Site 2 Site VPN from RB to other Router (Routing problem)

RouterOS Beginner Basics
1

Hi

I have tried to configure a VPN from my RB450G v4.11 to a Trustgate 160 Firewall using this guide witch is for a Zywall and have just changed the required configurations so that the matched in moth ends.

http://www.potato-people.com/blog/2009/10/ipsec-vpns-for-mikrotik-routeros/

The Tunnel is up running but I have no traffic thru it.
And since I am 100% sure that everything is configured right in the Trustgate the problem most bi in the RB.
I can also see in the Trustgate management that its transmitting traffic thru the VPN Tunnel but has received nothing.
So I must assume that it’s a routing problem that the RB doesn’t know how to route the traffic.

Does anyone have experience making a site 2 site VPN to other firewalls and know where the problem can be ?

My Local network on the RB is : 192.168.200.0/24
And on the Trustgate its : 192.168.10.0/24

2

Senyor you must traverse in nat and please post post your current setup lots of people here will help you.

3

Hi

My configs is mate like then following


192.168.200.0/24 ------- RB450G ---------- Internet ---------- Trustgate 160 ------- 192.168.10.0/24

/ip ipsec policy
add action=encrypt comment=“” disabled=no dst-address=192.168.10.0/24:any
ipsec-protocols=esp level=require priority=0 proposal=default protocol=
all sa-dst-address=95.154.16.174 sa-src-address=95.154.16.242
src-address=192.168.200.0/24:any tunnel=yes

/ip ipsec peer
add address=95.154.16.174/32:500 auth-method=pre-shared-key comment=“”
dh-group=modp1024 disabled=no dpd-interval=disable-dpd
dpd-maximum-failures=1 enc-algorithm=des exchange-mode=main
generate-policy=no hash-algorithm=md5 lifebytes=0 lifetime=8h
nat-traversal=no proposal-check=obey secret=12345678
send-initial-contact=yes

/ip firewall nat
add action=accept chain=srcnat comment=“VPN til Gidion” disabled=no
dst-address=192.168.10.0/24 src-address=192.168.200.0/24