Hi… I’m newbie here. I am learning to make vpn between gateway Mikrotik RB750 and gateway IPCop 1.4.21.
Both end box are already internet ready with their own segmen ip address. At the IPCop box is ready vpn in green connection and i can ping from Lan IPCop to Lan Mikrotik. But the problem is, i cannot ping from Lan Mikirotik to Lan IPCop. Please master2 advice me on how to solve it? Thank you.
FYI:
IP Private Mikrotik: 192.168.15.254 (as my gateway on Lan 192.168.15.0/24)
IP Private IPCop: 192.168.35.254 (as my gateway on Lan 192.168.35.0/24)
-
At IPCop site, i just added the net-to-net vpn (as usual i added vpn between ipcop - ipcop), with: ip remote (public ip mikrotik), remote subnet (lan mikrotik 192.168.15.0/255.255.255.0), & pre-shared key.
-
At Mikrotik site, I have done:
on tab Proposals, Name: default, Auth. Algorithms: md5 sha1, Encr. Algorithms: 3des, Lifetime: 00:30:00, PFS Group: modp1024.
on tab Peers, Address: IP Remote (IPCop), Port: 500, Auth. Method: pre-shared key, Secret: {my secret}, Exchange Mode: main, centang pd ‘Send Initial Contract’, Proposal Check: obey, Hash Algorithm: md5, Encr. Algorithm: 3des, DH Group: modp1024, centang pd ‘Generate Policy’, Lifetime: 1d 00:00:00, DPD Interval: 0 (disable DPD), DPD Maximum Failures: 1.
on tab Policies, Src. Addr: Lan mikrotik (192.168.15.0/24), Dst. Addr: Lan IPCop (192.168.35.0/24), Protocol: 255 (all), Action: encrypt, Level: require, IPsec Protocols: esp, centang pd ‘Tunnel’, SA Src. Addr: IP Remote mikrotik, SA Dst. Addr: IP Remote IPCop, Proposal: default, Priority: 0.
on IP - Firewall - NAT, Chain: srcnat, Src. Addr: Lan mikrotik (192.168.15.0/24), Dst. Addr: Lan IPCop (192.168.35.0/24), Action: accept.