Hi,
Our client wants to setup a IPSEC vpn between there Cisco Switch and our Mikrotik Core CCR1036 (v6.4) .
We need to nat all connections over the VPN so that only one address of 172.17.x.x shows to them over the VPN.
I’ve tried many ways to get this working including creating a vLan to separate the networks but nothing works.
Any ideas or examples I can follow ?
Basic Setup is as follows :
Client has three Subnets we need access too : 172.19.0.0/16 , 172.20.0.0/16 , 172.30.0.0/16
We have to NAT all traffic over the VPN to them on a 172.17.xx.xx address
So far I can get phase 1 connection as I can see that in the logs but after that nothing works and no SA is created.