Hello everyone,
My network is as follow:
ROUTER -> MIKROTIK -> NAS
Basically, I have a NAS physically connected to the Mikrotik, on which a VPN is configured via OVPN.
I can successfully connect to the VPN and the NAS remotely, my question now is: how do I connect to the NAS from the router network without having to go through the VPN?
I think the most ideal configuration is to connect the NAS to the router, but in that case is it possible to access the router network from the outside by connecting to the Mikrotik VPN? If yes, how can I achieve this?
Router IP: 192.168.10.1
Mikrotik on Router: 192.168.10.200
Mikrotik Network: 192.168.88.1
Mikrotik DHCP Range: 192.168.88.10 -1 92.168.88.254
VPN Network is on the same DHCP of Mikrotik: 192.168.88.0
NAS IP: 192.168.88.250
Thank you everyone in advice
Re: VPN setup question
Hi,
Some options.
Option 1
Push a route to the client (or set it up on OVPN client) of 192.168.10.0/24 via the existing OVPN connection.
Then let the (presumably existing) configuration on the Mikrotik route and NAT this to the 192.168.10.0/24 Mikrotik WAN network.
The next couple Both basically involve using the Mikrotik as a bridge, with ip address 192.168.10.200/24.
All ports connected to the bridge, no Wan interface, default gateway 192.168.10.1
Option 2
If VPN is using Tap interfaces.
Bridge the OVPN to the bridge, should be close to working.
Option 3
If using TUN interfaces.
Make the OVPN address range a subrange of 192.168.10.0/24
And ensure there are no devices on the lan in that range, and the dhcp server skips that range.
Eg. 192.168.10.224/28 (range from 224 to 239)
create a pool on the mikrotik for the openvpn server with this range.
(probably first for local address)
Assign OVPN clients as required to this range.
Then enable proxy arp on the bridge of the Mikrotik.
You would need to push the route 192.168.10.0/24 to the clients.
(or set it up on the client)
Some options.
Option 1
Push a route to the client (or set it up on OVPN client) of 192.168.10.0/24 via the existing OVPN connection.
Then let the (presumably existing) configuration on the Mikrotik route and NAT this to the 192.168.10.0/24 Mikrotik WAN network.
The next couple Both basically involve using the Mikrotik as a bridge, with ip address 192.168.10.200/24.
All ports connected to the bridge, no Wan interface, default gateway 192.168.10.1
Option 2
If VPN is using Tap interfaces.
Bridge the OVPN to the bridge, should be close to working.
Option 3
If using TUN interfaces.
Make the OVPN address range a subrange of 192.168.10.0/24
And ensure there are no devices on the lan in that range, and the dhcp server skips that range.
Eg. 192.168.10.224/28 (range from 224 to 239)
create a pool on the mikrotik for the openvpn server with this range.
(probably first for local address)
Assign OVPN clients as required to this range.
Then enable proxy arp on the bridge of the Mikrotik.
You would need to push the route 192.168.10.0/24 to the clients.
(or set it up on the client)