What is PPTP ?
The Point-to-Point Tunneling Protocol (PPTP) is a method for implementing virtual private networks. PPTP uses a control channel over TCP and a GRE tunnel operating to encapsulate PPP packets. The PPTP specification does not describe encryption or authentication features and relies on the Point-to-Point Protocol being tunneled to implement security functionality. However, the most common PPTP implementation shipping with the Microsoft Windowsproduct families implements various levels of authentication and encryption natively as standard features of the Windows PPTP stack. The intended use of this protocol is to provide security levels and remote access levels comparable with typical VPN products.
What is RouterOS ?
RouterOS is The main product of MikroTik is a Linux-basedoperating system known as MikroTik RouterOS. Installed on the company’s proprietary hardware (RouterBOARD), or on standard x86-based computers, it turns the computer into a network router and implements various additional features, such as firewalling, virtual private network (VPN) service and client, bandwidth shaping and quality of service, wireless access point functions and other commonly used features when interconnecting networks. The system is also able to serve as a captive-portal-based hotspot system. The operating system is licensed in increasing service levels, each releasing more of the available RouterOS features. A MS Windows application called Winbox provides a graphical user interface for the RouterOS configuration and monitoring, but RouterOS also allows access via FTP, telnet, and secure shell (SSH). An application programming interface is available for direct access from applications for management and monitoring.
On Mikrotik Side
1.Setting IP address
- Configure interface that is connected to WAN.
/ ip address add address=122.200.xxx.158/27 network=122.200.xxx.128 broadcast=122.200.xxx.159 interface=ether1
- Configure second interface for our Local Network.
/ ip address add address=192.168.48.254/24 network=192.168.48.0 broadcast=192.168.48.255 interface=ether2
2.Setting Route
Goto menu IP > Routes , in here add a new Static ROUTE by pressing PLUS sign. Destination=0.0.0.0/0 , set the gateway to the gateway of the interface connected to INTERNET gateway=122.200.xxx.129. Then Press APPLY and OK.
3.Setting DNS
Goto menu IP > DNS, press the settings butting. Enter the primary and secondary DNS Server’s IP provided by your ISP or You can use opendns Google primary DNS=8.8.8.8 and Secondary DNS=8.8.4.4, also select “Allow Remote Request” this will make your Mikrotik Router act as a DNS Server also don’t forget set the Cache size=2048 , press APPLY and OK.
4.Setting pool address range
Go to menu IP > Pool. Press the PLUS sign in RED, then create a IP Address Pool that will be used by the PPTP to give out IP and Press OK.
- Name : pool1
- Address : 10.0.0.200-10.0.0.230
- Next pool : None
5. Setting PPTP Server
Goto menu PPP > then press PPTP Server, a new small window will popup.
- PPTP Server
- Enable = checked
- Max MTU = 1460
- Max MRRU = 1460
- Keepalive Timeout = 30
- Default Profile = default-encryption
6.Setting Profile And bandwith limit
Go to menu PPP> Profile Press the PLUS sign in RED don’t forget klik apply.
- Name = profile1
- Local Address = 10.0.0.1
- Remote Address = pool1
- DNS Server = 8.8.8.8
- Limits = 256/256k
- Only One = yes
7.Setting PPP Secret
Go to menu PPP> Secrets Press the PLUS sign in RED don’t forget klik apply or OK.
- Name= user1
- Password = password
- Service = pptp
- Profile = profile1
8.Setting Firewall for allow connection from PPTP User
Go to menu IP> Firewall > NAT Press the PLUS sign in RED don’t forget klik apply.
- General
- Chain = srcnat
- Src Address = 10.0.0.0/24
- Action
- Action = masquerade
Source : Mikrotik.com and Wikipedia.com
Tidak ada komentar:
Posting Komentar