Hello,
I have a problem with my RUT 241.
I have setup a PPTP VPN pointing to my server at 192.168.0.3 (QNAP NAS) and after all, this is what i get:
I can connect to the vpn if I use the same network (ethernet cable);
I can’t connect to the vpn if I use another external internet source (like my tethering phone) and I get the error that say in shortly max connection reached or too latency. I’m sure that is not the max connection reached becouse I’m the only one and set up 20 max connections.
NOTES:
I can access on internet from the RUT241;
I can access on internet from my external internet source;
DNS 8.8.8.8 and 8.8.4.4 on the server
Enabled VPN PPTP from router from the page services>pptp as server
I prefer PPTP, but I tried it with even openVPN and qbelt (qnap software). Same problem.
Could you clarify what role the RUT241 has in your configuration?
From the query, I understand that PPTP service of the RUT241 is not being used, however, your screenshot includes the PPTP configuration on the RUT241.
If you simply need to reach your QNAP NAS server from the internet, then port forwarding is all that is needed. Navigate to Network → Firewall → Port Forwards, and create a rule, which will forward the traffic from WAN to LAN on port 1723 (the default for PPTP) and the traffic should be sent to 192.168.0.3.
Otherwise, please clarify your topology - which device is the server, which is the client, and what role does the RUT241 play.
Hello,
I just need to reach it from internet so I can connect and browse the shared folder from windows explorer.
The RUT 241 is the router (with SIM) where i have the server.
I have already set up a Port Forward from wan to lan at port 1723 (see 4^ screen, or below).
PS. Tried to disable the VPN feature and leaving only the port forwarding, but same problem.
No port forwarding is needed for any of the VPNs, all of the rules will be created automatically. The online tools might not show the port as open, as it only accepts the PPTP protocol traffic. Could you share the first 16 bits of your mob1s1a1 interface address? The address format is yyy.yyy.xxx.xxx, so please share only the yyy.yyy part. Thanks. @tlamothe I will ask you to do the same.
The RUT240 and RUT241 use the same operating system - RutOS, so I doubt that the issue is device-specific. Instead, there might be some configuration issues. These could be caused by migration from older firmware versions or incorrect options.
Since the Mikrotik shows the connection as established, the issue is unlikely to be within the PPTP package itself, but rather the firewall. Can you verify that your firewall zones (Network → Firewall → General Settings) looks like so:
Thank you for the information.
I will ask you to log into the CLI of the device (username root, password is the same as the WebUI), and run this command: vi /etc/ppp/options.pptp
Once the configuration file opens up, using the arrow keys navigate to the option refuse-mschap, press the i letter on the keyboard to enter the editing mode, and delete this line. After it’s deleted, press the Esc key, and enter :wq to save and quit.
After the editing window has closed, run the command /etc/init.d/pptpd restart and check if the Mikrotik network is still unreachable.
Pinging from the WebUI is fine.
Could you post the output of the command ifconfig from the CLI?
There should be a line with the PPTP instance name, this is the information I’m interested in. If you cannot find this line, the tunnel is most likely not established.
Additionally, as per my last comment, are you trying to ping the LAN IP of the Mikrotik, or the virtual tunnel IP?
