Community discussions

 
tabate47
Member
Member
Topic Author
Posts: 435
Joined: Wed Mar 13, 2013 5:23 am
Location: Los Angeles

L2TP & Unsafe Config

Tue Sep 18, 2018 4:48 pm

I just upgraded to 6.43 and my ipsec peers are now giving me the warning:

"Unsafe configuration, suggestion to use certificates"

Is there a way around this when using a pre-shared key, or do we now need to use certificates to get rid of this message?

Thanks.
 
User avatar
mrz
MikroTik Support
MikroTik Support
Posts: 5942
Joined: Wed Feb 07, 2007 12:45 pm
Location: Latvia
Contact:

Re: L2TP & Unsafe Config

Tue Sep 18, 2018 5:19 pm

This is informative message so that you know potential risk of using PSK.
 
ik3umt
Member Candidate
Member Candidate
Posts: 248
Joined: Tue Jul 08, 2014 3:58 pm

Re: L2TP & Unsafe Config

Mon Sep 24, 2018 10:45 am

Any detailed wiki page on how to use certificates on ipsec please ?
 
Kraken2k
Frequent Visitor
Frequent Visitor
Posts: 53
Joined: Wed Oct 01, 2014 1:50 pm
Location: Prague

Re: L2TP & Unsafe Config

Wed Sep 26, 2018 12:08 pm

As there are quite limited options to automate certificate operations at MikroTik (be it Let's Encrypt or other) I would like to ask, what is so unsafe with IPsec using PSK in case the key is >64 characters long, both sides have static IP, ipsec mode works in main mode (also ipsec connections from untrusted IPs, are not accepted)?

Who is online

Users browsing this forum: No registered users and 111 guests