Follow us on...
Follow us on G+ Follow us on Twitter Follow us on Facebook Watch us on YouTube
Register
Results 1 to 4 of 4
  1. #1
    Status
    Offline
    MuriD's Avatar
    Baru Gabung
    Join Date
    Nov 2009
    Posts
    4
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0

    Question VPN ke Mikrotik melalui Cisco

    Hi agan - agan,
    sehubungan aku udah kutak katik ternyata belum jalan juga, mohon pencerahan agan - agan untuk kasus yang ini

    kayak gini topologinya:

    Internet
    |
    Cisco R1 --- Switch --- servers
    | |______ Mikrotik M1 --- client C1
    |
    Cisco R2 (Tunnel to R1 out) --- Mikrotik M2 --- client C2
    |
    Mikrotik M3 (bridge+l2tp server) --- client3 C3


    R1 & R2 punya IP public
    M1, M2 & M3 mode bridge
    aku mau buat client C4(dari luar jaringan) untuk bisa konek ke M3 supaya bisa ngobrol sama C1, C2 & C3. kondisi saat ini C1-C3 bisa ngobrol ok Click here to enlarge

    Sejauh ini C4 bisa konek ke M3 tapi hanya ke IP VPN servernya.
    Code:
    [admin@mtik] > ppp profile pr
    Flags: * - default 
     0 * name="default" use-compression=default use-vj-compression=default use-encryption=default only-one=default change-tcp-mss=yes 
    
     1   name="profile-remote" local-address=192.168.1.1 bridge=bridge0 use-compression=yes use-vj-compression=no use-encryption=yes only-one=default change-tcp-mss=yes 
    
     2 * name="default-encryption" use-compression=default use-vj-compression=default use-encryption=yes only-one=default change-tcp-mss=yes
    
    
    [admin@mtik] > ppp secret pr
    Flags: X - disabled 
     #   NAME    SERVICE CALLER-ID   PASSWORD   PROFILE             REMOTE-ADDRESS 
     0   test01  any                 testtest   profile-remote      192.168.1.211
    di R2 sudah ada dmz ke M3.
    Code:
    ip nat inside source static tcp 192.168.1.1 1723 202.xx.xxx.xxx 1723 extendable
    ip nat inside source static udp 192.168.1.1 500 202.xx.xxx.xxx 500 extendable
    kira - kira yang mana yang kelupaan yah, sampe sekarang C4 hanya bisa VPN ke M3 dan bisa ping local-address pd profile (192.168.1.1), dan ga bisa ke ip lainnya.

    Terima kasih sebelumnya untuk pencerahannya

  2. #2
    Status
    Offline
    Anto.PJ's Avatar
    Forum Guru
    Join Date
    May 2011
    Location
    macz
    Posts
    1,696
    Reviews
    Read 0 Reviews
    Downloads
    7
    Uploads
    0
    Feedback Score
    0
    untuk bisa ping, maka dmz all protocol..
    kalo tcp ma udp aja.. pingnya ga bakal lewat..

    protocol ping = ICMP :P

  3. #3
    Status
    Offline
    MuriD's Avatar
    Baru Gabung
    Join Date
    Nov 2009
    Posts
    4
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    makasi bang anto, intinya sih bukan ping, tapi biar semua yang dibutuhin untuk vpn bisa jalan misal l2tp dan gre, kalo itu ok, mau ditambahin ipsec, gitu sih rencananya.

  4. #4
    Status
    Offline
    Anto.PJ's Avatar
    Forum Guru
    Join Date
    May 2011
    Location
    macz
    Posts
    1,696
    Reviews
    Read 0 Reviews
    Downloads
    7
    Uploads
    0
    Feedback Score
    0
    berarti tinggal main routing static :3

 

 

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Download Melalui Wan1 Upload melalui Wan2
    By adhielesmana in forum Tutorial
    Replies: 28
    Last Post: 21-10-2016, 16:33
  2. Replies: 58
    Last Post: 23-10-2012, 22:55
  3. Replies: 2
    Last Post: 01-04-2012, 14:37
  4. Replies: 7
    Last Post: 14-01-2012, 12:33
  5. Replies: 11
    Last Post: 16-07-2011, 20:02

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •