V
V
vadims062017-09-12 14:22:48
openvpn
vadims06, 2017-09-12 14:22:48

VPN L2 via Mikrotik as a OpenVPN client, Centos as a OpenVPN server?

Hello,
the task is to raise L2 VPN from Mikrotik to the OVPN server. At the moment, it is not possible to establish OpenVPN Connection from Mikrotik to the server, on Mikrotik only logs about could not connect
#cat server.conf
proto tcp
dev tap
ca /etc/openvpn/keys/ca.crt
cert /etc/openvpn/keys/server .crt
dh /etc/openvpn/keys/dh2048.pem
ifconfig-pool-persist ipp.txt
server-bridge 10.8.0.4 255.255.255.0 10.8.0.50 10.8.0.100
server-bridge
client-to-client
keepalive 10 120
auth sha1
cipher BF-CBC
persist-key
persist-tun
status /var/log/openvpn-status.log
log /var/log/openvpn.log
log-append /var/log/openvpn.log
verb 9
Both Mikrotik and the server sit behind NAT with the appropriate TCP port forwarding, OpenVPN port, and in the Mikrotik logs, an attempt to exchange keys via ISAKMP is visible, but to the gray address of the Centos server .. This is somewhat embarrassing. Although if he found out about it, it means that he got through to him first
time=00:51:06 topics=ovpn,info message="ovpn-out1: initializing..."
time=00:51:06 topics=ovpn ,info message="ovpn-out1: connecting..."
time=00:51:06 topics=ovpn,debug message="ovpn-out1: disconnected "
time=00:51:06 topics=ovpn,info message=" ovpn-out1: terminating... - could not connect"
time=00:51:06 topics=ovpn,info message="ovpn-out1: disconnected"
time=00:51:07 topics=ipsec,debug,packet message="460 bytes from MIKROTIK_LOCAL_IP[500] to CENTOS_PRIVATE_IP[500]"
I'd be grateful for a tip what's wrong...

Answer the question

In order to leave comments, you need to log in

1 answer(s)
D
Denis Sechin, 2017-09-12
@tamogavk

In the client config on microt proto tcp?
No, it should not connect to a gray IP, only to a white one!

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question