Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
I
I
iCmac2014-01-29 13:36:55
Mikrotik
iCmac, 2014-01-29 13:36:55

What is the best way to implement such a network on Microtik?

ef7221af00fc0a35e1f3d65205c24cf9.jpg
There is a recently assembled LAN with two offices located at a distance of about 1 km from each other. It was necessary to combine these grids with each other and add the ability to remotely connect mobile workers (PC4) to the internal grid. I didn’t work with Mikrotiks before, but I managed to get them almost for free. Tell me what to read, preferably with specific examples at the level of "copy-paste-a little_correct-everything_works" in order to ensure the efficiency of this scheme.
You want PC4 to see PC1, PC2, PC3 and ServerBox, and PC1, PC2, PC3 and ServerBox to see each other. There can be many mobile clients (PC4). It is also desirable to provide the ability to remotely configure all available Mikrotiks (well, except for R1 / R2).
Digging towards VPN tunnels and PPP-L2TP. It turned out to raise the tunnel between Lan1 and Lan2, though nothing is visible beyond the internal interface of the partner.
As always, everything was needed the day before yesterday, and yesterday it should already work ...

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

4 answer(s)
Report
A
Andrewww, 2014-01-30
@iCmac

I don't see much of a problem. How many simultaneously simultaneously remote clients will be?
VPN rises to R1 (for example, I use OVPN), R2 and distribute the config to clients (login, password, keys and certificates as desired). Routing is configured from the VPN network to LANs (on R1 and R2) and that's it. Only
I would swap M1 and R1, the first one will be more interesting for the hardware (I can be confused, look
at the specs )

Report
S
Sergey, 2014-01-29
@edinorog

Need PC4 to see ? what does "saw" mean?

Report
K
kodi, 2014-01-30
@kodi

@iCmac
R1 and R2 - providers? does yours mean M1 and M3? What external IPs are on them (white, gray?)

Report
G
German Sukhachev, 2014-05-16
@g3fox

If your routers see each other without NAT, that is, they can ping each other at the addresses that are hung on the interfaces towards the provider, then:
1. if you have the same subnets, and the addresses do not intersect and you don’t want to change them at all: raise EoIP.
2. if you have different subnets: raise GRE. Register routes to remote networks or enable OSPF for convenience.
If there is NAT between your routers: On M1 we raise an l2tp server to which both remote Mikrotik and any remote clients can connect. l2tp uses UDP as a transport and easily passes through NAT, unlike PTPP. Register routes to remote networks or enable OSPF for convenience.
Looks like I didn't forget anything.

Similar questions
D
deGoyan2018-08-13 11:57:35
How to correctly configure VLAN on Mikrotik (6.41+)? 1Reply
H
HawK2018-08-14 08:36:37
Is it possible to use multiple mac-addresses on one physical Mikrotik port? 2Reply
K
kodi2013-12-26 10:36:47
How to implement vpn connection log on mikrotik? 3Reply
B
boligolov2018-08-15 15:24:22
Did you design the VLAN correctly? 2Reply
A
Azizka2018-08-17 14:04:28
How to block https site on mikrotik? 2Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question