Follow us on...
Follow us on G+ Follow us on Twitter Follow us on Facebook Watch us on YouTube
Register
Results 1 to 3 of 3
  1. #1
    Status
    Offline
    tomisintara's Avatar
    Baru Gabung
    Join Date
    Jan 2011
    Posts
    5
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0

    VPN site to site Mikrotik - Nokia IP 530 (Checkpoint NGX R60)

    Sore para suhu.

    Saya coba config VPN site to site ke server XL dengan topologi seperti ini


    (125.161.19.***)
    (172.31.17.138) > (172.31.17.137) > PPPOE speedy <(202.152.224.2)<(172.30.203.148)
    (ip lan saya) > (ip Mikrotik sy ) > (internet pk speedy)<(router xl) <(server xl yang harus di buka oleh saya)


    dengan konfigurasi di sisi saya seperti ini

    [IMG]



    Tapi saya ping ke 172.30.203.148 timeout. dan di log nya pun tidak ada perubahan apa2.
    Apakan settingan saya salah?
    Kalo para suhu pernah menerapkan vpn seperti ini, tolong saya minta bocoranya.
    atau apakah punya referensi lain?


    Terima Kasih sebelumnya.

  2. #2
    Status
    Offline
    dorisbanget's Avatar
    Calon Member
    Join Date
    Oct 2011
    Posts
    75
    Reviews
    Read 0 Reviews
    Downloads
    1
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by tomisintara Click here to enlarge
    Sore para suhu.

    Saya coba config VPN site to site ke server XL dengan topologi seperti ini


    (125.161.19.***)
    (172.31.17.138) > (172.31.17.137) > PPPOE speedy <(202.152.224.2)<(172.30.203.148)
    (ip lan saya) > (ip Mikrotik sy ) > (internet pk speedy)<(router xl) <(server xl yang harus di buka oleh saya)


    dengan konfigurasi di sisi saya seperti ini

    Click here to enlarge[/URL]



    Tapi saya ping ke 172.30.203.148 timeout. dan di log nya pun tidak ada perubahan apa2.
    Apakan settingan saya salah?
    Kalo para suhu pernah menerapkan vpn seperti ini, tolong saya minta bocoranya.
    atau apakah punya referensi lain?


    Terima Kasih sebelumnya.
    coba di ketik aja gan

  3. #3
    Status
    Offline
    tomisintara's Avatar
    Baru Gabung
    Join Date
    Jan 2011
    Posts
    5
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0

    begini kk konfigurasinya

    [tomi@MikroTik] /ip ipsec policy> pr
    Flags: X - disabled, D - dynamic, I - inactive
    0 src-address=172.31.17.136/30 src-port=any dst-address=172.30.203.0/24
    dst-port=any protocol=all action=encrypt level=require
    ipsec-protocols=esp tunnel=yes sa-src-address=125.161.19.143
    sa-dst-address=202.152.224.2 proposal=default priority=-253
    [tomi@MikroTik] /ip ipsec policy>

    [tomi@MikroTik] /ip ipsec peer> pr
    Flags: X - disabled
    0 address=202.152.224.2/32 port=500 auth-method=pre-shared-key
    secret="Xl!R#TpR0F35!0N4LR19#VpN" generate-policy=yes exchange-mode=main
    send-initial-contact=yes nat-traversal=yes my-id-user-fqdn=""
    proposal-check=obey hash-algorithm=md5 enc-algorithm=3des
    dh-group=modp1024 lifetime=24m lifebytes=0 dpd-interval=disable-dpd
    dpd-maximum-failures=8
    [tomi@MikroTik] /ip ipsec peer>

    [tomi@MikroTik] /ip ipsec proposal> pr
    Flags: X - disabled
    0 name="default" auth-algorithms=md5 enc-algorithms=3des lifetime=1h
    pfs-group=none
    [tomi@MikroTik] /ip ipsec proposal>

    [tomi@MikroTik] /ip ipsec installed-sa> pr
    Flags: A - AH, E - ESP, P - pfs
    [tomi@MikroTik] /ip ipsec installed-sa>



    [tomi@MikroTik] /ip firewall filter> pr
    Flags: X - disabled, I - invalid, D - dynamic
    0 chain=input action=accept src-address=202.152.224.2

    1 chain=customer action=accept src-address=172.30.203.0/24
    dst-address=172.31.17.136/30 out-interface=LAN
    [tomi@MikroTik] /ip firewall filter>

    tomi@MikroTik] /ip firewall nat> pr
    Flags: X - disabled, I - invalid, D - dynamic
    0 chain=srcnat action=accept src-address=172.31.17.136/30
    dst-address=172.30.203.0/24

    1 chain=srcnat action=masquerade out-interface=speedy
    [tomi@MikroTik] /ip firewall nat>


    Mohon bantuanya plsss

 

 

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Blokir site porno dengan DNS static di mikrotik
    By cak-opiq in forum General Networking
    Replies: 25
    Last Post: 10-03-2013, 12:37
  2. Bagaimana mereserved bandwidth (QoS) pada PPTP site to site
    By lee140685 in forum General Networking
    Replies: 1
    Last Post: 03-07-2011, 16:14
  3. ngeblock site porno tanpa proxy di mikrotik
    By rhdyt in forum Articles
    Replies: 25
    Last Post: 18-10-2010, 23:48
  4. ngeblock site porn tanpa proxy di mikrotik
    By rhdyt in forum Beginner Basics
    Replies: 11
    Last Post: 26-09-2010, 22:38
  5. [ask] blok multi site di mikrotik
    By xhernobyl in forum Beginner Basics
    Replies: 0
    Last Post: 05-11-2009, 10:43

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •