Line 15: |
Line 15: |
| ==Configuration scheme== | | ==Configuration scheme== |
| | | |
− | [[File:Networking_rutxxx_configuration_example_sstp_mikrotik_topology_v1.png|border|class=tlt-border]] | + | [[File:Networking_rutxxx_configuration_example_sstp_mikrotik_topology_v1.png|border|class=tlt-border|1100x1100px]] |
| | | |
| ==Mikrotik (server) configuration== | | ==Mikrotik (server) configuration== |
Line 21: |
Line 21: |
| Connect to MikroTik by using '''WinBox''' application and press '''New Terminal'''. | | Connect to MikroTik by using '''WinBox''' application and press '''New Terminal'''. |
| | | |
− | [[File:Networking_rutxxx_configuration_example_l2tp_ipsec_mikrotik_1_v1.jpg|border|class=tlt-border|1100px]] | + | [[File:Networking_rutxxx_configuration_example_l2tp_ipsec_mikrotik_1_v1.jpg|border|class=tlt-border]] |
| | | |
| Prerequisite for any VPN server is to get certificates sorted. Procedure is exactly the same as for OpenVPN server setup with the slight difference being that common-name really matters. It must match either external IP or external host name – no exceptions. Use these commands to create certificates: | | Prerequisite for any VPN server is to get certificates sorted. Procedure is exactly the same as for OpenVPN server setup with the slight difference being that common-name really matters. It must match either external IP or external host name – no exceptions. Use these commands to create certificates: |
Line 45: |
Line 45: |
| export-certificate ca-certificate export-passphrase="" | | export-certificate ca-certificate export-passphrase="" |
| | | |
− | Instead of editing the default encrypted profile, we can create a new one. Assumption is that your MikroTik will also be a DNS server. And while at it, you can create a bit more imaginative user/password: | + | Instead of editing the default encrypted profile, we can create a new one. Assumption is that your MikroTik will also be a DNS server. And while at it, create secure user/password: |
| | | |
| /ppp | | /ppp |
Line 73: |
Line 73: |
| ==RUTxxx (client) configuration== | | ==RUTxxx (client) configuration== |
| | | |
− | Access RUTxxx WebUI and go to '''Service > VPN > SSTP'''. There create a new configuration by writing configuration name (anything you want) and pressing '''Add''' button. It should appear after a few seconds. Then press '''Edit'''. | + | Access RUTxxx WebUI and go to '''Service > VPN > SSTP'''. There create a new configuration by writing configuration name and pressing '''Add''' button. It should appear after a few seconds. Then press '''Edit'''. |
| | | |
| [[File:Networking_rutxxx_configuration_example_sstp_mikrotik_2_v1.png|border|class=tlt-border]] | | [[File:Networking_rutxxx_configuration_example_sstp_mikrotik_2_v1.png|border|class=tlt-border]] |