Re: [Mikrotik Users] Site-to-Site VPN

2018-03-12 Thread Jesse Dupont via Mikrotik-users
We have several “network-to-network” L2TP w/IPSEC VPNs for the purpose of 
management (not end user traffic) and they present like any other link for the 
purposes of routing. If you only need to initiate connections from one end of 
the tunnel (I.e. from management stations to devices across the tunnel), you 
can simply masquerade it at the end that initiates the connections and all the 
management traffic will come from an IP known to the other network (if your VPN 
terminates at the other network’s gateway of last resort). If you need traffic 
to go both ways, initiated from either end, then you can turn on OSPF on both 
ends and just redistribute static from the static end. Of course, make sure 
there are. Overlapping prefixes.


From: mikrotik-users-boun...@wispa.org  on 
behalf of David McCullough via Mikrotik-users 
Sent: Monday, March 12, 2018 7:28:00 AM
To: Mikrotik-users@wispa.org
Subject: [Mikrotik Users] Site-to-Site VPN

We are expanding into a new market, which will extend our service base. This 
new market currently has a fiber drain and we will be connecting these two 
markets onto a single network in the coming months. In the mean time we need to 
implement a site-to-site VPN so that we can monitor the new markets equipment, 
migrate to our DHCP server, etc.

Both networks are utilizing MikroTik equipment. Our network is utilizing OSPF, 
while the new market just has static routes. We are looking at the various 
options to integrate the site-to-site VPN. We are thinking to implement L2TP. 
Will L2TP provide any routing? Will we need to enable GRE? Should we just add 
static routes, since it’s temporary.

Thanks,

David McCullough
d...@hcwireless.com<mailto:d...@hcwireless.com>
Hill Country Wireless & Technology
830.225.1465 (o)
830.309.0473 (c)
www.hcwireless.com<http://www.hcwireless.com/>



___
Mikrotik-users mailing list
Mikrotik-users@wispa.org
http://lists.wispa.org/mailman/listinfo/mikrotik-users


Re: [Mikrotik Users] Site-to-Site VPN

2018-03-12 Thread Scott Reed via Mikrotik-users
About the same here.  I have pptp connections to several remote 
networks.  Setup routing in the local MT to know how to get to the 
address ranges of each network. Everything just works.  I can WinBox to 
anything on any network, browse devices on private addresses, etc.



On 3/12/2018 11:28 AM, Josh Luthman via Mikrotik-users wrote:

>L2TP provide any routing

Are you serious?

Sounds like you just want to make it easy to manage.  I do this from 
my house to our network with PPTP and EOIP.  I have an EOIP tunnel 
that puts the office network on the "wan" of my home Mikrotik that 
masquerades all of my traffic as a management office IP.  Works pretty 
flawlessly, I can't think of any issues I've had in the last 2-3 years 
doing this.


If you're looking at passing customer traffic/DHCP server/etc over the 
link I would strongly suggest just putting another box at the other 
network, like another Powercode BMU/Mikrotik/etc.



Josh Luthman
Office: 937-552-2340
Direct: 937-552-2343
1100 Wayne St
Suite 1337
Troy, OH 45373

On Mon, Mar 12, 2018 at 9:28 AM, David McCullough via Mikrotik-users 
mailto:mikrotik-users@wispa.org>> wrote:


We are expanding into a new market, which will extend our service
base. This new market currently has a fiber drain and we will be
connecting these two markets onto a single network in the coming
months. In the mean time we need to implement a site-to-site VPN
so that we can monitor the new markets equipment, migrate to our
DHCP server, etc.

Both networks are utilizing MikroTik equipment. Our network is
utilizing OSPF, while the new market just has static routes. We
are looking at the various options to integrate the site-to-site
VPN. We are thinking to implement L2TP. Will L2TP provide any
routing? Will we need to enable GRE? Should we just add static
routes, since it’s temporary.

Thanks,

David McCullough
d...@hcwireless.com 
Hill Country Wireless & Technology

830.225.1465  (o)
830.309.0473  (c)

www.hcwireless.com 


___
Mikrotik-users mailing list
Mikrotik-users@wispa.org 
http://lists.wispa.org/mailman/listinfo/mikrotik-users




 
	Virus-free. www.avg.com 
 



<#DAB4FAD8-2DD7-40BB-A1B8-4E2AA1F9FDF2>


___
Mikrotik-users mailing list
Mikrotik-users@wispa.org
http://lists.wispa.org/mailman/listinfo/mikrotik-users


--
Scott Reed
SBRConsulting, LLC
WISPA Vendor Member

___
Mikrotik-users mailing list
Mikrotik-users@wispa.org
http://lists.wispa.org/mailman/listinfo/mikrotik-users


Re: [Mikrotik Users] Site-to-Site VPN

2018-03-12 Thread Ben Matson via Mikrotik-users
I’m not 100% sure Mikrotik would support it but the standard when you need 
routing over an encrypted VPN is to build a GRE tunnel runs over the encrypted 
(generally IPSEC) tunnel to allow a routing adjacency to form. 

 

 

From: mikrotik-users-boun...@wispa.org  On 
Behalf Of David McCullough via Mikrotik-users
Sent: Monday, March 12, 2018 6:28 AM
To: Mikrotik-users@wispa.org
Subject: [Mikrotik Users] Site-to-Site VPN

 

We are expanding into a new market, which will extend our service base. This 
new market currently has a fiber drain and we will be connecting these two 
markets onto a single network in the coming months. In the mean time we need to 
implement a site-to-site VPN so that we can monitor the new markets equipment, 
migrate to our DHCP server, etc.

 

Both networks are utilizing MikroTik equipment. Our network is utilizing OSPF, 
while the new market just has static routes. We are looking at the various 
options to integrate the site-to-site VPN. We are thinking to implement L2TP. 
Will L2TP provide any routing? Will we need to enable GRE? Should we just add 
static routes, since it’s temporary.

 

Thanks,

 

David McCullough
 <mailto:d...@hcwireless.com> d...@hcwireless.com
Hill Country Wireless & Technology

830.225.1465 (o)
830.309.0473 (c)

 <http://www.hcwireless.com/> www.hcwireless.com

 

 

 

___
Mikrotik-users mailing list
Mikrotik-users@wispa.org
http://lists.wispa.org/mailman/listinfo/mikrotik-users


Re: [Mikrotik Users] Site-to-Site VPN

2018-03-12 Thread Josh Luthman via Mikrotik-users
>L2TP provide any routing

Are you serious?

Sounds like you just want to make it easy to manage.  I do this from my
house to our network with PPTP and EOIP.  I have an EOIP tunnel that puts
the office network on the "wan" of my home Mikrotik that masquerades all of
my traffic as a management office IP.  Works pretty flawlessly, I can't
think of any issues I've had in the last 2-3 years doing this.

If you're looking at passing customer traffic/DHCP server/etc over the link
I would strongly suggest just putting another box at the other network,
like another Powercode BMU/Mikrotik/etc.


Josh Luthman
Office: 937-552-2340
Direct: 937-552-2343
1100 Wayne St
Suite 1337
Troy, OH 45373

On Mon, Mar 12, 2018 at 9:28 AM, David McCullough via Mikrotik-users <
mikrotik-users@wispa.org> wrote:

> We are expanding into a new market, which will extend our service base.
> This new market currently has a fiber drain and we will be connecting these
> two markets onto a single network in the coming months. In the mean time we
> need to implement a site-to-site VPN so that we can monitor the new markets
> equipment, migrate to our DHCP server, etc.
>
>
>
> Both networks are utilizing MikroTik equipment. Our network is utilizing
> OSPF, while the new market just has static routes. We are looking at the
> various options to integrate the site-to-site VPN. We are thinking to
> implement L2TP. Will L2TP provide any routing? Will we need to enable GRE?
> Should we just add static routes, since it’s temporary.
>
>
>
> Thanks,
>
>
>
> David McCullough
> d...@hcwireless.com
> Hill Country Wireless & Technology
>
> 830.225.1465 <(830)%20225-1465> (o)
> 830.309.0473 <(830)%20309-0473> (c)
>
> www.hcwireless.com
>
>
>
>
>
>
>
> ___
> Mikrotik-users mailing list
> Mikrotik-users@wispa.org
> http://lists.wispa.org/mailman/listinfo/mikrotik-users
>
>
___
Mikrotik-users mailing list
Mikrotik-users@wispa.org
http://lists.wispa.org/mailman/listinfo/mikrotik-users


Re: [Mikrotik Users] Site-to-Site VPN

2018-03-12 Thread Mike Francis, JMF Solutions, Inc. via Mikrotik-users
IPV6
-- 
Mike Francis
JMF Solutions, Inc
251-517-5069


On March 12, 2018 8:28:00 AM CDT, David McCullough via Mikrotik-users 
 wrote:
>We are expanding into a new market, which will extend our service base.
>This new market currently has a fiber drain and we will be connecting
>these
>two markets onto a single network in the coming months. In the mean
>time we
>need to implement a site-to-site VPN so that we can monitor the new
>markets
>equipment, migrate to our DHCP server, etc.
>
>
>
>Both networks are utilizing MikroTik equipment. Our network is
>utilizing
>OSPF, while the new market just has static routes. We are looking at
>the
>various options to integrate the site-to-site VPN. We are thinking to
>implement L2TP. Will L2TP provide any routing? Will we need to enable
>GRE?
>Should we just add static routes, since it’s temporary.
>
>
>
>Thanks,
>
>
>
>David McCullough
>d...@hcwireless.com
>Hill Country Wireless & Technology
>
>830.225.1465 (o)
>830.309.0473 (c)
>
>www.hcwireless.com
___
Mikrotik-users mailing list
Mikrotik-users@wispa.org
http://lists.wispa.org/mailman/listinfo/mikrotik-users


Re: [Mikrotik Users] Site-to-Site VPN

2018-03-12 Thread Troy Gibson, Byhalia.net, LLC via Mikrotik-users
Set up Teamviewer to a computer in the new area to monitor it until you can 
connect the networks like you want.


Troy Gibson
Sent from my Verizon, Samsung Galaxy smartphone
 Original message From: Roy via Mikrotik-users 
 Date: 3/12/18  10:34 AM  (GMT-05:00) To: David 
McCullough via Mikrotik-users  Subject: Re: [Mikrotik 
Users] Site-to-Site VPN 

Look into SSTP.  We use it to monitor
  the customer's network and provide remote access to the router. 
  It does provide some routing at the server end.

  

  

  

  On 3/12/2018 6:28 AM, David McCullough via Mikrotik-users wrote:



  
  
  
  
We are expanding into a new market, which
  will extend our service base. This new market currently has a
  fiber drain and we will be connecting these two markets onto a
  single network in the coming months. In the mean time we need
  to implement a site-to-site VPN so that we can monitor the new
  markets equipment, migrate to our DHCP server, etc.
 
Both networks are utilizing MikroTik
  equipment. Our network is utilizing OSPF, while the new market
  just has static routes. We are looking at the various options
  to integrate the site-to-site VPN. We are thinking to
  implement L2TP. Will L2TP provide any routing? Will we need to
  enable GRE? Should we just add static routes, since it’s
  temporary.
 
Thanks,
 
David McCullough

  d...@hcwireless.com

  Hill Country Wireless & Technology
830.225.1465 (o)

  830.309.0473 (c)
www.hcwireless.com
 
 
 
  
  

  
  

  ___
Mikrotik-users mailing list
Mikrotik-users@wispa.org
http://lists.wispa.org/mailman/listinfo/mikrotik-users




  ___
Mikrotik-users mailing list
Mikrotik-users@wispa.org
http://lists.wispa.org/mailman/listinfo/mikrotik-users


Re: [Mikrotik Users] Site-to-Site VPN

2018-03-12 Thread Roy via Mikrotik-users

  
  
Look into SSTP.  We use it to monitor
  the customer's network and provide remote access to the router. 
  It does provide some routing at the server end.
  
  
  
  On 3/12/2018 6:28 AM, David McCullough via Mikrotik-users wrote:


  
  
  
  
We are expanding into a new market, which
  will extend our service base. This new market currently has a
  fiber drain and we will be connecting these two markets onto a
  single network in the coming months. In the mean time we need
  to implement a site-to-site VPN so that we can monitor the new
  markets equipment, migrate to our DHCP server, etc.
 
Both networks are utilizing MikroTik
  equipment. Our network is utilizing OSPF, while the new market
  just has static routes. We are looking at the various options
  to integrate the site-to-site VPN. We are thinking to
  implement L2TP. Will L2TP provide any routing? Will we need to
  enable GRE? Should we just add static routes, since it’s
  temporary.
 
Thanks,
 
David McCullough
  d...@hcwireless.com
  Hill Country Wireless & Technology
830.225.1465 (o)
  830.309.0473 (c)
www.hcwireless.com
 
 
 
  
  
  
  
  ___
Mikrotik-users mailing list
Mikrotik-users@wispa.org
http://lists.wispa.org/mailman/listinfo/mikrotik-users



  

___
Mikrotik-users mailing list
Mikrotik-users@wispa.org
http://lists.wispa.org/mailman/listinfo/mikrotik-users


[Mikrotik Users] Site-to-Site VPN

2018-03-12 Thread David McCullough via Mikrotik-users
We are expanding into a new market, which will extend our service base.
This new market currently has a fiber drain and we will be connecting these
two markets onto a single network in the coming months. In the mean time we
need to implement a site-to-site VPN so that we can monitor the new markets
equipment, migrate to our DHCP server, etc.



Both networks are utilizing MikroTik equipment. Our network is utilizing
OSPF, while the new market just has static routes. We are looking at the
various options to integrate the site-to-site VPN. We are thinking to
implement L2TP. Will L2TP provide any routing? Will we need to enable GRE?
Should we just add static routes, since it’s temporary.



Thanks,



David McCullough
d...@hcwireless.com
Hill Country Wireless & Technology

830.225.1465 (o)
830.309.0473 (c)

www.hcwireless.com
___
Mikrotik-users mailing list
Mikrotik-users@wispa.org
http://lists.wispa.org/mailman/listinfo/mikrotik-users