Sorry for asking easy questions, but I have been searching for days and can't seem to get this one. I have two mikrotik routers that are connected via an EoIP bridge over a PPTP vpn. I have port forwarded a public address to a server on the remote side of this bridge. From what I can see in the packet sniffer, the icmp traffic makes it to the remote side, however on the return (or icmp reply) The traffic goes out the default gateway to the internet and not back through the tunnel. As a result, it doesn't communicate. It will work if I route everything through the tunnel, but it is really really slow that way. Can anyone assist? I have the config below:

Main Router (#1):
/interface eoip> print
Flags: X - disabled, R - running
0 R name="EoIP1" mtu=1500 l2mtu=65535 mac-address=02:0C:2F:3C:4F:37
arp=enabled local-address=0.0.0.0 remote-address=172.16.1.2 tunnel-id=0

ip route print
Flags: X - disabled, A - active, D - dynamic,
C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme,
B - blackhole, U - unreachable, P - prohibit
# DST-ADDRESS PREF-SRC GATEWAY DISTANCE
4 ADC 10.173.2.0/24 10.173.2.254 EoIP_Bridge 0

interface bridge print
Flags: X - disabled, R - running
0 R name="EoIP_Bridge" mtu=1500 l2mtu=1594 arp=enabled
mac-address=02:0C:2F:3C:4F:37 protocol-mode=none priority=0x8000
auto-mac=yes admin-mac=00:00:00:00:00:00 max-message-age=20s
forward-delay=15s transmit-hold-count=6 ageing-time=5m

interface bridge port print
Flags: X - disabled, I - inactive, D - dynamic
# INTERFACE BRIDGE PRIORITY PATH-COST HORIZON
8 EoIP1 EoIP_Bridge 0x80 10 none
9 vif1.2 EoIP_Bridge 0x80 10 none

ip address pri
Flags: X - disabled, I - invalid, D - dynamic
# ADDRESS NETWORK INTERFACE
48 10.173.2.254/24 10.173.2.0 vif1.2
49 D 172.16.1.1/32 172.16.1.2 <pptp1>

Remote Router (#2)
interface eoip print
Flags: X - disabled, R - running
0 R name="EoIP1" mtu=1500 l2mtu=65535 mac-address=02:43:20:90:BB:25
arp=enabled local-address=0.0.0.0 remote-address=172.16.1.1 tunnel-id=0

ip route print
Flags: X - disabled, A - active, D - dynamic,
C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme,
B - blackhole, U - unreachable, P - prohibit
# DST-ADDRESS PREF-SRC GATEWAY DISTANCE
0 X S 0.0.0.0/0 172.16.1.1 1
1 ADS 0.0.0.0/0 192.168.5.1 2
2 A S 10.0.0.0/8 172.16.1.1 1
3 ADC 10.173.2.0/24 10.173.2.253 EoIP_Bridge 0

interface bridge print
Flags: X - disabled, R - running
0 R name="EoIP_Bridge" mtu=1500 l2mtu=1598 arp=enabled
mac-address=4C:5E:0C:33:B0:95 protocol-mode=none priority=0x8000
auto-mac=yes admin-mac=00:00:00:00:00:00 max-message-age=20s
forward-delay=15s transmit-hold-count=6 ageing-time=5m

interface bridge port print
Flags: X - disabled, I - inactive, D - dynamic
# INTERFACE BRIDGE PRIORITY PATH-COST HORIZON
0 I ether2 bridge-local 0x80 10 none
1 I ether6-master-local bridge-local 0x80 10 none
2 I sfp1 bridge-local 0x80 10 none
3 X wlan1-gateway bridge-local 0x80 10 none
4 I ether1 bridge-local 0x80 10 none
5 I ether3 Server_Bridge 0x80 10 none
6 I ether4 Server_Bridge 0x80 10 none
7 ether5 EoIP_Bridge 0x80 10 none
8 EoIP1 EoIP_Bridge 0x80 10 none

ip address print
Flags: X - disabled, I - invalid, D - dynamic
# ADDRESS NETWORK INTERFACE
0 ;;; default configuration
192.168.88.1/24 192.168.88.0 sfp1
1 D 192.168.5.83/24 192.168.5.0 wlan1
2 10.173.2.253/24 10.173.2.0 ether5

This was answered in another thread. I was missing a source-nat on the head end router. So I source natted any packets headed to the remote side as coming from an ip of the head end router within the same subnet.

Thanks