(80. is the RouterOS device, 85. is the Windows client)
each of the lines above is Wireshark reporting that a different ESP sequence number was expected, implying one or several hundred missing ESP datagrams.
Sniffer setup:
Code: Select all
[admin@ros] /tool sniffer> print
only-headers: no
memory-limit: 100KiB
memory-scroll: yes
file-name: flash/dump.pcap
file-limit: 1048576KiB
streaming-enabled: no
streaming-server: 0.0.0.0
filter-stream: no
filter-interface: vrrp1
filter-mac-address:
filter-mac-protocol:
filter-ip-address: 85.X.X.X/32
filter-ipv6-address:
filter-ip-protocol: udp
filter-port: 4500
filter-cpu:
filter-direction: any
filter-operator-between-entries: or
running: no
I did the same packet dump on the other side and the RouterOS sniffer dump does *not* represent, what the receiver got.
Any ideas?