I use astrill vpn, and want to make L2TP/IPsec connection. There’s no offical astrill tutorial for Mikrotik routeros, i can only find windows setup (http://wiki.astrill.com/index.php/Astrill_Setup_Manual:How_to_configure_L2TP/IPSEC_with_Windows_built-in_client_on_Windows_8) for reference.Their L2TP/IPsec requires user/password auth and pre shared key. I setup l2tp client and ipsec peers in routeros already, but don’t know how to setup ipsec policy exactly, especially the src/dst address, the sa src/dst address .Is the src address my wan ip? BTW, i use a pppoe interface to connect to internet.
Below is my config
/interface l2tp-client
add allow=mschap2 connect-to=serverip disabled=no keepalive-timeout=\
disabled max-mru=1400 max-mtu=1400 name=l2tp-out1 password=*** \
profile=default user=***
/ip ipsec peer
add address=serverip/32 enc-algorithm=3des secret=*** \
send-initial-contact=no
/ip ipsec policy
set 0 proposal=proposal1
/ip ipsec proposal
add enc-algorithms=3des name=proposal1 pfs-group=none