Hello guys,
Is it possible somehow to bridge VPN or IPsec clients to some local bridge? Like it works on many firewalls out of the box, like watchguard or sonicwall with ipsec/xauth.
I’m using IPSEC IKEv2 RSA on Mikrotik (connecting from Android, Iphone aso) for a long time and completely satisfied how it works. But traffic goes only then i use different address pull from ipsec clients in Mode Configs. For example clients in Bridge1 get addresses from dhcp 172.16.10.10-200. But i wona set address 172 .16.10.210-220 for ipsec clients in Mode Configs, and see all of this clients like in bridge. Is it possible? I hope problem is somewhere in policies, but i’ve tryed many different setups and traffic doesn’t go.
And point me pls to some diagram (I really can’t find it on Internet) how this traffic goes from ipsec clients. How way srcnat, on what interface. I can’t find the theory 
.
Thanks.