技术文章 Network Ovpn Over Mikrotik Windows

Ovpn Over Mikrotik Windows

Skip TOC

文章索引

  1. Ovpn Over Mikrotik Windows
  2. Certfacates and key generation from Linux
  3. Mikrotik OpenVPN Server Configuration: current position

Mikrotik OpenVPN Server Configuration

 

Mikrotik OpenVPN Server Configuration: 

Import the ovpn root ca, server certificate and key.

  •  Connect to the Mikrotik using Winbox. Goto the Files,there you will find all the files, that you have copied from Linux server:

Server-1

 

  • Then goto the System —> Certificates:

Server-2

  • Click on Import Button, then select the ca certificate file (in my case, it is ca.crt) and press Import:

Server-3

Double click on the imported certificate and change its name (This step is optional):

Server-4

Once again,click on Import Button, then select the server certificate file (in my case, it is mikrotik.crt) and pressImport:

Server-5

Next, import the server key using the above step:

Server-6

Double click on the imported server certificate and change its name (This step is optional):

Server-7

Once you have imported the private key, the server certificate will get the “KR” written in-front of it:

K: Decrypted-Private-Key R: RSA

Server-8

Create the IP Pool for the openvpn client.

  •  Goto the IP—->Pool:

Server-9

 

  • Create each pool of /30 subnet:

(Reason to create the /30 subnet is that, I am getting the below mentioned error on Windows machine, and that trick work for me)

There is a problem in your selection of --ifconfig endpoints [local=172.25.10.2, remote=172.25.10.1]. The local and remote VPN endpoints must exist within the same 255.255.255.252 subnet. This is a limitation of --dev tun when used with the TAP-WIN32 driver. Try 'openvpn --show-valid-subnets' option for more info.

Server-10

Create as many pool as you have openvpn clients:

Server-11

Give in the name of the immediately next pool name in the “Next Pool” field:

Server-12

Create the profile for openvpn clients

  • Selecting “Profiles” tab and click on + button:

Server-13

Create user for openvpn client

  • Move over to the Secrets tab and click on the + button to create user for openvpn client:

Server-14

Enable OpenVpn service

  • Enable OpenVPN Service and Select Valid Certificate by moving to the Interface take and click on “OVPN Server“:

Server-15

Windows as OpenVPN Client installation & Configuration:

Download free OpenVPN client for windows from here, and install it. Once it’s installed, move to the openvpn directory(C:\Program Files\OpenVPN\config):

Windows-1

Download the sample configuration file from here. Modify it as per your requirement:

Windows-2

Create the auth.cfg file inside the C:\Program Files\OpenVPN\config folder, with the openvpn username and password that you have created on mikrotik server:

Windows-3

Run the OpenVPN client with Administrator privileges:

Windows-4

Right click on the openvpn icon at System Tray and click on “Connect“:

Windows-5

Once, it will be connected, will show you the similar detail:

Windows-6

Check the Routing Table:

route PTINT -4

Windows-7

Ping to the internal host:

Windows-8

Success :-)

Hope this will help you!

Please Remember me in your prayers!

 

第 3页共3页 All Pages

上页
下页
scroll back to top
Top