Community discussions

MikroTik App
 
Inamandla
just joined
Topic Author
Posts: 7
Joined: Sat Aug 01, 2020 10:56 am
Location: Johannesburg, South Africa

IPSEC VPN only works one way

Sat Jun 19, 2021 1:47 pm

Hi, I have an IPSEC VPN setup and working and link established. This uses Hap lite over MTN LTE. The scenario is as follows;

Lan 1 is as follows, PC to HAP port 2, HAP port 1 to router
PC1 IP 192.168.31.2
Hap1 IP 192.168.31.1 / 192.168.8.100
Router1 192.168.8.1

Lan 2 is as follows. PC2(Server) port 2 to Hap Port 2, HAP Port 2 to Switch(LAN), Router Port 1 to Switch(LAN)
PC2 Lan Port 1 IP 192.168.6.250
PC2 Lan port 2 IP 192.168.32.2
Hap2 IP 192.168.32.1 / 192.168.33.3
Router2 192.168.33.1

I have NAT setup on both Mikrotiks as follows
HAP1 - srcnat - src ip 192.168.31.0/24 Dest ip 192.168.32.0/24
HAP2 - srcnat - src ip 192.168.32.0/24 Dest ip 192.168.31.0/24

I can ping from PC1 to 192.168.32.1 and looking at my ipsec active peers it shows the data going through the tunnel. However if I ping from any winbox terminal to any IP or from any PC to any other IP, beside local IPS, I get a timeout. Firewalls on PC and server is switched off. What would cause this issue. (I suspect this could be a bridge issue, but this is the default config that I have setup, just changed IP addresses.)
 
nagylzs
Member
Member
Posts: 353
Joined: Sun May 26, 2019 2:08 pm

Re: IPSEC VPN only works one way

Mon Jun 21, 2021 7:30 pm

Can you please draw a diagram? Others might understand this network without a diagram, but I'm not confused.
 
User avatar
erkexzcx
Member Candidate
Member Candidate
Posts: 263
Joined: Mon Oct 07, 2019 11:42 pm

Re: IPSEC VPN only works one way

Mon Jun 21, 2021 8:56 pm

Who is online

Users browsing this forum: A9691, Amazon [Bot], Bing [Bot], hatred, mojojojo, tjanas94 and 80 guests