Hello everyone!
I've set up a MikroTik RB4011iGS+5HacQ2HnD-IN (v6.48.1), with an IKE v2 site-to-site tunnel to a remote site running pfSense. In addition, a second IKE v2 VPN is used for remote users to access the Mikrotik's LAN. The Mikrotik board uses PPPoE, as does the pfSense one. The subnets are the following:
MIkrotik LAN: 192.168.88.0/24
pfSense LAN: 192.168.0.0/24
VPN pool: 192.168.89.0/24
Connectivity between the two LANs is fine, as is between the VPN clients and the Mikrotik LAN. What I can't seem to fix is the connectivity between the VPN clients (192.168.89.0/24) and the pfSense LAN. It seems that the VPN client's requests are routed throught the PPPoE interface, instead of going through the tunnel. So far I've tried split tunnelling (which completely messes up the clients' routing), as well as setting up a second IPSec phase2 policy, creating a tunnel between the 89 subnet and the 0 subnet. The tunnel comes up, but no packets from the 89 subnet are routed through it.
I am a Mikrotik newbie, so I may be missing something very obvious, so all ideas are welcome.