Please advise which rule is missing ?
[admin@MikroTik] /ip ipsec peer> print
Flags: X - disabled, D - dynamic
0 D address=::/0 local-address=:: passive=yes port=500
auth-method=pre-shared-key secret="test1234"
generate-policy=port-strict policy-template-group=default
exchange-mode=main-l2tp send-initial-contact=yes nat-traversal=yes
hash-algorithm=sha1 enc-algorithm=aes-256,aes-192,aes-128,3des
dh-group=modp1024 lifetime=1d dpd-interval=2m dpd-maximum-failures=5
[admin@MikroTik] /ip firewall> filter print
Flags: X - disabled, I - invalid, D - dynamic
0 D ;;; special dummy rule to show fasttrack counters
chain=forward
1 ;;; defconf: accept establieshed,related
chain=input action=accept
connection-state=established,related log=no log-prefix=""
2 ;;; Allow IPSec Policy Matcher
chain=input action=accept in-interface=ether1 log=yes
log-prefix="" ipsec-policy=in,ipsec
3 ;;; Allow L2TP/IPSec
chain=input action=accept protocol=udp
dst-port=1701,500,4500 log=no log-prefix=""
4 ;;; Allow IPSec
chain=input action=accept protocol=ipsec-esp log=no log-prefix=""