Hi all,
I have setup IPsec IKEv2 in tunnel mode, using pre-shared key, between Strongswan 5.5.1 as initiator and RouterOS v6.46.3 as responder.
The tunnel is established fine and the client is able to access the networks behind the RouterOS, but I am not able to make RouterOS access the subnets behind the client.
I have tried several policies, and although I define the needed subnets I do not see any SA being established at Router OS for the same subnets, while at client side I see the needed SAs and the client is able to reach those subnets behind RouterOS. I have added also the same subnets at split-include at mod-config.
Perhaps the description above is very rough. I can provide more details if needed.
Am I missing anything so as to make the server side reach subnets behind the client?
Thanx for any help.
Alex