Can an aggressive mode VPN from Mikrotik to Sonicwall be created? The public address of the Sonicwall is fixed. The Mikrotik, mobile. Sometimes connecting to a WISP provider who gives a private IP, and uses his wireless to eventually get back to some public IP that is probably Natted for his clients. In other words a hub and spoke configuration where the Sonicwall public IP is known but the Mikrotik IP isn’t. It should just get an IP using DHCP client from whatever ISP/WISP is plugged into the WAN interface and establish the aggressive mode VPN.
Hi,
i have done recently site-to-sIte IPsec VPN, one end static other dynamic, MT and openswan i think it was version 2.6.5, so far only with preshared key. I might write wiki entry, but i want to do more testing: with RSA sig., policy based, route based and so on…
I need to make same against Fortigate, but waiting to get hands on one. In theory it should work, practically it needs little work to find right value for one option.
Important hint - don’t try to configure this if you don’t have full access to both ends.