Mikrotik RouterOS – L2TP VPN Setup

ContentsSetting up L2TP VPN in Mikrotik Router:.....................................................................................................2

Screenshots to follow for web-interface:....................................................................................................2

Screenshots to follow for Winbox...............................................................................................................7

Windows Client Setup Procedure..............................................................................................................13

Mikrotik RouterOS – L2TP VPN Setup

Setting up L2TP VPN in Mikrotik Router:1. Log in to Mikrotik Router (default ID/PW = admin/ [no password])2. Click on Quickset on the left side menu3. Check the box next to VPN to enable VPN (this will automatically set up necessary firewall rules)4. Click Apply Changes5. Now uncheck box next to VPN and apply changes6. Under PPP, click L2TP Server

a. Make sure it is Enabledb. Change Default Profile to “Default-Encryption”c. Uncheck Chap and Papd. Check Use IPSece. Enter Preshared Key password under IPSec Secret

i. ***DO NOT enter this password into contact sheet***7. Under PPP, click Secrets

a. Click Addb. Use SoundVision as the Namec. Enter a 16-character generated password

i. *** DOCUMENT PASSWORD IN CONTACT SHEET NOW***d. Select L2TP under Servicee. Select default-encryption under Profile

8. Under PPP, click PPTP Servera. UNCHECK the Enable box

9. Under IP, click Firewalla. Under Rules, edit the “allow L2TP” ruleb. Make sure ports shown are 1701, 500, 4500

10. Under IP, click Clouda. Click Force Updateb. Copy this URL into the contact sheet

11. Press and Hold the Windows Button, press Ra. Type in cmd for Command Promptb. Type ping xxxxxxxxxxxxx (in place of the x’s, paste the DDNS URL copied in step #10. To

paste, use the right mouse button, then select paste)c. Make sure that you receive a response. This verifies that you have the correct DDNS URL

Screenshots to follow for web-interface:

Mikrotik RouterOS – L2TP VPN Setup

Mikrotik RouterOS – L2TP VPN Setup

Mikrotik RouterOS – L2TP VPN Setup

Mikrotik RouterOS – L2TP VPN Setup

Mikrotik RouterOS – L2TP VPN Setup

Screenshots to follow for Winbox

Mikrotik RouterOS – L2TP VPN Setup

Mikrotik RouterOS – L2TP VPN Setup

Mikrotik RouterOS – L2TP VPN Setup

Mikrotik RouterOS – L2TP VPN Setup

Mikrotik RouterOS – L2TP VPN Setup

Mikrotik RouterOS – L2TP VPN Setup

Windows Client Setup Procedure

1. From Start Menu, select Control Panel2. Select Network and Sharing Center3. Select Set up a new connection or network4. Select Connect to a workplace5. Select No, create a new connection6. Select Use my Internet Connection (VPN)7. Under Internet Address, enter the DDNS URL8. Under Destination Name, enter the customer’s name followed by “VPN” (ex: Sound Vision

VPN)a. Leave all boxes unchecked

9. Enter User Name, Password, leave Domain blanka. Check Remember Password

10. Close the setup wizard11. Go back to Network and Sharing Center12. Select Change Adapter Settings (on the left)13. Right click on the VPN network you just created and select Properties14. Select the Security tab

a. Under Type of VPN, select Layer 2 Tunneling Protocol with IPSec (L2TP/IPSec)b. Click Advanced

i. Select Use preshared key for authenticationii. Enter the PSK you set up at the router

iii. Click OKc. Deselect Challenge Handshake Authentication Protocol (CHAP)d. Click OK

15. Go to your WiFi/Ethernet icon at the bottom right of the taskbara. Click on the name of the VPN from the listb. Click Connect