Established Ipsec/ipsec - no traffic between 2 routers

ids · September 3, 2019, 1:13pm

Hi, i am searching about my problem, but dint find any info about it.

I have a ipsec tunel between 2 sites, the tunnel is established, but no ping between 2 sites.
What i mean ==>
on MKtik1
1 A src-address=a.a.a.a/24 src-port=any dst-address=b.b.b.b/24 dst-port=an>
protocol=all action=encrypt level=require ipsec-protocols=esp tunnel=yes
sa-src-address=A.A.A.A sa-dst-address=B.B.B.B
proposal=de_prop ph2-count=1

[admin@MKtik1] /ip ipsec remote-peers> print
Flags: R - responder, N - natt-peer

ID STATE

0 established

installed-sa exist

/ip firewall nat
add action=accept chain=srcnat dst-address=a.a.a.a/24 src-address=b.b.b.b/24

[admin@MKtik1] /ip route> print

DST-ADDRESS PREF-SRC GATEWAY DISTANCE

7 A S 10.23.0.0/16 bridgeLAN 1

On other site thinks are equal, but as i say no ping, no traceroute, nothing…

Any ideas?