Mikrotik with ROS 7.6 acts as initiator. And strongswan is responder.
On strongswan side peer configured like this:
Code: Select all
conn branch.test
keyexchange=ikev2
left=xx.xx.xx.xx
rightid="branch.test"
rightsourceip=10.30.5.20
type=transport
auto=add
When I set up the same connection on a PC, it gets the address 10.30.5.20/32. This is the behavior I want to get.
The question is why Mikrotik uses mask /24 instead of /32 and how can i change that? Because everything works fine, but the /24 netmask breaks the routing a bit.