Thanks Guys for sharing your experience. actually in my case the other end
had a firewall which denying my LAN traffic. although IPsec policy has to
be smart enough to bypass the firewall rule however at the end i had to
create manual routes in the firewall and things start to work again.
Thanks f
Hi Muhammad
I do consider the ipsec implementation on mikrotik to be broken.
Most other firewalls do implement ipsec on interface level. So all
traffic out that specific interface you define is being encrypted.
Not so Mikrotik. There ipsec is defined on routing level. This
works fine as long as
Not sure if this is what you are looking for but here’s what I had to do.
NAT caused issues with ipsec so I had to not use it on the router with the
tunnel.
In the ip ipsec policy I had to create an action rule for each subnet on the
lan, i.e. src-address=192.168.1.0/24 .
That also applied for ea
3 matches
Mail list logo
