How to Connect Mikrotik to Office VPN (PPTP Client)

Posted on by

Virtual Private Network (VPN) is a technology that we can use to access private network (local) through the public network (internet). This VPN is very useful to access a private office network from anywhere as long as we have an internet connection. For more details please see the following PPTP illustration (Point-to-Point Tunneling Protocol) VPN:

Topologi PPTP VPN
Topology PPTP VPN

 

I have an analogy that there is a branch office that needs to connect to the headquarters but the branch office has no direct connection to the central office intranet. There is the only internet connection, while employees in branch offices that need intranet access is quite a lot, and his VPN account there is only one.

To mitigate this, we can take advantage of the Mikrotik Router to connect to the VPN server and provide an intranet connection to all client in the branch office with only one VPN account only.

How to? Let’s talk together.

Tutorial How to Connect Mikrotik to Office VPN via PPTP VPN Client

1. Make sure your Mikrotik Router is connected to the Internet. If not please read the previous article: Tutorial on how to connect Mikrotik to the Internet
Here I use a connection from MiFi Smartfren Andromax.

2. Open Winbox Mikrotik -> Click PPP menu, on the interface tab add PPTP Client.

PPTP VPN Mikrotik
PPTP VPN Mikrotik

 

3. Name the PPTP VPN.

PPTP Client Mikrotik
PPTP Client Mikrotik

 

4. Go to Dial Out tab -> Connect to fill in the IP Address of its VPN Server -> Enter also the user and password of his VPN account -> Click Apply -> OK

Out PPTP Client
Out PPTP Client

 

5. Check the status of PPTP VPN connection by looking at the bottom of the interface make sure its status is connected and the sign in front of its VPN icon “R”.

Cek Status VPN
Cek Status VPN

 

6. Now we try to ping the IP address on the Intranet. The result is still RTO.

Connect Mikrotik to Office VPN
Connect Mikrotik to Office VPN

 

7. In order to connect to the office intranet, we add a static routing table with Dst. Address Private Network (intranet office) and its gateway PPTP VPN interface.

Private Network 10.0.0.0/8

Routing ke IP Lokal
Routing ke IP Lokal

 

Private Network 172.16.0.0/12

Routing ke IP Lokal 2
Routing  IP Lokal 2

 

Can also be added to Private Network 192.168.0.0/16

8. Try test ping again, and the result is no longer RTO and can connect to the intranet.

Connect Mikrotik to Office VPN
Connect Mikrotik to Office VPN

 

9. Try to test the connection to the central office intranet on the client. Can by ping or open a web-based application.

Connect Mikrotik to Office VPN
Connect Mikrotik to Office VPN

 

Well, now the client can connect to the intranet headquarters through Mikrotik. If your client uses a laptop, please use Mikrotik Hotspot for more secure access.