I have to routers: first with 192.168.11.1/24 and second with 192.168.12.1/24. They connected to internet through pppoe and have a global ipv6 on this interface.
I connect routers through gre6 tunnel, assign 192.168.13.1 and 192.168.13.2 to routers and then add ip routes between them.
From client 192.168.11.11 I can ping second router 192.168.12.1 and can login on it from browser or ssh.
I decide add simple encrypt by adding ipsecret field on both sides. But after this second router are inaccessible from browser or ssh, but the ping is working. Generated ipsec configuration looks good (policies, peers, sa), and no errors in log.
How can I fix this issue?