Site to Site VPN (IPSec policies) with AWS

akshark · April 24, 2023, 12:16pm

Hi All,

I am trying to setup a site to site VPN in AWS and connect the AWS VPC to microbic Router we have.

I am stuck at adding the correct IPSec Policies, I tried to add a policy of Src. Address: 0.0.0.0/0 and Dst. Address: 0.0.0.0/0, but then lost access to the router.

\

Do i need to factory reset it to gain access or is there a way i can remove the Src. Address: 0.0.0.0/0 and Dst. Address: 0.0.0.0/0 entry i created.
any help on how to setup the correct IPSec policy so we are able to connect our MicroTik router to AWS VPC would be great.

Currently, i do not have access to the Router to export a config file.

Thanks.

zealousnamibia · July 17, 2023, 12:06pm

Hello, If you didn’t get help, perhaps the below will be of assistance.

Connect to the Mikrotic via LAN to one of your ports connected to the bridge. Assign your network adapter the same range.

Then connect using Winbox (go to neighbours) and double click the mac address of the router when it comes up. Please note, you will have to disable firewall on your computer for you to be able to pick up the mikrotik and connect via mac address as neighbour.

Hope it helps?