This road warrior L2TP/IPsec is so, so FRUSTRATING, it seems that it could make one jump over the cliff. No matter how much improvements, it just seem to follow a golden rule: the more things change, the more they remain the same.
The problem I have is the L2TP server never gets to the authentication process...even when a dynamic policy gets generated. Everything works at home using a guess network to connect. However, when on the road, the L2TP server just won't authenticate. This failure was described in 2012 here: http://forum.mikrotik.com/viewtopic.php?t=67746 and again in 2014 here: https://www.mail-archive.com/mikrotik@m ... 08704.html
It's not the firewall as the L2TP server is sending and receiving control messages with the client...it NEVER authenticates and enter a dead zone. Is it a bug (read that in the pass)? Can any Guru or others provide a working solution? Is IPsec Policy really doesn't like an unknown IP address...if so, then how can a road warrior VPN work?