You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 9 Next »

Summary

Sub-menu: /ip cloud
Packages required: routeros, wifiwave2
RouterOS version required: v7.11
Hardware requirements: 802.11ax devices

Back To Home is a convenience feature, that preconfigures your device for secure VPN access from anywhere in the world to your router and your network, even if your router does not have a public IP address. Configuration can be done manually, or with our new MikroTik VPN companion app (Android, iPhone).

If the VPN server (your home router) has a public IP address, the VPN app will create a direct VPN connection between the phone and the router. However, if the router is not directly reachable from the internet, the connection will be made through the MikroTik relay server. Connection remains intact and fully encrypted even in this case, the relay server does not have access to the communication within the encrypted tunnel. In this case, speed could be limited. 

This feature is a convenient option to view content available in your home country, from locations, where some content is not available. It is not meant for anonymity, it is for simple one click access to your home network. For more granular security controls, we recommend to manually configure and secure a VPN connection using the advanced RouterOS options. 

Using the companion app

- Connect to router's Wi-Fi;
- Open MikroTik VPN application;
- Open bottom sheet;
- Tap "Add Tunnel";
- Enter router IP address, username, and password, tap "Connect";
- Give tunnel a name, optionally enter DNS server address, tap "Create tunnel";
- You can disconnect from router's Wi-Fi and connect to other network;
- Tap power button to toggle connection of selected tunnel.

Tap "Add tunnel"

Provide your router info

Connection established

If device is not supported, error is shown

Configuring manually in RouterOS

  1. Connect to router  
  2. Enable DDNS Cloud service: `/ip/cloud/set ddns-enabled=yes`
  3. Enable Back To Home: `/ip/cloud/set back-to-home-vpn=enabled`
  4. Print tunnel configuration: `/ip/cloud/print`
  5. Scan QR Code (`vpn-wireguard-client-config-qrcode`) or Copy config (`vpn-wireguard-client-config`) and enter in preferred WireGuard® client. Only one client at a time will be available to use this config. To create more clients, you will need to manually create more peers: `/interface/wireguard/peers/add interface=freevpn-wg public-key=<public_key> allowed-address=192.168.216.x/32`
  • No labels