Difference between revisions of "Mikrotik: OpenVPN - Server ke PC dari wiki mikrotik"

Revision as of 12:20, 29 December 2022

Sumber: https://wiki.mikrotik.com/wiki/Manual:Interface/OVPN

Server

/ip pool add name=ovpn-pool range=192.168.77.2-192.168.77.254

/ppp profile add name=ovpn local-address=192.168.77.1 remote-address=ovpn-pool
/ppp secret
  add name=client1 password=123 profile=ovpn
  add name=client2 password=234 profile=ovpn

/interface ovpn-server server set enabled=yes certificate=server

Client

/interface ovpn-client
  add name=ovpn-client1 connect-to=2.2.2.2 user=client1 password=123 disabled=no
/ip route 
  add dst-address=10.5.8.20 gateway=ovpn-client1
  add dst-address=192.168.55.0/24 gateway=ovpn-client1
/ip firewall nat add chain=srcnat action=masquerade out-interface=ovpn-client1

Referensi

https://wiki.mikrotik.com/wiki/Manual:Interface/OVPN

@@ Line 1: / Line 1: @@
 Sumber: https://wiki.mikrotik.com/wiki/Manual:Interface/OVPN
+[[File:Ipsec-road-warrior (1).png]]
-==Certificate==
-===Certificate Generate===
+==Server==
-  /certificate
+  /ip pool add name=ovpn-pool range=192.168.77.2-192.168.77.254
- add name=ca-template common-name=example.com days-valid=3650 key-size=2048 key-usage=crl-sign,key-cert-sign
- add name=server-template common-name=*.example.com days-valid=3650 key-size=2048 key-usage=digital-signature,key-encipherment,tls-server
+  /ppp profile add name=ovpn local-address=192.168.77.1 remote-address=ovpn-pool
-  add name=client-template common-name=client.example.com days-valid=3650 key-size=2048 key-usage=tls-client
+  /ppp secret
-  add name=client1-template common-name=client1.example.com days-valid=3650 key-size=2048 key-usage=tls-client
+   add name=client1 password=123 profile=ovpn
+   add name=client2 password=234 profile=ovpn
-===Certificate Sign===
-Proses signing akan membutuhkan waktu, harap sabar.
-  /certificate
- sign ca-template name=ca-certificate
- sign server-template name=server-certificate ca=ca-certificate
- sign client-template name=client-certificate ca=ca-certificate
- sign client1-template name=client1-certificate ca=ca-certificate
-===Certificate Trust===
- /certificate
- set ca-certificate trusted=yes
- set server-certificate trusted=yes
-===Certificate Export===
+ /interface ovpn-server server set enabled=yes certificate=server
- /certificate
- export-certificate ca-certificate export-passphrase=""
- export-certificate client-certificate export-passphrase=12345678
- export-certificate client1-certificate export-passphrase=12345678
-Cek bahwa sudah di generate menggunakan
+==Client==
- /file print
+  /interface ovpn-client
+   add name=ovpn-client1 connect-to=2.2.2.2 user=client1 password=123 disabled=no
-==Server==
+  /ip route
+   add dst-address=10.5.8.20 gateway=ovpn-client1
-  /interface ovpn-server server set enabled=yes
+    add dst-address=192.168.55.0/24 gateway=ovpn-client1
- /interface ovpn-server server set certificate=server-certificate
+ /ip firewall nat add chain=srcnat action=masquerade out-interface=ovpn-client1
- /interface ovpn-server server print
- /ip pool add name=ovpn-pool range=192.168.77.2-192.168.77.254
-  /ppp profile add name=ovpn local-address=192.168.77.1 remote-address=ovpn-pool
- /ppp secret
-   add name=client1 password=123456 profile=ovpn
-    add name=client2 password=123456 profile=ovpn
-   add name=onno password=123456 profile=ovpn

Difference between revisions of "Mikrotik: OpenVPN - Server ke PC dari wiki mikrotik"

Revision as of 12:20, 29 December 2022

Server

Client

Referensi

Navigation menu

Search