Hi!
Here is the network diagram: Some explanations: ISP1 is MGTS, gray IP, ISP2 is another provider that gives a white IP (Kerio is connected to it), load balancing is configured on microtic, because two providers, PCC method.
IPsec connection is established. But I can ping only in one direction, namely, from 19 networks in 5. But on the contrary, there is no way for pings (.
Log of this rule:
add action = accept chain = srcnat dst-address = 192.168.19.0 / 24 src-address = 192.168.5.0 / 24
shows: Here I am trying to ping the Kerio gateway with Mikrotik. A feeling that the traffic from the network 5 wrapped somewhere not amplitude.

If it is site to site, then make sure that traffic is not NATed or fasttracked, see documentation for more info:

https://wiki.mikrotik.com/wiki/Manual:I ... ack_Bypass

I have already checked the rules several times, and I don’t know where the problem may be
Nat Filter