDDOS2021-09-25 18:44:09
Which country to choose for a personal VPN server? 5Reply
A
Andrey2016-02-12 14:10:10
How to issue a VPN client Kerio Control IP from the local network? 0Reply
I
iweron2013-09-08 01:26:29
No connection to VPN servers 7Reply
R
rolikoff2013-09-13 12:00:05
How to programmatically create a new VPN interface on Android >= 4.0 1Reply
P
PC-Zzz2016-02-18 05:12:49
How to enter VPN L2TP/IPsec settings correctly? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question