Community discussions

MikroTik App
 
hapoo
newbie
Topic Author
Posts: 45
Joined: Wed Apr 24, 2019 1:35 am

IPsec (not ikev2 or l2tp) with certificates

Sat Jul 17, 2021 8:56 pm

I've successfully setup a road warrior IPsec vpn (not ikev2 or l2tp) in transport mode with mode-config (multiple subnets) on my mikrotik to use with macOS, iOS and android (haven't tried client mikrotiks or windows yet, but it would be nice to have). My primary reason for this setup is because I need access to several subnets and don't want to mess around with scripts and routing. From what I've read split-include doesn't work properly on ikev2 with macOS, and l2tp requires adding static routes.
My main problem now is that this setup is using psk. The macOS and iOS clients have an option to use a certificate instead of the psk, but as much as I've played with it, I haven't been able to get it to work, and haven't found any guides yet.
Is this possible? Can anyone help me set it up?

Thanks.

Who is online

Users browsing this forum: ameliask, kvitek79, mikronoob89, Vojta and 100 guests