I’m working on a network configuration for traveling.
My goal is to maintain a consistent location for my internet connection while moving between different countries.
Challenges I’m facing:
I have a corporate laptop running Windows 11 with strict policies, which prevents me from configuring network preferences. I can only connect to the internet via Wi-Fi or LAN.
I must use a corporate VPN (AnyConnection by Cisco).
Schema:
Corporative laptop
⇅ AnyConnection VPN
⇅ Ethernet / Wi-Fi
GL.iNet (WireGuard-client) ←→ Internet in trip Ethernet / Wi-Fi
⇅ WireGuard tunnel
Root Internet provider ←→ MikroTik RouterOS (WireGuard-server)
Shortly my corporate laptop connects to a GL.iNet device, which routes through the root internet provider.
I have some result:
1 - Configuration works with Corporative laptop connected with WiFi to GL.iNet, but configuration has high latency.
2 - Configuration laptop connected with LAN to GL.iNet cannot connect to AnyConnection VPN
Notes:
1 - Without Wireguard tunnel configuration works normal
Do somebody can give advices and hack how to improve WiFi configuration and fix LAN ?
LAN or Wi-Fi shouldn't make that much of a difference although a cable will always have less latency than Wi-Fi. Remove as many variables as you can. Try a machine fully under your control that's hard lined to the Opal's LAN.
Can you try using the OpenVPN client on your router?
After connecting your laptop to the SFT1200, try pinging 8.8.8.8, pinging your company VPN server domain name/ip.
If you can access the public network but not AnyConnect, try checking the ports and firewall.
Its performance is not as good with the AnyConnect VPN due to its slow speed.
The worst performance occurs when using AnyConnect in conjunction with the WireGuard client on GL SFT1200. This is because WireGuard frequently disconnects. When I access the VPN Dashboard, it displays an orange color with the status: “VPN client is starting…”
I expected connection degradation when including WG VPN, and moreover, AnyConnect VPN, it is okay.
My concern is about the GL SGT1200 WireGuard client, which doesn't keep a stable connection.
I didn't catch your advice.
Do you want me to use OpenVPN client on GL router to connect to WireGuard server of Mikrotik router?
The current configuration is live, but it has a poor connection and latency quality. As I said before:
Blockquote * The worst performance occurs when using AnyConnect in conjunction with the WireGuard client on GL SFT1200. This is because WireGuard frequently disconnects. When I access the VPN Dashboard, it displays an orange color with the status: “VPN client is starting…”
Do you have a commercial WG provider you can test against? If not Proton VPN has a free plan. They have .conf files you can upload directly to the GL GUI -> VPN - WG Client. That will rule out the MikroTik or not. It should.
