I have a problem with IPSec tunnel on my RouterBoard RB952Ui-5ac2nD.
I try connect IPSec with UTM Stormshield SN300.
All option I set ok, encryption is the same but established only phase 1.
Phase 2 I don’t see connect in log file…
What can I do? I must set NAT or firewall on Mikrotik?
Now phase 2 try connect but I don’t know why algorithms are none.
I have set sha1/aes256 all both sides.
I have the same problem, did you solve it? Can you post the configuration of both sites? Thanks
You need to check what algo are supported on client device and select correct options. As it stands now client actively responds that it is not able to utilize any of algo presented by server in proposal (by sending no-proposal-chosen - at this point server removes phase1 and assumes client disconnect)