So basically I have a cloud instance of RouterOS 6.47.9 CHR.
It has a public IPv4 address on ether1 (also WAN interface).
1. First I couldn't get IPSec/L2TP to work with Windows 10 client, even after trying out different ciphers and options. It worked with Android and iOS, however.
2. How would I go about using something like PIM to ensure that remote clients could take advantage of UPnP/Multi-Cast traffic on the cloud instance to port forward and enable P2P networking between the clients through their local L2TP subnets?
I would definitely need some help with the implementation of both aspects of this project.
We use this IPsec proposal and it seems to work well on all operating systems:
/ip ipsec proposal
set [ find default=yes ] auth-algorithms=sha512,sha256,sha1 enc-algorithms=aes-256-cbc,aes-192-cbc,aes-128-cbc,3des pfs-group=none
We use the MikroTik default ipsec profile, it works without modification. If you already have this it will not appear in an export:
/ip ipsec profile
set [ find default=yes ] dh-group=modp2048,modp1024 dpd-interval=2m dpd-maximum-failures=5 enc-algorithm=aes-128,3des hash-algorithm=sha1 lifetime=1d name=\
default nat-traversal=yes proposal-check=obey
I don't know what you are wanting when it comes to your multicast question. What is the use case here and topology? I don't think L2TP really has any special support for multicast. Are you trying to send IPTV to clients or something over L2TP?