Block access VPN using MikroTik. To get to the configuration stage we must first understand how VPN (Virtual Private Network) works. Usually people use VPN access to be able to access the sites that we have filtered. To avoid internet access used for negative things as network admins and sometimes we need to do some filtering access. Here’s how to block VPN access using MikroTik via PPTP and L2TP.
Among the several VPN protocols that exist, the most widely used are PPTP and L2TP/IPSec. Each VPN protocol has its own port, from that port we can already start the configuration on Mikrotik. Here the VPN port data is PPTP and L2TP/IPSec.
Point-to-point Tunneling Protocol (PPTP)
Point-to-point tunneling protocol (PPTP) is a set of communication rules that govern the secure implementation of virtual private networks (VPN), which allow organizations a method of extending their own private networks over the public Internet via “tunnels“. – block VPN
- TCP/1723 : use for pptp control path.
- GRE : use for pptp data path.
Layer 2 Tunneling Protocol (L2TP)
Layer 2 Tunneling Protocol is a tunneling protocol that used to support virtual private networks (VPNs) or as part of the delivery of services by ISPs. It does not provide any encryption or confidentiality by itself.
- UDP/500 : Used by IKEv1/IKEv2 IPSec control path.
- UDP/4500 : Used by IKEv1/IKEv2 IPSec control path.
- UDP/1701 : Used by L2TP Control.
- ESP/50 : data path ESP.
Block Configuration via MikroTik terminal
And here that is our tutorial to block access VPN using MikroTik , if it is useful then share and subscribe to oukr channel on Life Digital. Thank you everyone 🙂