Hi,
I’m implementing IPSEC connection beetwen MT (450G with v5.24) and FG (110c with v5.0.2). After weeks of digging, reading and testing I configured working tunnel with preshared password option.
I decided to take my config into higher level and use certificates for authenticating connection. I generated and imported certs with this article:
http://wiki.mikrotik.com/wiki/Manual:Create_Certificates
and I have 3 certs (one CA and two with KR flags for server and client). I imported certs into FG unit also.
It seems that mikrotik has problem with using certs I imported because in log I see info:
ipsec, debug failed to get peers CERT
i have read topic
http://forum.mikrotik.com/t/resolved-failed-to-get-my-cert/61210/1
and
http://forum.mikrotik.com/t/failed-to-get-my-cert/60840/1
but no clue what is problem. Any suggestion what is problem or how can I debug this?