Problem WIth VPN Ike2

Hi need Help for a VPN trought my Mikrotik

I receive this message when i’m trying to connect

this is export

add address=8x.xx.xx.xx.xx.xx/32 comment=VPN_SEEWEB name=peer3 profile=proposal_5
add enc-algorithms=aes-256-cbc,aes-256-ctr,aes-256-gcm,camellia-256 name=seeweb

/ip firewall filter
add action=accept chain=input dst-port=20,21,500,1701,4500,1194 protocol=udp
add action=accept chain=input dst-port=500,4500,1701,20,21,1194 ingress-priority=0 priority=0 protocol=tcp
add action=accept chain=input protocol=ipsec-esp
add action=accept chain=input protocol=ipsec-ah
add action=accept chain=forward connection-state=established,related dst-address=192.xx.xx.0/24 src-address=10.xx.xx.0/24
add action=accept chain=forward connection-state=established,related dst-address=10.xx.xx.0/24 src-address=192.xx.xx.0/24
/ip firewall nat
add action=accept chain=srcnat dst-address=10.xx.xx.0/24 src-address=192.xx.xx.0/24
/ip ipsec identity
add generate-policy=port-strict peer=peer1 secret=xxxxxxxx
add peer=peer3 secret=xxxxxxx

It says authentication failed, so does the client use the same preshared key as the server ?

Yes confirmed that it’s ok other side it’s a Cisco Router

Ok but now you get a different error than in your first post…
The time up you get could be :
misconfigured Phase 1 IP addresses; firewall blocking UDP ports 500 and 4500; NAT between peers not properly translating IPsec negotiation packets.
This error message can also appear when local-address parameter is not used properly.
Source : https://wiki.mikrotik.com/wiki/Manual:IP/IPsec#Troubleshooting.2FFAQ

By the way its not really goot to show your Public IP addresses…

Is that because you are behind NAT and at this case 85.94… cannot respond to you! You have to set port forward to router that is before Mikrotik!

Hi thanks for responce,

have other VPN perfectly connected between Mikrotik, my only problem it’s this new one

other side it’s a Cisco but i cannot find problem