Limit access to specific host in my network over VPN in Mikrotik

vpn remote-access mikrotik-routeros
6,306

Solution 1

Below is the command line config for a MikroTik router. You can copy these lines in a MikroTik CLI to create a PPP user with limited access to servers.

/ppp profile add address-list=VPN_USER_client local-address=10.15.32.33 name=USER remote-address=ovpn-lan

/ip firewall address-list add address=10.0.0.10 list=VPN_USER_server


/ip firewall filter
add action=jump chain=forward jump-target=VPN_USER src-address-list=VPN_USER_client

add action=accept chain=VPN_USER dst-address-list=VPN_USER_server dst-port=3389 protocol=tcp

add action=drop chain=VPN_USER

Solution 2

This can't be done in VPN Configuration of Mikrotik. Add a filter rule in Mikrotik Firewall that allows traffic from VPN IP address of your consultant to the specified PC. Then add a filter rule which denies any access from consultant's VPN IP address to anywhere.

Consultant's VPN IP address is the IP address which Mirotik gives to VPN connection of your consultant. You can configure VPN server to give a specific IP address to a specific VPN username and password.

Share:
6,306

Related videos on Youtube

zvelez
Author by

zvelez

Updated on September 18, 2022

Comments

  • zvelez
    zvelez over 1 year

    I have a Mikrotik RB2011, the mikrotik it's configured to act as a VPN Server and it's working, I need the enable to external consultant access to only one PC of my network, no other PC or IP, Please help me to reconfigure my VPN in Mikrotik Thanks

  • Jānis Šteninbergs
    Jānis Šteninbergs almost 7 years
    It's the comand line config for a MikroTik router. You can copy these lines in a MikroTik CLI to create a PPP user with limited access to servers.
  • Vomit IT - Chunky Mess Style
    Vomit IT - Chunky Mess Style almost 7 years
    I added that to your answer so just know that including such detail in answers is important for a reader so they fully understand what they need to do with such content, etc.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Access workstations without public IP - maybe with VPN
How to share outside your network
Cannot enable shared access. Error: 87 the parameter is incorrect
Why won't my VPN connect?
How to forward GRE protocol 47 on Mikrotik router?
Mikrotik Firewall rule: block all connection except to VPN server
Checkpoint VPN Linux command line (CLI) client
Accessing a webserver hosted behind vpn with closed ports remotely?
How can I set a remote access policy / gpo to deny RAS VPN access to a particular OU?
Cannot connect to VPN on Server 2012