We are migrating from a Cisco ASA to a Mikrotik CHR (Router OS 6.47.9), we managed to configure VPN with no troubles. But now we face a problem, we had to configure a VPN with multiple encripted ends, in Cisco ASA I can put them in a comma list, but in Mikrotik I don't know how to solve this.
I've tried to put space or "," or ";" as separator but seems no to accept more than one address on "Dst. Address" in policy, also tried to create another policy with same "Src. Address" and other "Dst. Address", but when we add the policy (in winbox) "Src. Address" get automatically modified to "::/0".
Any idea on how to set multiple encripted ends on a IPSEC tunnel?
Any help would be appreciated
Thanks in advance
p.s. English is not my born language so forguive any typo or grammatic error.
Re: Multiple encrypted ends in a IPSEC Tunnel
simply put one policy for dst-address
src-address is modified automatically accordingly to peer
src-address is modified automatically accordingly to peer
Re: Multiple encrypted ends in a IPSEC Tunnel
I don't get you, if I ommit src. address how router determine where to send tunnel packets?simply put one policy for dst-address
src-address is modified automatically accordingly to peer
Also, what if I had multiple ends also in my side?
Re: Multiple encrypted ends in a IPSEC Tunnel
Refer to original documentation
https://help.mikrotik.com/docs/display/ ... c-Policies
https://help.mikrotik.com/docs/display/ ... c-Policies