Configuring Site-to-Site VPN On MikroTik Routers

If you are looking to set up a secure and stable connection between two or more remote locations, MikroTik Site to Site OpenVPN Server Setup can be your solution. In this tutorial, we will guide you through the process of setting up a Site to Site OpenVPN Server in RouterOS Client.

It is important to note that this tutorial is written in en_us and is targeted towards those who are already familiar with network architecture and administration.

Requirements

Before starting the setup process, you will need to gather the following requirements:

• Two or more MikroTik routers with RouterOS version 6.44.2 or higher.
• Private IP addresses for both ends of the site-to-site VPN.
• Public IP Addresses/IPSec licenses if you are connecting private networks over the internet.
• A dedicated OpenVPN network. Ensure that the OpenVPN network is not part of the main network.

Step 1: Configure Certificates

The first step is to set up certificates for the OpenVPN Server. Certificates allow you to authenticate your devices and are critical for securing your network. Here is a step-by-step guide to configuring certificates:

1. Go to System > Certificates.
2. Select the Certificate Templates tab.
3. Click the Get Default button to populate the certificate form.
4. Fill in the Name and Validity fields and click Apply.
5. Click the Sign button to generate a new certificate.
6. Generate a certificate per device that will connect to the OpenVPN server. Do not use the same certificate for all devices.
7. Save the certificates to a secure location.

Step 2: Configure the OpenVPN Server

After setting up the certificates, the next step is to set up the OpenVPN Server. Here is a step-by-step guide:

1. Go to IP > Settings.
2. Click the VPN tab.
3. Select the OpenVPN Server tab.
4. Fill in the server Name.
5. Select the Distinguished Name option and fill in the details.
6. Under the Certificate tab, select the previously configured certificate.
7. Save the configuration and wait for the server to start.

Step 3: Configure the OpenVPN Client

After setting up the OpenVPN server, the next step is to configure the client. Here is a step-by-step guide:

1. Go to IP > Settings.
2. Click the VPN tab.
3. Select the OpenVPN Client tab.
4. Fill in the client Name.
5. Under the Connection tab, fill in the details of your OpenVPN Server.
6. Under the Certificate tab, select the previously configured certificate.
7. Save the configuration and wait for the client to connect to the server.

Step 4: Configure Network Routes

Once the client is connected to the server, the next step is to configure the network routes. Network routes define the traffic flow within the VPN. Here is how to configure network routes:

1. Go to IP > Routes.
2. Click the + button to add a new route.
3. Fill in the details of the route and click OK.
4. Repeat the process for all the routes that need to be set up.
5. Save the configuration.

Step 5: Test Communication

Finally, after setting up all the necessary configurations, you can test the communication between the two VPN connected networks. Here is how to test the communication:

1. Go to Tools > Pings.
2. Fill in the IP address of the destination and click Start.
3. If the destination responds, then the VPN connection has been successfully established.

Conclusion

Setting up a Site-to-Site OpenVPN Server can at first seem like a daunting task. However, by following the straightforward step-by-step guide outlined above, it can be effortless. Ensure that you have met all the pre-requisites before starting the setup, and follow each step accurately. Doing so guarantees you have a secure and stable VPN connection between your remote locations.

pptp site vpn mikrotik configuration

vpn ipsec mikrotik router site tunnel dhcp address configuration side ip fig gif

ipsec openvpn mikrotik vpn eoip ipip routeros gre routers configure ikev2 nordvpn howto konfiguracja anonima navigazione systemzone elektroda blogamico

vpn mikrotik

Share :