This tutorial guides you how to setup PPTP (Point to Point Tunneling Protocol) server on Mikrotik RouterOS.
I assume you already understand what PPTP is. If not, better to read PPTP explanation on Wikipedia.
REQUIREMENTS:
– A Mikrotik RouterOS device (it can be a RouterBoard or PC X86 with PPP package installed)
– At least 2 network interface cards (ether1 and ether2) in the RouterOS device. Ether1 (WAN) will be assigned a public IP address (e.g: 123.123.123.2/29) and ether2 (LAN) assigned with a private IP address (e.g: 172.20.21.1)
Configure the Mikrotik Router
– Login to the Mikrotik (via Winbox, SSH/Telnet)
– Using command line interface (CLI) execute the following commands
/interface pptp-server server set authentication=mschap1,mschap2
default-profile=default-encryption enabled=yes keepalive-timeout=30
max-mru=1460 max-mtu=1460 mrru=disabled
/ppp profile add name=my-profile local-address=172.20.21.1 remote-address=172.20.21.2
dns-server=8.8.8.8,8.8.4.4 use-compression=default use-encryption=yes
/ppp secret add profile=my-profile name=myuser password=mypasswd service=pptp disabled=no
If you want to access internet via PPTP connection, don’t forget to masquerade the LAN IP addresses.
/ip firewall nat add action=masquerade chain=srcnat out-interface=ether1 src-address=172.20.21.0/28 disabled=no
See on the image below!
Now on your PPTP client (Windows PC, Linux, Mac, Ipad etc), set the server IP address to 123.123.123.2 to connect to the PPTP server. Use ‘myuser/mypassword’ as the account to connect. You should be able to connect to the Mikrotik PPTP server successfully.
I did all this and I can connect but cannot reach any devices thru the tunnel, just the gateway (lan interface of mikrotik) responds to ping
Hi Jerry, You can try to enable the ‘proxy-arp’ on the LAN interface of the Mikrotik.
I did all this, it works on Windows but I cannot connect from Mac OS 10.11, it says:
“The PPTP-VPN server did not respond. Try reconnecting. If the problem continues, verify your settings and contact your Administrator.”
Any solution to this?
Hi Alex, do you see log in the Mikrotik router when the Mac OS tried to connect? In the Mac OS side please check on the firewall setting whether it is blocked or not.
I figured out what is going on. Log is empty and I have no firewall. I think it is related to VM networking or something, I am running a RouterOS on Parallels Desktop and probably it cannot connect to Shared Network. So I was able to connect from inside network from another Mac.
If the log is empty it means that the PPTP request from Mac did not reach the Mikrotik. It can be blocked by firewall or the Mikrotik is unreachable by the Mac.