Community discussions

MikroTik App
Topic Author
Posts: 439
Joined: Wed Mar 13, 2013 5:23 am
Location: Los Angeles

L2TP & Unsafe Config

Tue Sep 18, 2018 4:48 pm

I just upgraded to 6.43 and my ipsec peers are now giving me the warning:

"Unsafe configuration, suggestion to use certificates"

Is there a way around this when using a pre-shared key, or do we now need to use certificates to get rid of this message?

User avatar
MikroTik Support
MikroTik Support
Posts: 6012
Joined: Wed Feb 07, 2007 12:45 pm
Location: Latvia

Re: L2TP & Unsafe Config

Tue Sep 18, 2018 5:19 pm

This is informative message so that you know potential risk of using PSK.
Member Candidate
Member Candidate
Posts: 272
Joined: Tue Jul 08, 2014 3:58 pm

Re: L2TP & Unsafe Config

Mon Sep 24, 2018 10:45 am

Any detailed wiki page on how to use certificates on ipsec please ?
Frequent Visitor
Frequent Visitor
Posts: 57
Joined: Wed Oct 01, 2014 1:50 pm
Location: Prague

Re: L2TP & Unsafe Config

Wed Sep 26, 2018 12:08 pm

As there are quite limited options to automate certificate operations at MikroTik (be it Let's Encrypt or other) I would like to ask, what is so unsafe with IPsec using PSK in case the key is >64 characters long, both sides have static IP, ipsec mode works in main mode (also ipsec connections from untrusted IPs, are not accepted)?

Who is online

Users browsing this forum: grizlik911, Lebzul, millenium7 and 165 guests