저도 잘 몰라서
여러 사이트 뒤져가며 어찌어찌 성공한 스크립입니다.
댓글로 수정할 곳 알려주시면 반영하도록 하겠습니다.
미크로틱 vpn 설정으로 고생하시는 분께 약간이라도 도움이 되었으면 좋겠습니다.
1) Enable L2TP Server
/interface l2tp-server server set authentication=mschap2 enabled=yes
2) Configure PPP profile
/ppp profile add change-tcp-mss=yes local-address=192.168.17.1 name=ipsec+L2TP remote-address=ipsec-pool use-encryption=yes
/ip pool add name=ipsec-pool range=192.168.17.2-192.168.17.254
3) Creat PPP Secret
/ppp secret add name=newvpn password=vpnpass profile=ipsec+L2TP service=l2tp
4) Add static PPP interface to manage firewall easily
/interface l2tp-server add name=L_newvpn user=yourid
- Additional Configuration
/ip ipsec policy group add name=ipsec+L2TP
/ip ipsec proposal set [find default=yes] enc-algorithms=aes-256-cbc,aes-128-cbc,3des
/ip ipsec peer add address=0.0.0.0/0 enc-algorithm=aes,aes-192,aes-128 generate-policy=port-strict secret=vpnsec
/ip ipsec policy add dst-address=0.0.0.0/0 protocol=udp src-address=0.0.0.0/0 template=yes
Firewall
L2TP traffic – UDP 1701
IKE – UDP 500
IPSec Network Address Translation (NAT-T) – UDP 4500
Àúµµ ÀÌ°Å Çѹø Çغ»´Ù°í
¾Æ¹«°Íµµ ¸ð¸£´Âµ¥ ¸Ç¶¥¿¡ ÇìµùÇÏ´Â ±âºÐÀ¸·Î ´ýº³½À´Ï´Ù.
¼ÖÁ÷È÷ Áö±Ýµµ Àß ¸ô¶ó¿ä. ¤¾¤¾¤¾