i'm currently planning on an IPSec Installation with the following Specs:
- Central VPN Concentrator (Static IP)
- 20+ Remote Mikrotik Clients (Dynamic and Static IP)
- Some peers can have both, an Static OR an Dynamic IP (Failover)
- RoadWarrior Login on the Central VPN Concentrator (Apple iOS and Windows 10)
My current Idea is making L2TP Tunnels to the VPN Concentrator and then make Policies for every Network Combination - but this is a bit Pain in the Ass.
Do you know any better Way to achive, that all the Traffic going from the Client through the L2TP Tunnel will be encrypted without opening the Proposal too much?