Re: [AFMUG] Reaching a Mikrotik behind NAT

Wed, 13 Apr 2022 09:42:06 -0700

I ended up using wireguard, it's been working perfectly for the last 2 days. Even was able to get the Boss to setup the Mikrotik after I sent him the config file. The routing/firewall rules were just a little learning curve in ROS7, but it's all working. Even routed a /24 of private IP space over to it through the tunnel. 

On 4/13/2022 11:33 AM, Gino A. Villarini wrote:


Zerotier




<https://aeronetpr.com>   *Gino Villarini*
Founder / President
@GVillarini
787.273.4143 |

<https://www.inc.com/profile/aeronet> 
<https://www.facebook.com/aeronetpr> 
<https://www.instagram.com/aeronetpr/> 
<https://www.linkedin.com/company/aeronet-broadband-corp> 
<https://twitter.com/aeronetpr> 
<https://www.youtube.com/user/AeroNetPR> 	<https://wa.me/17872734144>

Metro Office Park #18 Suite 304 Guaynabo, PR 00968
<https://homefi.pr>


*From: *AF <af-boun...@af.afmug.com> on behalf of Josh Luthman 
<j...@imaginenetworksllc.com>

*Date: *Wednesday, April 13, 2022 at 12:31 PM
*To: *AnimalFarm Microwave Users Group <af@af.afmug.com>
*Subject: *Re: [AFMUG] Reaching a Mikrotik behind NAT


I'm using L2TP myself.  This is for AT&T LTE devices.  Works pretty 
well as a protocol, even on the complete garbage service that AT&T 
provides.



There's also a company that offers a solution for this: 
https://www.remotewinbox.com/auth/blog/Home



On Wed, Apr 13, 2022 at 11:10 AM Trey Scarborough <t...@3dsc.co 
<mailto:t...@3dsc.co>> wrote:


    in my experience the best reliable way is to use sstp as it uses
    normal
    http protocol and can traverse most NAT/firewall instances. I have
    had
    issues with the others wiregaurd is nice , but if all you need is
    access
    to remotely manage and monitor equipment and there is not much
    bandwidth
    then the simplicity of sstp has been easier in most instances for me.

    On 4/11/22 10:11 AM, Nate Burke wrote:
    > Before I spend half a day lab'ing the best way, advice on the
    best way
    > to access/monitor a Mikrotik behind a NAT Connection?  I do not
    have
    > the ability to do any port forwarding.  It's possible it may
    also be
    > behind more than 1 NAT layer.
    >
    > I'd also like a couple of the devices behind the Mikrotik to be
    > remotely accessible as well (UPS), but a majority of the devices
    will
    > go straight out the NAT connection and don't need to tunnel.
    >
    > Looks like PPTP/L2TP or Wireguard?  Is one easier/more reliable?
    >


    -- 
    AF mailing list

    AF@af.afmug.com <mailto:AF@af.afmug.com>
    http://af.afmug.com/mailman/listinfo/af_af.afmug.com






-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com






















					Reply via email to