MikroTik Configuration

Network configuration based on stmicro-crolles-lane.auto.rsc export.

VPN Configuration

Parameter	Value
Protocol	OpenVPN (TCP)
Server	vpn.zippin.tech
Port	443
Cipher	AES-256-GCM
Auth	SHA256
Certificates	x509 client + CA (imported on MikroTik)
Local Subnet	10.27.185.0/24
VPN Tunnel	10.12.0.0/23
GCP Zippin	10.128.0.0/20

Firewall Zones

Chain	Rule	Action
input	established, related	accept
input	ICMP	accept
input	DNS (port 53)	accept (local)
input	DHCP (port 67)	accept
forward	LAN → VPN	accept
forward	VPN → LAN	accept
input/forward	default	drop

NTP Synchronization

Note

Critical Requirement: Zippin cameras require NTP synchronization within < 33ms for accurate tracking. MikroTik is configured as NTP client pointing to pool.ntp.org and relays to all devices on the local network.