IPSec between PF Sense and Mikrotik Router OS

Hello Everyone,

I have a server at a colocation and over there i use a Mikrotik as a firewall/router to that server, my other side is my house, i have a PF Sense 2.2.6 RELEASE. Before at the colocation i had a PF Sense and my ipsec was working just fine, now i’m using a Mikrotik at the Colocation and using the same settings i can’t close the link. Right now i’m using 3DES (i know it’s not as safe as AES-256, but i tough that maybe could be the encryption)

The Environment:

PF Sense:
WAN IP: 198.XXX.XXX.127
LAN Network: 192.168.20.0/24

Mikrotik:
WAN IP: 74.XXX.XXX.205
LAN Network: 192.168.101.0/24


Here some prints of the configurations that i have: http://imgur.com/a/Rx7mY

Since now, thank you everyone for your help.

Enable ipsec debug logs to see what exactly is not working.

Hi mrz,

Thank you for your reply, i got a screenshot here of the logs showing a bunch of errors, all of them pretty similar,

Here is the link of the image with logs http://imgur.com/igS98I2

Again mrz, thank you for attention and help to solve my issue, i appreciate

sorry, wrong image on the last reply, actually this is the debug logs

http://imgur.com/FtD23nS

Remote peer does not reply to phase1. Start by checking firewall if ipsec is not blocked.

Here follows the rules on both devices, i checked them i tough that could be them, i had a PF Sense in place on the collocation and they worked fine together.

http://imgur.com/a/YlpWE

Maybe if i open a port (500) on the nat of the mikrotik pointing to the mikrotik itself, let me test this option here and i bring my results

nope, it still not working with the nat rule pointing to the mikrotik itself

GOT IT, the problem was in front of my eyes on the Mikrotik. Under IP > IPSec on the tab Policies, the tab Action of my policy had a default proposal instead of the proposal that i configured. Changed and now is everything perfect again

Thank you MRZ for the help, i really appreciate