Page 1 of 1

Established Ipsec/ipsec - no traffic between 2 routers

Posted: Tue Sep 03, 2019 4:13 pm
by ids
Hi, i am searching about my problem, but dint find any info about it.

I have a ipsec tunel between 2 sites, the tunnel is established, but no ping between 2 sites.
What i mean ==>
on MKtik1
1 A src-address=a.a.a.a/24 src-port=any dst-address=b.b.b.b/24 dst-port=an>
protocol=all action=encrypt level=require ipsec-protocols=esp tunnel=yes
sa-src-address=A.A.A.A sa-dst-address=B.B.B.B
proposal=de_prop ph2-count=1

[admin@MKtik1] /ip ipsec remote-peers> print
Flags: R - responder, N - natt-peer
0 established

installed-sa exist

/ip firewall nat
add action=accept chain=srcnat dst-address=a.a.a.a/24 src-address=b.b.b.b/24

[admin@MKtik1] /ip route> print

7 A S bridgeLAN 1

On other site thinks are equal, but as i say no ping, no traceroute, nothing...

Any ideas?