Hello everybody,
following strange behavior with IPSEC VPN (site-to-site) between two Mikrotk routers (or one Mikrotik router and another not-Mikrotik router on a customer site):
When I set Proposal - Auth. Algorithm md5 and Encr. Algorithm aes-256cbc the tunnel works for an unspecified time. (Other settings don’t matter).
This means after some time the tunnel stops working (Phase 2 is still established).
After rebooting the router (without any changes) the tunnel works again.
When the tunnel stops working and I edit Proposal - where I choose Auth. Algorithm md5 and Encr. Algorithm 3des (that means I switch from aes-256cbc to 3des on both VPN sites) the tunnel works without rebooting the router.
So it must be a problem/bug in the ROS, I have 6.40.5 stable installed.
Maybe other users have this problem too.
Best regards