So I am trying to setup an IPSec connection to a third party that is providing secure access to some networks. The network is setup as follows:
Local MikroTik:
WAN IP - 1.1.1.1/24
Local Side of IPSec - 192.168.1.1/24
LAN - 172.16.0.1/24
Remote IPSec Concentrator
WAN IP - 2.2.2.2/24
Remote Side of IPSec - 10.0.0.1/24
I have setup the tunnel policy, peer, proposals, etc and am able to ping 10.0.0.1/24 through the tunnel.
The question is that this provider also provides access to other networks (10.1.1.0/24, 10.2.2.0/24, etc) through that gateway. My question is that I am not sure how to actually setup the static routes to route 10.1.1.0/24, etc to 10.0.0.1/24 since IPSec doesn’t actually create an interface.
After my research I am thinking this isn’t actually possible since MikroTik doesn’t give you an interface for IPSec connections thus you cannot route with them. Anyone else shed some light?
Allright… Thanks everyone - and especially thanks to efaden for helping me out with this.
It’s almost a shame that MikroTik does not support this…and confusing to say the least!
I’ve called the provider and asked for L2TP, IPIP or GRE, they gonne call me back and hopefully they can provide this.
…But for now, I’ve given up getting this to work - seems like there is no MT way!
