Answer the question
In order to leave comments, you need to log in
J
J
Jinglebens2019-02-15 19:25:33
Jinglebens, 2019-02-15 19:25:33
Router replacement, OpenVPN/LAN issue. What is missing?
Old configuration: all devices on the local network are visible (192.168.1.0/24)
OpenVPN client (172.17.1.x)
OpenVPN server (192.168.1.17, 172.17.1.1)
NetGear router on ubuntu (NAT to OpenVPN server IP address + route 172.17 .1.0/24 gateway=192.168.1.17, no firewall rules).
New configuration: only OpenVPN server (192.168.1.17, 172.17.1.1) is visible, devices in the local network (192.168.1.0/24) are not visible
OpenVPN client (172.17.1.x)
OpenVPN server (192.168.1.17, 172.17.1.1) Mikrotik on
Ubuntu has the following settings:
/ip firewall nat
add action=masquerade chain=srcnat ipsec-policy=out,none out-interface-list=WAN
add action=dst-nat chain=dstnat disabled=no dst-port=1194 in-interface=ether1-WAN protocol=udp to-addresses=192.168.1.17
/ip route
add distance=1 dst-address=172.17.1.0/24 gateway=192.168.1.17
Question: what filtering rule should be added on Mikrotik above all other drop to get access to the local network (192.168.1.0/24)?
Thanks in advance to all who answer.
1 answer(s)
@Maxlinus
what is this for?
masquerade fix
add action=masquerade chain=srcnat out-interface-list=WAN
G
Gregory, 2019-02-16 @Maxlinus
add action=masquerade chain=srcnat ipsec-policy=out,none out-interface-list=WAN
add action=dst-nat chain=dstnat disabled=no dst-port=1194 in-interface=ether1-WAN protocol=udp to- addresses=192.168.1.17
what is this for?
masquerade fix
add action=masquerade chain=srcnat out-interface-list=WAN
Similar questions
A
L
I
Ivan Eliseev2017-03-19 19:01:18
How to set up forwarding from an external network in Mikrotik?
2Reply
S
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question