Multiple IPsec clients from same public IP

martking · February 26, 2019, 12:48am

Hi All,

I am sure this may have been asked before, however I don’t seem to be able to find anyone trying to achieve exactly what I am trying to do.

I have 3 Mikrotik’s as follows

1 X CHR Router hosted in the cloud with a public IP address eg 1.1.1.1
2 X Mips devices these will be used as clients behind a single public ip eg 2.2.2.2

I can get both devices to establish connection using a dynamic peer,and each device communicates with a VLAN setup on the CHR, the problem is when they are both connected at the same time i lose connectivity on the remote subnets until one device is disabled. even though both policy’s are showing as established

Has anyone found a work around for this scenario

idlemind · February 26, 2019, 2:24am

Is the level property in the IPSEC policy set to unique?

martking · February 27, 2019, 11:33pm

You sir are a gent,

I had one client set to unique and the other set to require, set them both to unique and bang all working

Thank you

idlemind · February 27, 2019, 11:43pm

Glad to hear!