I hope you might help me, I'm not so expert of mikrotik devices and I'm struggling to setup a working ipsec site2site between mikrotik LTE ATL18 and a fortigate.
The tunnel itself is established, from fortigate network I can reach mikrotik and login via Winbox. From Winbox I can ping all lan devices.
Unfortunately I cannot ping other devices on the mikrotik LAN network from the fortigate lan devices.
Looking at the sniffer on both mikrotik and fortigate:
- when connection starts from fortigate I can see the request but no reply both on fortigate and on mikrotik
- when connection starts from mikrotik I cannot see the flow on fortigate (like it is going outside the ipsec tunnel). On mikrotik I see the request which is using LTE ip as source (shouldn't be the one specified in SA in ipsec policy?)
Can you please help me to troubleshoot and resolve the problem?
Thanks in advance!