MikroTik SSTP VPN Setup

SSTP creates a secure VPN tunnel on TCP port 443. So, virtually SSTP cannot be blocked and data can be sent securely across public network with Windows client.

Most Relevant Content

  • MikroTik Site to Site SSTP VPN Setup with RouterOS Client

    VPN (Virtual Private Network) technology provides a secure and encrypted tunnel across a public network. So, a private network user can send and receive data to any remote private network through VPN tunnel as if his/her network device was directly connected to that private network. Secure Socket Tunneling Protocol (SSTP) transports PPP tunnel over TLS channel. SSTP uses TLS channel over TCP port 443. So, SSTP VPN can virtually pass through all firewalls and proxy servers. Because of using TLS channel, encrypted data passes over SSTP Tunnel. So, there is no chance to steal data by a middle man attacker and data can send and receive across public network safely. MikroTik SSTP Server can be applied in two methods. Connecting from remote workstation/client: In this method, SSTP VPN client software can communicate with MikroTik SSTP VPN Server over Secure VPN tunnel whenever required and can access remote private network as if it was directly connected to that remote private network. Site to Site SSTP VPN: This method is also known as VPN between routers. In this method, an SSTP client supported router always establishes a SSTP VPN tunnel with MikroTik SSTP VPN Server. So, private networks of these two routers [...]

    READ MORE »

  • »

    MikroTik SSTP VPN Server Configuration with Windows 10 |   April 27, 2020

    VPN (Virtual Private Network) technology provides a secure and encrypted tunnel across a public network. So, a private network user can send and receive data to any remote private network through VPN tunnel as if his/her network device was directly connected to that private network. Secure Socket Tunneling Protocol (SSTP) transports PPP tunnel over TLS channel. SSTP uses TLS channel over TCP port 443. So, SSTP VPN can virtually pass through all firewalls and proxy servers. Because of using TLS [...]

    READ MORE »

  • You May Also Like

  • »

    MikroTik EoIP Tunnel for Bridging LANs over the Internet |   April 22, 2018

    VPN (Virtual Private Network) is a technology that provides a secure tunnel across a public network. A private network user can send and receive data to any remote private network using VPN Tunnel as if his/her network device was directly connected to that private network. MikroTik provides EoIP (Ethernet over IP) that is used to create a site to site VPN tunnel. EoIP tunneling is a MikroTik RouterOS protocol that creates an Ethernet tunnel between two MikroTik Routers on top [...]

    READ MORE »

  • »

    How to Import SSL Certificate in MikroTik RouterOS |   January 16, 2022

    SSL/TLS Certificate is used to make secure communication between server and clients. MikroTik RouterOS has a lot of services such OVPN, SSTP VPN, HTTPS, Hotspot and so on those use SSL/TLS certificate. It is possible to create self-signed certificate in MikroTik RouterOS but self-signed certificate faces untrusted CA warning. So, it is always better to use trusted CA either freemium or premium.  In my previous article, I discussed how to get a free SSL/TLS certificate from Zero SSL but Zero [...]

    READ MORE »

  • »

    MikroTik Blocking Websites with TLS Host Firewall Matcher |   April 29, 2019

    Most of the websites now use https and blocking https websites is so much harder with the MikroTik RouterOS version less than 6.41. But from RouterOS v6.41, MikroTik Firewall introduces a new property named TLS Host that is capable to match https websites so easily. So, blocking https websites like Facebook, YouTube etc. can be easily done with MikroTik Router if RouterOS version is greater than 6.41. In my previous article, I discussed how to block websites with MikroTik Router [...]

    READ MORE »

  • »

    How to Separate MikroTik Hotspot and DHCP IP Pool |   October 9, 2020

    MikroTik default Hotspot Setup comes with a DHCP Server (which uses same IP Pool of Hotspot Server) to provide IP address and other network information to a connected device. Using this automatic IP address connected device can access Hotspot login page. After successfully login, a one to one NAT IP address is also assigned for the device and this process happens internally in Hotspot Server. User device cannot know this one to one NAT IP assigning. However, Hotspot Server actually [...]

    READ MORE »

  • »

    Free Internet Speed Test Online |   August 31, 2015

    You are here because you want to check your broadband internet speed. Don’t worry, I will show you how to check your internet speed from online absolutely free and fastest way. I will show you top 4 websites link from which your broadband internet speed can be checked so easily. I will also show you how to check bandwidth usage continuously with windows operating system’s utility and a third party software utility. So, keep reading this article and find how [...]

    READ MORE »

  • »

    How to Install Discord on Ubuntu 24.04 |   July 28, 2024

    Discord is a popular communication platform designed for creating communities and bringing people together through text, voice, and video chat. Originally created for gamers, Discord has expanded to encompass a wide range of communities beyond gaming, including hobbyists, professionals, study groups, and more. There are several methods of installing Discord on Ubuntu 24.04. We will be covering the easiest method for demonstration which is from the snap store. Following are the step-by-step commands to install Discord on Ubuntu 24.04. Install [...]

    READ MORE »

  • »

    MikroTik WiFi MAC Authentication with UserMan RADIUS Server |   December 23, 2019

    MikroTik Wireless Router is popularly used as WiFi AP. MikroTik WiFi AP has a lot of features to tune WiFi network as your requirements. MAC authentication is one the amazing and useful features in MikroTik WiFi. MAC authentication enables filtering MAC address that means no MAC can be able to connect to WiFi AP without authentication.  MAC authentication can be done either local database or RADIUS Server. MAC authentication with RADIUS Server provides facility to manage multiple APs from centralized [...]

    READ MORE »

  • »

    phpMyAdmin with NGINX – Installation and Configuration |   October 14, 2024

    In modern web development, server management is a vital part. Two popular tools that assist in this process are Nginx and phpMyAdmin. Nginx is a high-performance web server, while phpMyAdmin is a widely-used web-based interface for managing MySQL or MariaDB databases. When combined, these tools provide a strong platform for serving dynamic web applications and managing their databases efficiently. What is Nginx? NGINX (pronounced “engine-x”) is an open-source web server that also functions as a reverse proxy, load balancer, and [...]

    READ MORE »