Static WDS on Mikrotik's RouterOS

Mikrotik's RouterOS and WDS

WDS is a bit of a mystery: when it works, it's great, especially in fully automatic meshed mode: add a node, extend your network. So much the theory. But when it won't work, it's causing trouble. Then it's time to take out the big guns: static WDS connections.

As so often, it's easy to do once you know how to do it:

1. For the WLAN interface to use, set WDS mode to static:

2. Define a static WDS connection. Needs to be done on both sides. You'll need to add the WLAN MAC address of the counterpart (remote) WDS endpoint:

Done. It should connect now and be used.


SoftEther - Part 3

Another year, and another installation of SoftEther again. Every time it gets a bit better though!

Server side

Extract the vpnserver part into /usr (its default location)

cd /usr/vpnserver
./vpnserver start

Now configure with the excellent Windows GUI. And enable SecureNAT and its DHCP server.

When done, do those on the server side:

cat >/etc/systemd/system/softether-vpnserver.service <<EOF
Description=SoftEther VPN Server
ExecStart=/usr/vpnserver/vpnserver start
ExecStop=/usr/vpnserver/vpnserver stop
#ExecStartPost=/bin/sleep 1 ; /sbin/brctl addif br0 tap_softether #only sometimes needed
systemctl start softether-vpnserver
systemctl enable softether-vpnserver

Client side

Install the vpnclient and vpncmd software package (vpnclient should be enough as it includes the vpncmd part). Again, install into /usr

(select 2 to configure the vpnclient)
NicCreate box3
AccountCreate mybox3 /SERVER:vpn.fqdn:5555 /HUB:Box3Hub /USERNAME:myuser /NICNAME:box3
AccountPasswordSet mybox3
(password for user myuser)
# Autostart:
AccountStartupSet mybox3
# Connect:
AccountConnect mybox3
# Check
AccountStatusGet mybox3

And to start it all with a fixed IP, add to /etc/rc.local:

( /usr/vpnclient/vpnclient start ; sleep 10 ; ip addr add 192.168.30.XX/24 dev vpn_box3 ) &