Hello,
Please add the ability to choose Proposal (in L2tp with "Use IPsec")
/ip ipsec proposal add name=newproposal copy-from=default
/ip ipsec policy set [find proposal=default] proposal=newproposal
I was just posting this exact same thing.. Beat me to itI still do not see any real benefit of your request. It literally takes 2 seconds to change proposal value for your policies to a different one.
Code: Select all/ip ipsec proposal add name=newproposal copy-from=default /ip ipsec policy set [find proposal=default] proposal=newproposal
For example: If I fill IPsec Secret in ipip or eoip tunnel, it uses default policies and proposal too. If I want have different ipsec proposal (auth. or enc.) for L2TP and IP tunnels, I can't. For now, I'm not using quick L2TP or IPoIP (EoIP) IPsec solution, but I'm creating ipsec policies, peers and proposal for them in old way.Please explain why. L2TP always uses the default IPsec proposal, you can adjust security parameters for it if necessary. Additionally, you can create separate proposals for other IPsec tunnels.
It would be better, If it possible to choose IPsec Group for L2TP, IPoIP, EoIP etc.Please add the ability to choose Proposal (in L2tp with "Use IPsec")
Absolutely pointless thing.I was just posting this exact same thing.. Beat me to itI still do not see any real benefit of your request. It literally takes 2 seconds to change proposal value for your policies to a different one.
Code: Select all/ip ipsec proposal add name=newproposal copy-from=default /ip ipsec policy set [find proposal=default] proposal=newproposal
It is not a bad thing if you just want to protect a connection.Why is the use-ipsec=yes a bad thing?