Hi, I’m not a Mikrotik expert, i know very well WG and Cisco firewalls, I need now to keep up an ipsec site to site vpn between a WG and a Mikrotik RouterOS with latest OS version. In firewalls i can find phase 1 and phase 2 ipsec settings but in MK there aren’t. I’ve seen some walkthroughs but there’s something wrong in my Mikrotik config because phase 1 goes up but phase 2 fails and no traffic passes through the tunnel. Watchguard side it’s all rightly configured, i’ve set in this way phase 1 and 2 (using private ip classes because i’m testing before implementing)
phase1
secret key secret2k18
local gateway 192.168.20.1 (ext wg interface)
remote gateway 172.16.10.1 (ext mikrotik interface)
no nat traversal
sha-3des-dh2
phase2
local subnet 192.168.10.0/24
remote 172.16.20.0/24
no pfs
esp-aes-sha
what i’m asking is, in Mikrotik with Winbox how can i set ipset working with this settings? i’m going mad…all i’ve seen is cli..
thank you for any help or comment…