I’m testing a site-to-site IPSec tunnel over IPIP tunnel before it gets deployed.
Scenario is multicast server device on one end; multicast client device on another end, both behind MikroTik routers connected to each other over the IPIP IPSec tunnel.
During a test on an isolated network I can ping everything both ways.
When I put it on actual WAN IPs I lose most of the pings one way.
Can anyone help with this please? Just ask what details will be needed and I will post back. Thank you!
It turns out when a backup was restored on the second test MikroTik router, the MAC addresses were cloned and it was causing weird issues. Found this by doing a config export on both routers and noticed that the interfaces on one router had MAC addresses assigned explicitly (which doesn’t show up in a factory config). In my setup it was easy enough to reset to factory defaults and set up the router from scratch. I didn’t try this but someone had listed
/interface ethernet reset-mac-address
as the command to do this. Still trying to figure out the multicast part of the puzzle.
