Hello,
I have problem convincing RouterOS to forward a subnet through IPSec tunnel.
Quick setup:
Site1:
LAN: 192.168.1.0/24
/ip address add address=192.168.50.1/30 interface=IPSec1 network=192.168.50.0
/ip route add comment=“Site1” distance=1 dst-address=192.168.21.0/24 gateway=192.168.50.2
Site2 is connected to internet through another router:
WAN (internet router): 192.168.1.0/24
LAN (my mikrotik): 192.168.21.0/24, Mikrotik gets dynamic ip from internet router 192.168.1.60
/ip address add address=192.168.50.2/30 interface=IPSec1 network=192.168.50.0
/ip route add comment=“Site2” distance=1 dst-address=192.168.1.0/24 gateway=192.168.50.1
IPSec is set up.
I can ping 192.168.21.0/24 (mikrotik on Site2) from Site1 without any problems.
I can not ping 192.168.1.0/24 from Site2 as routing tries to ping wan router on Site2.
I tried playing with Route list (on Site2), but i can not change DAC route that is pointing 192.168.1.0/24 to WAN router.
How can i redirect all 192.168.1.0/24 traffic through IPSec tunnel?
I hope i was clear and thanks for helping!