Hi,
I have recently bought my first two RouterBoards (411UAHR) and is busy to try and do the VPN IPSec settings but I’m missing something.
I have done quite a number of VPN’s using the Billion routers but we need to go over to the Mikrotik boards.
I did (once) managed to ping the sim card via the two routers on the far side but could not ping any devices on the on the other side
Here’s my setup
Router 1 I set to IP address 192.169.1.254
Sim card is 192.168.20.1
Peer
address=192.168.20.2/32 port=500 auth-method=pre-shared-key secret=“12345”
generate-policy=yes exchange-mode=main send-initial-contact=yes
nat-traversal=yes my-id-user-fqdn=“” proposal-check=obey
hash-algorithm=md5 enc-algorithm=3des dh-group=modp1024 lifetime=1d
lifebytes=0 dpd-interval=2m dpd-maximum-failures=5
policy
src-address=192.169.1.0/24 src-port=any dst-address=192.169.2.0/24
dst-port=any protocol=all action=encrypt level=require
ipsec-protocols=esp tunnel=yes sa-src-address=192.168.20.1
sa-dst-address=192.168.20.2 proposal=default priority=0
proposal
name=“default” auth-algorithms=md5 enc-algorithms=3des lifetime=30m
pfs-group=modp1024
And on router 2 just the reverse of this.
But I get nothing through
Maybe I’m “spoilt” because the Billion manage it’s own routing table? If so what routing should I use and how do I add it to the routing table?
This is my first step in the project. at the end I want 15 VPN links from a single router (router1) , the rest of the routers must not see each other.
thus , router 1 will have 15 VPN links in its routing table and router 2 to 16 only one entry in the routing table.
Kind regards