SlideShare a Scribd company logo

Mikro tik site to site eoip tunnel with i psec

U
Uttam Ds

Mikro tik

Internet
1 of 6
Download to read offline
MikroTik Site to Site EoIP Tunnel with IPsec VPN (Virtual Private Network) is a technology that provides a secure tunnel across a public network. A private network user can send and receive data to any remote private network using VPN Tunnel as if his/her network device was directly connected to that private network. MikroTik provides EoIP (Ethernet over IP) tunnel that is used to create a site to site VPN. EoIP tunneling is a MikroTik RouterOS protocol that creates an Ethernet tunnel between two MikroTik Routers on top of an IP connection. EoIP adds an outer header mentioning the entry point of the tunnel (SourceIP) and the exit point of the tunnel (DestinationIP) but the inner packet is kept unmodified. IPIP Encapsulation EoIP tunnel only encapsulates IP packets but does not provide authentication and encryption. EoIP tunnel with IPsec ensures IP packet encapsulation as well as authentication and encryption. IPsec usage makes your packets secure but it works slowly because of having extra authentication and encryption process. So, my opinion is that if data security is your concern, use EoIP tunnel with IPsec but if data security is not so headache, use only MikroTik EoIP tunnel because it works so faster. The goal of this article is to design an EoIP VPN tunnel with IPsec. So, in this article I will show how to create an EoIP tunnel with IPsec to establish a secure site to site VPN tunnel between two MikroTik Routers. Network Diagram To configure a site to site EoIP VPN Tunnel (with IPsec) between two MikroTik Routers, I am following a network diagram like below image.
Site to Site EoIP Tunnel with IPse In this network, Office1 Router is connected to internet through ether1 interface having IP address 192.168.70.2/30. In your real network this IP address will be replaced with public IP address provided by your ISP. Office1 Router’s ether2 interface is connected to local network having IP network 10.10.11.0/24. After EoIP tunnel configuration, an EoIP tunnel interface will be created in Office 1 Router whose IP address will be assigned 172.22.22.1/30. Similarly, Office 2 Router is connected to internet through ether1 interface having IP address 192.168.80.2/30. In your real network this IP address will also be replaced with public IP address. Office 2 Router’s ether2 interface is connected to local network having IP network 10.10.12.0/24. After EoIP tunnel configuration an EoIP tunnel interface will also be created in Office 2 Router whose IP address will be assigned 172.22.22.2/30. We will configure a site to site EoIP Tunnel between these two MikroTik Routers so that local network of these routers can communicate with each other through this VPN tunnel across public network. Core Devices and IP Information To configure a site to site EoIP VPN between two Routers, I am using two MikroTik RouterOS v6.38.1. IP information that I am using for this network configuration are given below. ▪ Office 1 Router WAN IP: 192.168.70.2/30, LAN IP Block 10.10.11.0/24 and Tunnel interface IP 172.22.22.1/30 ▪ Office 2 Router WAN IP: 192.168.80.2/30, LAN IP Block 10.10.12.0/24 and Tunnel interface IP 172.22.22.2/30 This IP information is just for my RND purpose. Change this information according to your network requirements.
Site to Site EoIP Tunnel Configuration with IPsec We will now start our site to site EoIP VPN configuration according to the above network diagram. Complete configuration can be divided into four parts. ▪ MikroTik RouterOS basic configuration ▪ EoIP tunnel configuration with IPsec ▪ Assigning IP address on tunnel interface ▪ Static route configuration Part 1: MikroTik RouterOS Basic Configuration Basic RouterOS configuration includes assigning WAN IP, LAN IP, DNS IP and Route, NAT configuration. According to our network diagram, we will now complete these topics in our two MikroTik RouterOS (Office 1 Router and Office 2 Router). Office 1 Router Basic Configuration The following steps will guide you how to perform basic configuration in your Office 1 RouterOS. ▪ Login to Office 1 RouterOS using winbox and go to IP > Addresses. In Address List window, click on PLUS SIGN (+). In New Address window, put WAN IP address (192.168.70.2/30) in Address input field and choose WAN interface (ether1) from Interface dropdown menu and click on Apply and OK button. Click on PLUS SIGN again and put LAN IP (10.10.11.1/24) in Address input field and choose LAN interface (ether2) from Interface dropdown menu and click on Apply and OK button. ▪ Go to IP > DNS and put DNS servers IP (8.8.8.8 or 8.8.4.4) in Servers input field and click on Apply and OK button. ▪ Go to IP > Firewall and click on NAT tab and then click on PLUS SIGN (+). Under General tab, choose srcnat from Chain dropdown menu and click on Action tab and then choose masquerade from Action dropdown menu. Click on Apply and OK button. ▪ Go to IP > Routes and click on PLUS SIGN (+). In New Route window, click on Gateway input field and put WAN Gateway address (192.168.70.1) in Gateway input field and click on Apply and OK button. Basic RouterOS configuration has been completed in Office 1 Router. Now we will do similar steps in Office 2 RouterOS. Office 2 Router Basic Configuration The following steps will guide you how to perform basic configuration in your Office 2 RouterOS.
▪ Login to Office 2 RouterOS using winbox and go to IP > Addresses. In Address List window, click on PLUS SIGN (+). In New Address window, put WAN IP address (192.168.80.2/30) in Address input field and choose WAN interface (ether1) from Interface dropdown menu and click on Apply and OK button. Click on PLUS SIGN again and put LAN IP (10.10.12.1/24) in Address input field and choose LAN interface (ether2) from Interface dropdown menu and click on Apply and OK button. ▪ Go to IP > DNS and put DNS servers IP (8.8.8.8 or 8.8.4.4) in Servers input field and click on Apply and OK button. ▪ Go to IP > Firewall and click on NAT tab and then click on PLUS SIGN (+). Under General tab, choose srcnat from Chain dropdown menu and click on Action tab and then choose masquerade from Action dropdown menu. Click on Apply and OK button. ▪ Go to IP > Routes and click on PLUS SIGN (+). In New Route window, click on Gateway input field and put WAN Gateway address (192.168.80.1) in Gateway input field and click on Apply and OK button. Basic RouterOS configuration has been completed in Office 2 Router. Now we are going to start EoIP tunnel configuration. Part 2: EoIP Tunnel Configuration with IPsec After MikroTik Router basic configuration, we will now configure EoIP tunnel with IPsec in both MikroTik RouterOS. In EoIP tunnel configuration, we will specify local and remote IP address as well as shared secret for IPsec and Tunnel ID. EoIP Tunnel Configuration in Office 1 Router The following steps will show how to configure EoIP tunnel in your Office 1 Router. ▪ Click on Interfaces menu item from Winbox and click on EoIP Tunnel tab and then click on PLUS SIGN (+). New Interface window will appear. ▪ Put a meaningful EoIP tunnel interface name (eoip-tunnel-r1) in Name input field. ▪ Put Office 1 Router’s WAN IP address (192.168.70.2) in Local Address input field. ▪ Put Office 2 Router’s WAN IP address (192.168.80.2) in Remote Address input field. ▪ Put a unique ID (for example: 10) in Tunnel ID input field. This ID must be same in both routers. ▪ Put IPsec shared secret in IPsec Secret input field if your router supports IPsec and you wish to enable IPsec authentication and encryption. You should remember that this IPsec Secret must be same in both routers. ▪ Also uncheck Allow Fast Path checkbox if it is checked and you want to enable IPsec. ▪ Click Apply and OK button. ▪ You will find a new EoIP tunnel interface followed by your given name (eoip-tunnel-r1) has been created in Interface List window. EoIP tunnel configuration in Office 1 Router has been completed. Now we will do the similar steps in our Office 2 Router to create EoIP tunnel interface. EoIP Tunnel Configuration in Office 2 Router
The following steps will show how to configure EoIP tunnel in your Office 2 Router. ▪ Click on Interfaces menu item from Winbox and click on EoIP Tunnel tab and then click on PLUS SIGN (+). New Interface window will appear. ▪ Put a meaningful EoIP tunnel interface name (eoip-tunnel-r2) in Name input field. ▪ Put Office 2 Router’s WAN IP address (192.168.80.2) in Local Address input field. ▪ Put Office 1 Routers WAN IP address (192.168.70.2) in Remote Address input field. ▪ Put a unique ID (for example: 10) in Tunnel ID input field. This ID must be same in both routers. ▪ Put IPsec shared secret in IPsec Secret input field if your router supports IPsec and you wish to enable IPsec authentication and encryption. You should remember that this IPsec Secret must be same in both routers. ▪ Also uncheck Allow Fast Path checkbox if it is checked and you want to enable IPsec. ▪ Click Apply and OK button. ▪ You will find a new EoIP tunnel interface followed by your given name (eoip- tunnel-r2) has been created in Interface List window. EoIP tunnel configuration in Office 2 Router has been completed. Now we will assign IP address in our newly created EoIP tunnel interface in our both RouterOS so that both router can communicate with each other through this VPN tunnel interface. Part 3: Assigning IP Address in EoIP Tunnel Interface After EoIP tunnel configuration, a new EoIP tunnel interface has been created in both routers. So, if we assign same block IP in both interfaces, the both router will be able to communicate with each other through this EoIP tunnel. In this part, we will now assign IP address in our newly created tunnel interface. Assigning IP Address on Office 1 Router’s EoIP Tunnel Interface The following steps will show how to assign IP address on Office 1 Router’s tunnel interface. ▪ Go to IP > Address menu item and click on PLUS SIGN (+). ▪ Put a new private IP Block IP (172.22.22.1/30) in Address input field. ▪ Choose newly created tunnel interface (eoip-tunnel-r1) from Interface drop down menu. ▪ Click Apply and OK button. Assigning IP address on Office 1 Router’s tunnel interface has been completed. Similarly, we will now assign IP address on Office 2 Router’s tunnel interface. Assigning IP Address on Office 2 Router’s EoIP Tunnel InterfaceThe following steps will show how to assign IP address in Office 2 Router’s tunnel interface. ▪ Go to IP > Address menu item and click on PLUS SIGN (+). ▪ Put a new private IP Block IP (172.22.22.2/30) in Address input field. ▪ Choose newly created tunnel interface (eoip-tunnel-r2) from Interface drop down menu. ▪ Click Apply and OK button.
Assigning IP address on Office 2 Router’s tunnel interface has been completed. In this stage both routers are now able to communicate with each other. But both routers’ LAN cannot communicate with each other without configuring static routing. So, in the next part we will configure static routing in our both Office Router. Part 4: Static Route Configuration We will now configure static route in our both Office Router so that each router’s LAN can communicate with each other through EoIP tunnel. Static Route Configuration in Office 1 Router The following steps will show how to configure static route in Office 1 Router. ▪ Go to IP > Routes and click on PLUS SIGN (+). New Route window will appear. ▪ In New Route window, put destination IP Block (10.10.12.0/24) in Dst. Address input field. ▪ Put the Gateway address (172.22.22.2) in Gateway input field. ▪ Click Apply and OK button. Static route configuration in Office 1 Router has been completed. Now we will configure static route in Office 2 Router. Static Route Configuration in Office 2 Router The following steps will show how to configure static route in Office 2 Router. ▪ Go to IP > Routes and click on PLUS SIGN (+). New Route window will appear. ▪ In New Route window, put destination IP Block (10.10.11.0/24) in Dst. Address input field. ▪ Put the Gateway address (172.22.22.1) in Gateway input field. ▪ Click Apply and OK button. Static route configuration in Office 2 Router has been completed. Now both router as well as its LAN can communicate with each other through EoIP tunnel across public network. To check your configuration, do a ping request from any router or any local network machine to other local network machine. If everything is OK, your ping request will be success. If you face any confusion to follow the above steps properly, follow my video about MikroTik Site to Site EoIP Tunnel with IPsec carefully. I hope it will reduce your any confusion. EoIP VPN Tunnel Configuration with IPsec has been explained in this article. I hope you will be able to configure EoIP tunnel with IPsec between your two office routers. However, if you face any confusion to configure EoIP tunnel in your MikroTik Router, feel free to discuss in comment or contact me from Contact page. I will try my best to stay with you.

Recommended

Subnet mask
Subnet maskSubnet mask
Subnet maskfauzimohid
 
Ebook Konfigurasi Dasar Linux Debian 7.8
Ebook Konfigurasi Dasar Linux Debian 7.8Ebook Konfigurasi Dasar Linux Debian 7.8
Ebook Konfigurasi Dasar Linux Debian 7.8Walid Umar
 
Panduan Installasi dan Konfigurasi Debian Server 5.0
Panduan Installasi dan Konfigurasi Debian Server 5.0Panduan Installasi dan Konfigurasi Debian Server 5.0
Panduan Installasi dan Konfigurasi Debian Server 5.0Walid Umar
 
VoIP and data communication using cisco packet tracer
VoIP and data communication using cisco packet tracerVoIP and data communication using cisco packet tracer
VoIP and data communication using cisco packet tracerFikri Paramadina
 
PRESENTASI TKJ 2022.ppt
PRESENTASI TKJ 2022.pptPRESENTASI TKJ 2022.ppt
PRESENTASI TKJ 2022.pptAman Kenting
 
CCNAv5 - S2: Chapter4 Routing Concepts
CCNAv5 - S2: Chapter4 Routing ConceptsCCNAv5 - S2: Chapter4 Routing Concepts
CCNAv5 - S2: Chapter4 Routing ConceptsVuz Dở Hơi
 
ATP adminitrasi sistem jaringan.docx
ATP adminitrasi sistem jaringan.docxATP adminitrasi sistem jaringan.docx
ATP adminitrasi sistem jaringan.docxNofriaMulianis1
 
Import Cisco CSR1000v OVA sebagai VM pada Proxmox VE 6.3
Import Cisco CSR1000v OVA sebagai VM pada Proxmox VE 6.3Import Cisco CSR1000v OVA sebagai VM pada Proxmox VE 6.3
Import Cisco CSR1000v OVA sebagai VM pada Proxmox VE 6.3I Putu Hariyadi
 

Recommended

Subnet mask
Subnet maskSubnet mask
Subnet maskfauzimohid
 
Ebook Konfigurasi Dasar Linux Debian 7.8
Ebook Konfigurasi Dasar Linux Debian 7.8Ebook Konfigurasi Dasar Linux Debian 7.8
Ebook Konfigurasi Dasar Linux Debian 7.8Walid Umar
 
Panduan Installasi dan Konfigurasi Debian Server 5.0
Panduan Installasi dan Konfigurasi Debian Server 5.0Panduan Installasi dan Konfigurasi Debian Server 5.0
Panduan Installasi dan Konfigurasi Debian Server 5.0Walid Umar
 
VoIP and data communication using cisco packet tracer
VoIP and data communication using cisco packet tracerVoIP and data communication using cisco packet tracer
VoIP and data communication using cisco packet tracerFikri Paramadina
 
PRESENTASI TKJ 2022.ppt
PRESENTASI TKJ 2022.pptPRESENTASI TKJ 2022.ppt
PRESENTASI TKJ 2022.pptAman Kenting
 
CCNAv5 - S2: Chapter4 Routing Concepts
CCNAv5 - S2: Chapter4 Routing ConceptsCCNAv5 - S2: Chapter4 Routing Concepts
CCNAv5 - S2: Chapter4 Routing ConceptsVuz Dở Hơi
 
ATP adminitrasi sistem jaringan.docx
ATP adminitrasi sistem jaringan.docxATP adminitrasi sistem jaringan.docx
ATP adminitrasi sistem jaringan.docxNofriaMulianis1
 
Import Cisco CSR1000v OVA sebagai VM pada Proxmox VE 6.3
Import Cisco CSR1000v OVA sebagai VM pada Proxmox VE 6.3Import Cisco CSR1000v OVA sebagai VM pada Proxmox VE 6.3
Import Cisco CSR1000v OVA sebagai VM pada Proxmox VE 6.3I Putu Hariyadi
 
Konsep dan implementasi nat
Konsep dan implementasi natKonsep dan implementasi nat
Konsep dan implementasi natabufatimahplp
 
ip-address.ppt
ip-address.pptip-address.ppt
ip-address.pptMismarMismar
 
Mikrotik ppt
Mikrotik pptMikrotik ppt
Mikrotik ppt044249
 
MATERI JARINGAN NIRKABEL TKJ.pptx
MATERI JARINGAN NIRKABEL TKJ.pptxMATERI JARINGAN NIRKABEL TKJ.pptx
MATERI JARINGAN NIRKABEL TKJ.pptxrosminailham02
 
Cisco nexus series
Cisco nexus seriesCisco nexus series
Cisco nexus seriesAnwesh Dixit
 
Pembahasan Solusi Perhitungan VLSM untuk Lab 17.8.2 Packet Tracer - Skills In...
Pembahasan Solusi Perhitungan VLSM untuk Lab 17.8.2 Packet Tracer - Skills In...Pembahasan Solusi Perhitungan VLSM untuk Lab 17.8.2 Packet Tracer - Skills In...
Pembahasan Solusi Perhitungan VLSM untuk Lab 17.8.2 Packet Tracer - Skills In...I Putu Hariyadi
 
Materi ke 1 AIJ XII TKJ - Mikrotik.pptx
Materi ke 1 AIJ XII TKJ - Mikrotik.pptxMateri ke 1 AIJ XII TKJ - Mikrotik.pptx
Materi ke 1 AIJ XII TKJ - Mikrotik.pptxHendraSaputra670433
 
Membuat Kabel UTP RJ 45 (LAN)
Membuat Kabel UTP RJ 45 (LAN)Membuat Kabel UTP RJ 45 (LAN)
Membuat Kabel UTP RJ 45 (LAN)SMA
 
IP Address,Sistem Bilangan dan Konversinya
IP Address,Sistem Bilangan dan KonversinyaIP Address,Sistem Bilangan dan Konversinya
IP Address,Sistem Bilangan dan KonversinyaRefita Dinda
 
Modul Free One Day Workshop Implementing Cisco IP Routing and Switched Networks
Modul Free One Day Workshop Implementing Cisco IP Routing and Switched NetworksModul Free One Day Workshop Implementing Cisco IP Routing and Switched Networks
Modul Free One Day Workshop Implementing Cisco IP Routing and Switched NetworksI Putu Hariyadi
 
Packet tracer
Packet tracerPacket tracer
Packet tracerImdad Ullah
 
UK1 - Merancang Pengalamatan Jaringan.pdf
UK1 - Merancang Pengalamatan Jaringan.pdfUK1 - Merancang Pengalamatan Jaringan.pdf
UK1 - Merancang Pengalamatan Jaringan.pdfkoswara10
 
Student packet tracer manual v1.1
Student packet tracer manual v1.1Student packet tracer manual v1.1
Student packet tracer manual v1.1milkux
 
Laporan Pratikum Mikrotik (alif&azmiy)
Laporan Pratikum Mikrotik (alif&azmiy)Laporan Pratikum Mikrotik (alif&azmiy)
Laporan Pratikum Mikrotik (alif&azmiy)alif firmansyah
 
Laporan 4 pengenalan mikrotic router
Laporan 4 pengenalan mikrotic routerLaporan 4 pengenalan mikrotic router
Laporan 4 pengenalan mikrotic routerWilly Winas
 
6 subnetting
6 subnetting6 subnetting
6 subnettingDhan junkie
 
peralatan jaringan
peralatan jaringanperalatan jaringan
peralatan jaringanBayu Muda
 
Pembahasan Soal Modul A: Linux Island - LKS SMK Provinsi NTB 2017
Pembahasan Soal Modul A: Linux Island - LKS SMK Provinsi NTB 2017Pembahasan Soal Modul A: Linux Island - LKS SMK Provinsi NTB 2017
Pembahasan Soal Modul A: Linux Island - LKS SMK Provinsi NTB 2017I Putu Hariyadi
 
CCNA Exploration 2 - Chapter 5
CCNA Exploration 2 - Chapter 5CCNA Exploration 2 - Chapter 5
CCNA Exploration 2 - Chapter 5Irsandi Hasan
 
modul cisco packet tracer unutuk simulasi jaringan komputer
modul cisco packet tracer unutuk simulasi jaringan komputermodul cisco packet tracer unutuk simulasi jaringan komputer
modul cisco packet tracer unutuk simulasi jaringan komputerseolangit7
 
Mikro tik vpn configuration with site converted
Mikro tik vpn configuration with site convertedMikro tik vpn configuration with site converted
Mikro tik vpn configuration with site convertedUttam Ds
 
Packet tracer practical guide
Packet tracer practical guidePacket tracer practical guide
Packet tracer practical guideNishant Gandhi
 

More Related Content

What's hot

Konsep dan implementasi nat
Konsep dan implementasi natKonsep dan implementasi nat
Konsep dan implementasi natabufatimahplp
 
Mikrotik ppt
Mikrotik pptMikrotik ppt
Mikrotik ppt044249
 
MATERI JARINGAN NIRKABEL TKJ.pptx
MATERI JARINGAN NIRKABEL TKJ.pptxMATERI JARINGAN NIRKABEL TKJ.pptx
MATERI JARINGAN NIRKABEL TKJ.pptxrosminailham02
 
Cisco nexus series
Cisco nexus seriesCisco nexus series
Cisco nexus seriesAnwesh Dixit
 
Pembahasan Solusi Perhitungan VLSM untuk Lab 17.8.2 Packet Tracer - Skills In...
Pembahasan Solusi Perhitungan VLSM untuk Lab 17.8.2 Packet Tracer - Skills In...Pembahasan Solusi Perhitungan VLSM untuk Lab 17.8.2 Packet Tracer - Skills In...
Pembahasan Solusi Perhitungan VLSM untuk Lab 17.8.2 Packet Tracer - Skills In...I Putu Hariyadi
 
Materi ke 1 AIJ XII TKJ - Mikrotik.pptx
Materi ke 1 AIJ XII TKJ - Mikrotik.pptxMateri ke 1 AIJ XII TKJ - Mikrotik.pptx
Materi ke 1 AIJ XII TKJ - Mikrotik.pptxHendraSaputra670433
 
Membuat Kabel UTP RJ 45 (LAN)
Membuat Kabel UTP RJ 45 (LAN)Membuat Kabel UTP RJ 45 (LAN)
Membuat Kabel UTP RJ 45 (LAN)SMA
 
IP Address,Sistem Bilangan dan Konversinya
IP Address,Sistem Bilangan dan KonversinyaIP Address,Sistem Bilangan dan Konversinya
IP Address,Sistem Bilangan dan KonversinyaRefita Dinda
 
Modul Free One Day Workshop Implementing Cisco IP Routing and Switched Networks
Modul Free One Day Workshop Implementing Cisco IP Routing and Switched NetworksModul Free One Day Workshop Implementing Cisco IP Routing and Switched Networks
Modul Free One Day Workshop Implementing Cisco IP Routing and Switched NetworksI Putu Hariyadi
 
UK1 - Merancang Pengalamatan Jaringan.pdf
UK1 - Merancang Pengalamatan Jaringan.pdfUK1 - Merancang Pengalamatan Jaringan.pdf
UK1 - Merancang Pengalamatan Jaringan.pdfkoswara10
 
Student packet tracer manual v1.1
Student packet tracer manual v1.1Student packet tracer manual v1.1
Student packet tracer manual v1.1milkux
 
Laporan Pratikum Mikrotik (alif&azmiy)
Laporan Pratikum Mikrotik (alif&azmiy)Laporan Pratikum Mikrotik (alif&azmiy)
Laporan Pratikum Mikrotik (alif&azmiy)alif firmansyah
 
Laporan 4 pengenalan mikrotic router
Laporan 4 pengenalan mikrotic routerLaporan 4 pengenalan mikrotic router
Laporan 4 pengenalan mikrotic routerWilly Winas
 
peralatan jaringan
peralatan jaringanperalatan jaringan
peralatan jaringanBayu Muda
 
Pembahasan Soal Modul A: Linux Island - LKS SMK Provinsi NTB 2017
Pembahasan Soal Modul A: Linux Island - LKS SMK Provinsi NTB 2017Pembahasan Soal Modul A: Linux Island - LKS SMK Provinsi NTB 2017
Pembahasan Soal Modul A: Linux Island - LKS SMK Provinsi NTB 2017I Putu Hariyadi
 
CCNA Exploration 2 - Chapter 5
CCNA Exploration 2 - Chapter 5CCNA Exploration 2 - Chapter 5
CCNA Exploration 2 - Chapter 5Irsandi Hasan
 
modul cisco packet tracer unutuk simulasi jaringan komputer
modul cisco packet tracer unutuk simulasi jaringan komputermodul cisco packet tracer unutuk simulasi jaringan komputer
modul cisco packet tracer unutuk simulasi jaringan komputerseolangit7
 

What's hot (20)

Konsep dan implementasi nat
Konsep dan implementasi natKonsep dan implementasi nat
Konsep dan implementasi nat
 
ip-address.ppt
ip-address.pptip-address.ppt
ip-address.ppt
 
Mikrotik ppt
Mikrotik pptMikrotik ppt
Mikrotik ppt
 
MATERI JARINGAN NIRKABEL TKJ.pptx
MATERI JARINGAN NIRKABEL TKJ.pptxMATERI JARINGAN NIRKABEL TKJ.pptx
MATERI JARINGAN NIRKABEL TKJ.pptx
 
Cisco nexus series
Cisco nexus seriesCisco nexus series
Cisco nexus series
 
Pembahasan Solusi Perhitungan VLSM untuk Lab 17.8.2 Packet Tracer - Skills In...
Pembahasan Solusi Perhitungan VLSM untuk Lab 17.8.2 Packet Tracer - Skills In...Pembahasan Solusi Perhitungan VLSM untuk Lab 17.8.2 Packet Tracer - Skills In...
Pembahasan Solusi Perhitungan VLSM untuk Lab 17.8.2 Packet Tracer - Skills In...
 
Materi ke 1 AIJ XII TKJ - Mikrotik.pptx
Materi ke 1 AIJ XII TKJ - Mikrotik.pptxMateri ke 1 AIJ XII TKJ - Mikrotik.pptx
Materi ke 1 AIJ XII TKJ - Mikrotik.pptx
 
Membuat Kabel UTP RJ 45 (LAN)
Membuat Kabel UTP RJ 45 (LAN)Membuat Kabel UTP RJ 45 (LAN)
Membuat Kabel UTP RJ 45 (LAN)
 
IP Address,Sistem Bilangan dan Konversinya
IP Address,Sistem Bilangan dan KonversinyaIP Address,Sistem Bilangan dan Konversinya
IP Address,Sistem Bilangan dan Konversinya
 
Modul Free One Day Workshop Implementing Cisco IP Routing and Switched Networks
Modul Free One Day Workshop Implementing Cisco IP Routing and Switched NetworksModul Free One Day Workshop Implementing Cisco IP Routing and Switched Networks
Modul Free One Day Workshop Implementing Cisco IP Routing and Switched Networks
 
Packet tracer
Packet tracerPacket tracer
Packet tracer
 
UK1 - Merancang Pengalamatan Jaringan.pdf
UK1 - Merancang Pengalamatan Jaringan.pdfUK1 - Merancang Pengalamatan Jaringan.pdf
UK1 - Merancang Pengalamatan Jaringan.pdf
 
Student packet tracer manual v1.1
Student packet tracer manual v1.1Student packet tracer manual v1.1
Student packet tracer manual v1.1
 
Laporan Pratikum Mikrotik (alif&azmiy)
Laporan Pratikum Mikrotik (alif&azmiy)Laporan Pratikum Mikrotik (alif&azmiy)
Laporan Pratikum Mikrotik (alif&azmiy)
 
Laporan 4 pengenalan mikrotic router
Laporan 4 pengenalan mikrotic routerLaporan 4 pengenalan mikrotic router
Laporan 4 pengenalan mikrotic router
 
6 subnetting
6 subnetting6 subnetting
6 subnetting
 
peralatan jaringan
peralatan jaringanperalatan jaringan
peralatan jaringan
 
Pembahasan Soal Modul A: Linux Island - LKS SMK Provinsi NTB 2017
Pembahasan Soal Modul A: Linux Island - LKS SMK Provinsi NTB 2017Pembahasan Soal Modul A: Linux Island - LKS SMK Provinsi NTB 2017
Pembahasan Soal Modul A: Linux Island - LKS SMK Provinsi NTB 2017
 
CCNA Exploration 2 - Chapter 5
CCNA Exploration 2 - Chapter 5CCNA Exploration 2 - Chapter 5
CCNA Exploration 2 - Chapter 5
 
modul cisco packet tracer unutuk simulasi jaringan komputer
modul cisco packet tracer unutuk simulasi jaringan komputermodul cisco packet tracer unutuk simulasi jaringan komputer
modul cisco packet tracer unutuk simulasi jaringan komputer
 

Similar to Mikro tik site to site eoip tunnel with i psec

Mikro tik vpn configuration with site converted
Mikro tik vpn configuration with site convertedMikro tik vpn configuration with site converted
Mikro tik vpn configuration with site convertedUttam Ds
 
Packet tracer practical guide
Packet tracer practical guidePacket tracer practical guide
Packet tracer practical guideNishant Gandhi
 
119163798 icnd1-practice-questions-9tut
119163798 icnd1-practice-questions-9tut119163798 icnd1-practice-questions-9tut
119163798 icnd1-practice-questions-9tutnicolelemmimg
 
Labpractice1 configuringbasicroutingandswitchingwithanswer-121214084802-phpapp02
Labpractice1 configuringbasicroutingandswitchingwithanswer-121214084802-phpapp02Labpractice1 configuringbasicroutingandswitchingwithanswer-121214084802-phpapp02
Labpractice1 configuringbasicroutingandswitchingwithanswer-121214084802-phpapp02Abhilash Kuniyil
 
Load Sharing Internet with MikroTik.pdf
Load Sharing Internet with MikroTik.pdfLoad Sharing Internet with MikroTik.pdf
Load Sharing Internet with MikroTik.pdfEnics
 
Lab practice 1 configuring basic routing and switching (with answer)
Lab practice 1 configuring basic routing and switching (with answer) Lab practice 1 configuring basic routing and switching (with answer)
Lab practice 1 configuring basic routing and switching (with answer) Arz Sy
 
Detailed explanation of Basic router configuration
Detailed explanation of Basic router configurationDetailed explanation of Basic router configuration
Detailed explanation of Basic router configurationsamreenghauri786
 
Uccn1003 -may10_-_lect03c_-_ip_subnets_rules
Uccn1003 -may10_-_lect03c_-_ip_subnets_rulesUccn1003 -may10_-_lect03c_-_ip_subnets_rules
Uccn1003 -may10_-_lect03c_-_ip_subnets_rulesShu Shin
 
Configuration and testing of network
Configuration and testing of networkConfiguration and testing of network
Configuration and testing of networkKak Yong
 
ProjectPurposeThe purpose of this project is to provide an o.docx
ProjectPurposeThe purpose of this project is to provide an o.docxProjectPurposeThe purpose of this project is to provide an o.docx
ProjectPurposeThe purpose of this project is to provide an o.docxwoodruffeloisa
 
CMIT 350 FINAL EXAM CCNA CERTIFICATION PRACTICE EXAM
CMIT 350 FINAL EXAM CCNA CERTIFICATION PRACTICE EXAMCMIT 350 FINAL EXAM CCNA CERTIFICATION PRACTICE EXAM
CMIT 350 FINAL EXAM CCNA CERTIFICATION PRACTICE EXAMHamesKellor
 
CCNA Connecting NetworksSA ExamLab 13 CCNA Connecting Netwo.docx
CCNA Connecting NetworksSA ExamLab 13 CCNA Connecting Netwo.docxCCNA Connecting NetworksSA ExamLab 13 CCNA Connecting Netwo.docx
CCNA Connecting NetworksSA ExamLab 13 CCNA Connecting Netwo.docxketurahhazelhurst
 
Yu linux-tsm2004
Yu linux-tsm2004Yu linux-tsm2004
Yu linux-tsm2004alegara
 
ACN Micro- Project Group no. 22.pptx
ACN Micro- Project Group no. 22.pptxACN Micro- Project Group no. 22.pptx
ACN Micro- Project Group no. 22.pptxMohdHasnainRaza1
 
All contents are Copyright © 1992–2012 Cisco Systems, Inc. A.docx
All contents are Copyright © 1992–2012 Cisco Systems, Inc. A.docxAll contents are Copyright © 1992–2012 Cisco Systems, Inc. A.docx
All contents are Copyright © 1992–2012 Cisco Systems, Inc. A.docxgalerussel59292
 
Routing information protocol & rip configuration
Routing information protocol & rip configurationRouting information protocol & rip configuration
Routing information protocol & rip configuration3Anetwork com
 

Similar to Mikro tik site to site eoip tunnel with i psec (20)

Mikro tik vpn configuration with site converted
Mikro tik vpn configuration with site convertedMikro tik vpn configuration with site converted
Mikro tik vpn configuration with site converted
 
Packet tracer practical guide
Packet tracer practical guidePacket tracer practical guide
Packet tracer practical guide
 
119163798 icnd1-practice-questions-9tut
119163798 icnd1-practice-questions-9tut119163798 icnd1-practice-questions-9tut
119163798 icnd1-practice-questions-9tut
 
Labpractice1 configuringbasicroutingandswitchingwithanswer-121214084802-phpapp02
Labpractice1 configuringbasicroutingandswitchingwithanswer-121214084802-phpapp02Labpractice1 configuringbasicroutingandswitchingwithanswer-121214084802-phpapp02
Labpractice1 configuringbasicroutingandswitchingwithanswer-121214084802-phpapp02
 
Load Sharing Internet with MikroTik.pdf
Load Sharing Internet with MikroTik.pdfLoad Sharing Internet with MikroTik.pdf
Load Sharing Internet with MikroTik.pdf
 
Lab practice 1 configuring basic routing and switching (with answer)
Lab practice 1 configuring basic routing and switching (with answer) Lab practice 1 configuring basic routing and switching (with answer)
Lab practice 1 configuring basic routing and switching (with answer)
 
Nat 03
Nat 03Nat 03
Nat 03
 
Detailed explanation of Basic router configuration
Detailed explanation of Basic router configurationDetailed explanation of Basic router configuration
Detailed explanation of Basic router configuration
 
Networking
NetworkingNetworking
Networking
 
Bots.pdf
Bots.pdfBots.pdf
Bots.pdf
 
Uccn1003 -may10_-_lect03c_-_ip_subnets_rules
Uccn1003 -may10_-_lect03c_-_ip_subnets_rulesUccn1003 -may10_-_lect03c_-_ip_subnets_rules
Uccn1003 -may10_-_lect03c_-_ip_subnets_rules
 
Configuration and testing of network
Configuration and testing of networkConfiguration and testing of network
Configuration and testing of network
 
ProjectPurposeThe purpose of this project is to provide an o.docx
ProjectPurposeThe purpose of this project is to provide an o.docxProjectPurposeThe purpose of this project is to provide an o.docx
ProjectPurposeThe purpose of this project is to provide an o.docx
 
CMIT 350 FINAL EXAM CCNA CERTIFICATION PRACTICE EXAM
CMIT 350 FINAL EXAM CCNA CERTIFICATION PRACTICE EXAMCMIT 350 FINAL EXAM CCNA CERTIFICATION PRACTICE EXAM
CMIT 350 FINAL EXAM CCNA CERTIFICATION PRACTICE EXAM
 
CCNA Connecting NetworksSA ExamLab 13 CCNA Connecting Netwo.docx
CCNA Connecting NetworksSA ExamLab 13 CCNA Connecting Netwo.docxCCNA Connecting NetworksSA ExamLab 13 CCNA Connecting Netwo.docx
CCNA Connecting NetworksSA ExamLab 13 CCNA Connecting Netwo.docx
 
Yu linux-tsm2004
Yu linux-tsm2004Yu linux-tsm2004
Yu linux-tsm2004
 
ACN Micro- Project Group no. 22.pptx
ACN Micro- Project Group no. 22.pptxACN Micro- Project Group no. 22.pptx
ACN Micro- Project Group no. 22.pptx
 
Exam viewer2
Exam viewer2Exam viewer2
Exam viewer2
 
All contents are Copyright © 1992–2012 Cisco Systems, Inc. A.docx
All contents are Copyright © 1992–2012 Cisco Systems, Inc. A.docxAll contents are Copyright © 1992–2012 Cisco Systems, Inc. A.docx
All contents are Copyright © 1992–2012 Cisco Systems, Inc. A.docx
 
Routing information protocol & rip configuration
Routing information protocol & rip configurationRouting information protocol & rip configuration
Routing information protocol & rip configuration
 

Recently uploaded

10.pdfMature Call girls in Dubai +971563133746 Dubai Call girls
10.pdfMature Call girls in Dubai +971563133746 Dubai Call girls10.pdfMature Call girls in Dubai +971563133746 Dubai Call girls
10.pdfMature Call girls in Dubai +971563133746 Dubai Call girlsstephieert
 
Gram Darshan PPT cyber rural in villages of india
Gram Darshan PPT cyber rural in villages of indiaGram Darshan PPT cyber rural in villages of india
Gram Darshan PPT cyber rural in villages of indiaimessage0108
 
On Starlink, presented by Geoff Huston at NZNOG 2024
On Starlink, presented by Geoff Huston at NZNOG 2024On Starlink, presented by Geoff Huston at NZNOG 2024
On Starlink, presented by Geoff Huston at NZNOG 2024APNIC
 
Chennai Call Girls Alwarpet Phone 🍆 8250192130 👅 celebrity escorts service
Chennai Call Girls Alwarpet Phone 🍆 8250192130 👅 celebrity escorts serviceChennai Call Girls Alwarpet Phone 🍆 8250192130 👅 celebrity escorts service
Chennai Call Girls Alwarpet Phone 🍆 8250192130 👅 celebrity escorts servicevipmodelshub1
 
Russian Call Girls in Kolkata Samaira 🤌 8250192130 🚀 Vip Call Girls Kolkata
Russian Call Girls in Kolkata Samaira 🤌 8250192130 🚀 Vip Call Girls KolkataRussian Call Girls in Kolkata Samaira 🤌 8250192130 🚀 Vip Call Girls Kolkata
Russian Call Girls in Kolkata Samaira 🤌 8250192130 🚀 Vip Call Girls Kolkataanamikaraghav4
 
GDG Cloud Southlake 32: Kyle Hettinger: Demystifying the Dark Web
GDG Cloud Southlake 32: Kyle Hettinger: Demystifying the Dark WebGDG Cloud Southlake 32: Kyle Hettinger: Demystifying the Dark Web
GDG Cloud Southlake 32: Kyle Hettinger: Demystifying the Dark WebJames Anderson
 
Low Rate Call Girls Kolkata Avani 🤌 8250192130 🚀 Vip Call Girls Kolkata
Low Rate Call Girls Kolkata Avani 🤌 8250192130 🚀 Vip Call Girls KolkataLow Rate Call Girls Kolkata Avani 🤌 8250192130 🚀 Vip Call Girls Kolkata
Low Rate Call Girls Kolkata Avani 🤌 8250192130 🚀 Vip Call Girls Kolkataanamikaraghav4
 
₹5.5k {Cash Payment}New Friends Colony Call Girls In [Delhi NIHARIKA] 🔝|97111...
₹5.5k {Cash Payment}New Friends Colony Call Girls In [Delhi NIHARIKA] 🔝|97111...₹5.5k {Cash Payment}New Friends Colony Call Girls In [Delhi NIHARIKA] 🔝|97111...
₹5.5k {Cash Payment}New Friends Colony Call Girls In [Delhi NIHARIKA] 🔝|97111...Diya Sharma
 
Hot Service (+9316020077 ) Goa Call Girls Real Photos and Genuine Service
Hot Service (+9316020077 ) Goa Call Girls Real Photos and Genuine ServiceHot Service (+9316020077 ) Goa Call Girls Real Photos and Genuine Service
Hot Service (+9316020077 ) Goa Call Girls Real Photos and Genuine Servicesexy call girls service in goa
 
Packaging the Monolith - PHP Tek 2024 (Breaking it down one bite at a time)
Packaging the Monolith - PHP Tek 2024 (Breaking it down one bite at a time)Packaging the Monolith - PHP Tek 2024 (Breaking it down one bite at a time)
Packaging the Monolith - PHP Tek 2024 (Breaking it down one bite at a time)Dana Luther
 
VIP Kolkata Call Girl Alambazar 👉 8250192130 Available With Room
VIP Kolkata Call Girl Alambazar 👉 8250192130 Available With RoomVIP Kolkata Call Girl Alambazar 👉 8250192130 Available With Room
VIP Kolkata Call Girl Alambazar 👉 8250192130 Available With Roomdivyansh0kumar0
 
Call Girls Dubai Prolapsed O525547819 Call Girls In Dubai Princes$
Call Girls Dubai Prolapsed O525547819 Call Girls In Dubai Princes$Call Girls Dubai Prolapsed O525547819 Call Girls In Dubai Princes$
Call Girls Dubai Prolapsed O525547819 Call Girls In Dubai Princes$kojalkojal131
 
Moving Beyond Twitter/X and Facebook - Social Media for local news providers
Moving Beyond Twitter/X and Facebook - Social Media for local news providersMoving Beyond Twitter/X and Facebook - Social Media for local news providers
Moving Beyond Twitter/X and Facebook - Social Media for local news providersDamian Radcliffe
 
Russian Call Girls Thane Swara 8617697112 Independent Escort Service Thane
Russian Call Girls Thane Swara 8617697112 Independent Escort Service ThaneRussian Call Girls Thane Swara 8617697112 Independent Escort Service Thane
Russian Call Girls Thane Swara 8617697112 Independent Escort Service ThaneCall girls in Ahmedabad High profile
 
VIP Call Girls Pune Madhuri 8617697112 Independent Escort Service Pune
VIP Call Girls Pune Madhuri 8617697112 Independent Escort Service PuneVIP Call Girls Pune Madhuri 8617697112 Independent Escort Service Pune
VIP Call Girls Pune Madhuri 8617697112 Independent Escort Service PuneCall girls in Ahmedabad High profile
 
Call Girls In Model Towh Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Model Towh Delhi 💯Call Us 🔝8264348440🔝Call Girls In Model Towh Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Model Towh Delhi 💯Call Us 🔝8264348440🔝soniya singh
 
Call Girls in Uttam Nagar Delhi 💯Call Us 🔝8264348440🔝
Call Girls in Uttam Nagar Delhi 💯Call Us 🔝8264348440🔝Call Girls in Uttam Nagar Delhi 💯Call Us 🔝8264348440🔝
Call Girls in Uttam Nagar Delhi 💯Call Us 🔝8264348440🔝soniya singh
 

Recently uploaded (20)

10.pdfMature Call girls in Dubai +971563133746 Dubai Call girls
10.pdfMature Call girls in Dubai +971563133746 Dubai Call girls10.pdfMature Call girls in Dubai +971563133746 Dubai Call girls
10.pdfMature Call girls in Dubai +971563133746 Dubai Call girls
 
Rohini Sector 22 Call Girls Delhi 9999965857 @Sabina Saikh No Advance
Rohini Sector 22 Call Girls Delhi 9999965857 @Sabina Saikh No AdvanceRohini Sector 22 Call Girls Delhi 9999965857 @Sabina Saikh No Advance
Rohini Sector 22 Call Girls Delhi 9999965857 @Sabina Saikh No Advance
 
Gram Darshan PPT cyber rural in villages of india
Gram Darshan PPT cyber rural in villages of indiaGram Darshan PPT cyber rural in villages of india
Gram Darshan PPT cyber rural in villages of india
 
On Starlink, presented by Geoff Huston at NZNOG 2024
On Starlink, presented by Geoff Huston at NZNOG 2024On Starlink, presented by Geoff Huston at NZNOG 2024
On Starlink, presented by Geoff Huston at NZNOG 2024
 
Rohini Sector 26 Call Girls Delhi 9999965857 @Sabina Saikh No Advance
Rohini Sector 26 Call Girls Delhi 9999965857 @Sabina Saikh No AdvanceRohini Sector 26 Call Girls Delhi 9999965857 @Sabina Saikh No Advance
Rohini Sector 26 Call Girls Delhi 9999965857 @Sabina Saikh No Advance
 
Chennai Call Girls Alwarpet Phone 🍆 8250192130 👅 celebrity escorts service
Chennai Call Girls Alwarpet Phone 🍆 8250192130 👅 celebrity escorts serviceChennai Call Girls Alwarpet Phone 🍆 8250192130 👅 celebrity escorts service
Chennai Call Girls Alwarpet Phone 🍆 8250192130 👅 celebrity escorts service
 
Russian Call Girls in Kolkata Samaira 🤌 8250192130 🚀 Vip Call Girls Kolkata
Russian Call Girls in Kolkata Samaira 🤌 8250192130 🚀 Vip Call Girls KolkataRussian Call Girls in Kolkata Samaira 🤌 8250192130 🚀 Vip Call Girls Kolkata
Russian Call Girls in Kolkata Samaira 🤌 8250192130 🚀 Vip Call Girls Kolkata
 
GDG Cloud Southlake 32: Kyle Hettinger: Demystifying the Dark Web
GDG Cloud Southlake 32: Kyle Hettinger: Demystifying the Dark WebGDG Cloud Southlake 32: Kyle Hettinger: Demystifying the Dark Web
GDG Cloud Southlake 32: Kyle Hettinger: Demystifying the Dark Web
 
Low Rate Call Girls Kolkata Avani 🤌 8250192130 🚀 Vip Call Girls Kolkata
Low Rate Call Girls Kolkata Avani 🤌 8250192130 🚀 Vip Call Girls KolkataLow Rate Call Girls Kolkata Avani 🤌 8250192130 🚀 Vip Call Girls Kolkata
Low Rate Call Girls Kolkata Avani 🤌 8250192130 🚀 Vip Call Girls Kolkata
 
₹5.5k {Cash Payment}New Friends Colony Call Girls In [Delhi NIHARIKA] 🔝|97111...
₹5.5k {Cash Payment}New Friends Colony Call Girls In [Delhi NIHARIKA] 🔝|97111...₹5.5k {Cash Payment}New Friends Colony Call Girls In [Delhi NIHARIKA] 🔝|97111...
₹5.5k {Cash Payment}New Friends Colony Call Girls In [Delhi NIHARIKA] 🔝|97111...
 
Hot Service (+9316020077 ) Goa Call Girls Real Photos and Genuine Service
Hot Service (+9316020077 ) Goa Call Girls Real Photos and Genuine ServiceHot Service (+9316020077 ) Goa Call Girls Real Photos and Genuine Service
Hot Service (+9316020077 ) Goa Call Girls Real Photos and Genuine Service
 
Packaging the Monolith - PHP Tek 2024 (Breaking it down one bite at a time)
Packaging the Monolith - PHP Tek 2024 (Breaking it down one bite at a time)Packaging the Monolith - PHP Tek 2024 (Breaking it down one bite at a time)
Packaging the Monolith - PHP Tek 2024 (Breaking it down one bite at a time)
 
VIP Kolkata Call Girl Alambazar 👉 8250192130 Available With Room
VIP Kolkata Call Girl Alambazar 👉 8250192130 Available With RoomVIP Kolkata Call Girl Alambazar 👉 8250192130 Available With Room
VIP Kolkata Call Girl Alambazar 👉 8250192130 Available With Room
 
Call Girls Dubai Prolapsed O525547819 Call Girls In Dubai Princes$
Call Girls Dubai Prolapsed O525547819 Call Girls In Dubai Princes$Call Girls Dubai Prolapsed O525547819 Call Girls In Dubai Princes$
Call Girls Dubai Prolapsed O525547819 Call Girls In Dubai Princes$
 
Moving Beyond Twitter/X and Facebook - Social Media for local news providers
Moving Beyond Twitter/X and Facebook - Social Media for local news providersMoving Beyond Twitter/X and Facebook - Social Media for local news providers
Moving Beyond Twitter/X and Facebook - Social Media for local news providers
 
Russian Call Girls Thane Swara 8617697112 Independent Escort Service Thane
Russian Call Girls Thane Swara 8617697112 Independent Escort Service ThaneRussian Call Girls Thane Swara 8617697112 Independent Escort Service Thane
Russian Call Girls Thane Swara 8617697112 Independent Escort Service Thane
 
VIP Call Girls Pune Madhuri 8617697112 Independent Escort Service Pune
VIP Call Girls Pune Madhuri 8617697112 Independent Escort Service PuneVIP Call Girls Pune Madhuri 8617697112 Independent Escort Service Pune
VIP Call Girls Pune Madhuri 8617697112 Independent Escort Service Pune
 
Dwarka Sector 26 Call Girls | Delhi | 9999965857 🫦 Vanshika Verma More Our Se...
Dwarka Sector 26 Call Girls | Delhi | 9999965857 🫦 Vanshika Verma More Our Se...Dwarka Sector 26 Call Girls | Delhi | 9999965857 🫦 Vanshika Verma More Our Se...
Dwarka Sector 26 Call Girls | Delhi | 9999965857 🫦 Vanshika Verma More Our Se...
 
Call Girls In Model Towh Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Model Towh Delhi 💯Call Us 🔝8264348440🔝Call Girls In Model Towh Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Model Towh Delhi 💯Call Us 🔝8264348440🔝
 
Call Girls in Uttam Nagar Delhi 💯Call Us 🔝8264348440🔝
Call Girls in Uttam Nagar Delhi 💯Call Us 🔝8264348440🔝Call Girls in Uttam Nagar Delhi 💯Call Us 🔝8264348440🔝
Call Girls in Uttam Nagar Delhi 💯Call Us 🔝8264348440🔝
 

Mikro tik site to site eoip tunnel with i psec

  • 1. MikroTik Site to Site EoIP Tunnel with IPsec VPN (Virtual Private Network) is a technology that provides a secure tunnel across a public network. A private network user can send and receive data to any remote private network using VPN Tunnel as if his/her network device was directly connected to that private network. MikroTik provides EoIP (Ethernet over IP) tunnel that is used to create a site to site VPN. EoIP tunneling is a MikroTik RouterOS protocol that creates an Ethernet tunnel between two MikroTik Routers on top of an IP connection. EoIP adds an outer header mentioning the entry point of the tunnel (SourceIP) and the exit point of the tunnel (DestinationIP) but the inner packet is kept unmodified. IPIP Encapsulation EoIP tunnel only encapsulates IP packets but does not provide authentication and encryption. EoIP tunnel with IPsec ensures IP packet encapsulation as well as authentication and encryption. IPsec usage makes your packets secure but it works slowly because of having extra authentication and encryption process. So, my opinion is that if data security is your concern, use EoIP tunnel with IPsec but if data security is not so headache, use only MikroTik EoIP tunnel because it works so faster. The goal of this article is to design an EoIP VPN tunnel with IPsec. So, in this article I will show how to create an EoIP tunnel with IPsec to establish a secure site to site VPN tunnel between two MikroTik Routers. Network Diagram To configure a site to site EoIP VPN Tunnel (with IPsec) between two MikroTik Routers, I am following a network diagram like below image.
  • 2. Site to Site EoIP Tunnel with IPse In this network, Office1 Router is connected to internet through ether1 interface having IP address 192.168.70.2/30. In your real network this IP address will be replaced with public IP address provided by your ISP. Office1 Router’s ether2 interface is connected to local network having IP network 10.10.11.0/24. After EoIP tunnel configuration, an EoIP tunnel interface will be created in Office 1 Router whose IP address will be assigned 172.22.22.1/30. Similarly, Office 2 Router is connected to internet through ether1 interface having IP address 192.168.80.2/30. In your real network this IP address will also be replaced with public IP address. Office 2 Router’s ether2 interface is connected to local network having IP network 10.10.12.0/24. After EoIP tunnel configuration an EoIP tunnel interface will also be created in Office 2 Router whose IP address will be assigned 172.22.22.2/30. We will configure a site to site EoIP Tunnel between these two MikroTik Routers so that local network of these routers can communicate with each other through this VPN tunnel across public network. Core Devices and IP Information To configure a site to site EoIP VPN between two Routers, I am using two MikroTik RouterOS v6.38.1. IP information that I am using for this network configuration are given below. ▪ Office 1 Router WAN IP: 192.168.70.2/30, LAN IP Block 10.10.11.0/24 and Tunnel interface IP 172.22.22.1/30 ▪ Office 2 Router WAN IP: 192.168.80.2/30, LAN IP Block 10.10.12.0/24 and Tunnel interface IP 172.22.22.2/30 This IP information is just for my RND purpose. Change this information according to your network requirements.
  • 3. Site to Site EoIP Tunnel Configuration with IPsec We will now start our site to site EoIP VPN configuration according to the above network diagram. Complete configuration can be divided into four parts. ▪ MikroTik RouterOS basic configuration ▪ EoIP tunnel configuration with IPsec ▪ Assigning IP address on tunnel interface ▪ Static route configuration Part 1: MikroTik RouterOS Basic Configuration Basic RouterOS configuration includes assigning WAN IP, LAN IP, DNS IP and Route, NAT configuration. According to our network diagram, we will now complete these topics in our two MikroTik RouterOS (Office 1 Router and Office 2 Router). Office 1 Router Basic Configuration The following steps will guide you how to perform basic configuration in your Office 1 RouterOS. ▪ Login to Office 1 RouterOS using winbox and go to IP > Addresses. In Address List window, click on PLUS SIGN (+). In New Address window, put WAN IP address (192.168.70.2/30) in Address input field and choose WAN interface (ether1) from Interface dropdown menu and click on Apply and OK button. Click on PLUS SIGN again and put LAN IP (10.10.11.1/24) in Address input field and choose LAN interface (ether2) from Interface dropdown menu and click on Apply and OK button. ▪ Go to IP > DNS and put DNS servers IP (8.8.8.8 or 8.8.4.4) in Servers input field and click on Apply and OK button. ▪ Go to IP > Firewall and click on NAT tab and then click on PLUS SIGN (+). Under General tab, choose srcnat from Chain dropdown menu and click on Action tab and then choose masquerade from Action dropdown menu. Click on Apply and OK button. ▪ Go to IP > Routes and click on PLUS SIGN (+). In New Route window, click on Gateway input field and put WAN Gateway address (192.168.70.1) in Gateway input field and click on Apply and OK button. Basic RouterOS configuration has been completed in Office 1 Router. Now we will do similar steps in Office 2 RouterOS. Office 2 Router Basic Configuration The following steps will guide you how to perform basic configuration in your Office 2 RouterOS.
  • 4. ▪ Login to Office 2 RouterOS using winbox and go to IP > Addresses. In Address List window, click on PLUS SIGN (+). In New Address window, put WAN IP address (192.168.80.2/30) in Address input field and choose WAN interface (ether1) from Interface dropdown menu and click on Apply and OK button. Click on PLUS SIGN again and put LAN IP (10.10.12.1/24) in Address input field and choose LAN interface (ether2) from Interface dropdown menu and click on Apply and OK button. ▪ Go to IP > DNS and put DNS servers IP (8.8.8.8 or 8.8.4.4) in Servers input field and click on Apply and OK button. ▪ Go to IP > Firewall and click on NAT tab and then click on PLUS SIGN (+). Under General tab, choose srcnat from Chain dropdown menu and click on Action tab and then choose masquerade from Action dropdown menu. Click on Apply and OK button. ▪ Go to IP > Routes and click on PLUS SIGN (+). In New Route window, click on Gateway input field and put WAN Gateway address (192.168.80.1) in Gateway input field and click on Apply and OK button. Basic RouterOS configuration has been completed in Office 2 Router. Now we are going to start EoIP tunnel configuration. Part 2: EoIP Tunnel Configuration with IPsec After MikroTik Router basic configuration, we will now configure EoIP tunnel with IPsec in both MikroTik RouterOS. In EoIP tunnel configuration, we will specify local and remote IP address as well as shared secret for IPsec and Tunnel ID. EoIP Tunnel Configuration in Office 1 Router The following steps will show how to configure EoIP tunnel in your Office 1 Router. ▪ Click on Interfaces menu item from Winbox and click on EoIP Tunnel tab and then click on PLUS SIGN (+). New Interface window will appear. ▪ Put a meaningful EoIP tunnel interface name (eoip-tunnel-r1) in Name input field. ▪ Put Office 1 Router’s WAN IP address (192.168.70.2) in Local Address input field. ▪ Put Office 2 Router’s WAN IP address (192.168.80.2) in Remote Address input field. ▪ Put a unique ID (for example: 10) in Tunnel ID input field. This ID must be same in both routers. ▪ Put IPsec shared secret in IPsec Secret input field if your router supports IPsec and you wish to enable IPsec authentication and encryption. You should remember that this IPsec Secret must be same in both routers. ▪ Also uncheck Allow Fast Path checkbox if it is checked and you want to enable IPsec. ▪ Click Apply and OK button. ▪ You will find a new EoIP tunnel interface followed by your given name (eoip-tunnel-r1) has been created in Interface List window. EoIP tunnel configuration in Office 1 Router has been completed. Now we will do the similar steps in our Office 2 Router to create EoIP tunnel interface. EoIP Tunnel Configuration in Office 2 Router
  • 5. The following steps will show how to configure EoIP tunnel in your Office 2 Router. ▪ Click on Interfaces menu item from Winbox and click on EoIP Tunnel tab and then click on PLUS SIGN (+). New Interface window will appear. ▪ Put a meaningful EoIP tunnel interface name (eoip-tunnel-r2) in Name input field. ▪ Put Office 2 Router’s WAN IP address (192.168.80.2) in Local Address input field. ▪ Put Office 1 Routers WAN IP address (192.168.70.2) in Remote Address input field. ▪ Put a unique ID (for example: 10) in Tunnel ID input field. This ID must be same in both routers. ▪ Put IPsec shared secret in IPsec Secret input field if your router supports IPsec and you wish to enable IPsec authentication and encryption. You should remember that this IPsec Secret must be same in both routers. ▪ Also uncheck Allow Fast Path checkbox if it is checked and you want to enable IPsec. ▪ Click Apply and OK button. ▪ You will find a new EoIP tunnel interface followed by your given name (eoip- tunnel-r2) has been created in Interface List window. EoIP tunnel configuration in Office 2 Router has been completed. Now we will assign IP address in our newly created EoIP tunnel interface in our both RouterOS so that both router can communicate with each other through this VPN tunnel interface. Part 3: Assigning IP Address in EoIP Tunnel Interface After EoIP tunnel configuration, a new EoIP tunnel interface has been created in both routers. So, if we assign same block IP in both interfaces, the both router will be able to communicate with each other through this EoIP tunnel. In this part, we will now assign IP address in our newly created tunnel interface. Assigning IP Address on Office 1 Router’s EoIP Tunnel Interface The following steps will show how to assign IP address on Office 1 Router’s tunnel interface. ▪ Go to IP > Address menu item and click on PLUS SIGN (+). ▪ Put a new private IP Block IP (172.22.22.1/30) in Address input field. ▪ Choose newly created tunnel interface (eoip-tunnel-r1) from Interface drop down menu. ▪ Click Apply and OK button. Assigning IP address on Office 1 Router’s tunnel interface has been completed. Similarly, we will now assign IP address on Office 2 Router’s tunnel interface. Assigning IP Address on Office 2 Router’s EoIP Tunnel InterfaceThe following steps will show how to assign IP address in Office 2 Router’s tunnel interface. ▪ Go to IP > Address menu item and click on PLUS SIGN (+). ▪ Put a new private IP Block IP (172.22.22.2/30) in Address input field. ▪ Choose newly created tunnel interface (eoip-tunnel-r2) from Interface drop down menu. ▪ Click Apply and OK button.
  • 6. Assigning IP address on Office 2 Router’s tunnel interface has been completed. In this stage both routers are now able to communicate with each other. But both routers’ LAN cannot communicate with each other without configuring static routing. So, in the next part we will configure static routing in our both Office Router. Part 4: Static Route Configuration We will now configure static route in our both Office Router so that each router’s LAN can communicate with each other through EoIP tunnel. Static Route Configuration in Office 1 Router The following steps will show how to configure static route in Office 1 Router. ▪ Go to IP > Routes and click on PLUS SIGN (+). New Route window will appear. ▪ In New Route window, put destination IP Block (10.10.12.0/24) in Dst. Address input field. ▪ Put the Gateway address (172.22.22.2) in Gateway input field. ▪ Click Apply and OK button. Static route configuration in Office 1 Router has been completed. Now we will configure static route in Office 2 Router. Static Route Configuration in Office 2 Router The following steps will show how to configure static route in Office 2 Router. ▪ Go to IP > Routes and click on PLUS SIGN (+). New Route window will appear. ▪ In New Route window, put destination IP Block (10.10.11.0/24) in Dst. Address input field. ▪ Put the Gateway address (172.22.22.1) in Gateway input field. ▪ Click Apply and OK button. Static route configuration in Office 2 Router has been completed. Now both router as well as its LAN can communicate with each other through EoIP tunnel across public network. To check your configuration, do a ping request from any router or any local network machine to other local network machine. If everything is OK, your ping request will be success. If you face any confusion to follow the above steps properly, follow my video about MikroTik Site to Site EoIP Tunnel with IPsec carefully. I hope it will reduce your any confusion. EoIP VPN Tunnel Configuration with IPsec has been explained in this article. I hope you will be able to configure EoIP tunnel with IPsec between your two office routers. However, if you face any confusion to configure EoIP tunnel in your MikroTik Router, feel free to discuss in comment or contact me from Contact page. I will try my best to stay with you.