Community discussions

MUM Europe 2020
 
Trackboy
Member Candidate
Member Candidate
Topic Author
Posts: 213
Joined: Mon Oct 31, 2011 11:19 am
Location: Hungary

IPSec IKEv2 Site to Site tunnel between Mikrotik and Debian

Thu Jan 16, 2020 12:59 pm

Hello everybody! I have got a site to site tunnel only for learning purpose. Mikrotik have dynamic public IP, Debian have fix.
There are four private networks behind Mikrotik, but when the IP change one of the SA Src Address is stuck at the previous one in the particular Policy, and the problem is always with the same private network. I have got a same tunnel with an Ubuntu 16.04 server, that works fine, configuration is the same. So if i disable the Peer configuration and enable again after IP change, everything works fine.

Mikrotik RouterOS: 6.46.1
Strongswan 5.5.1

Mikrotik configuration:
https://pastebin.com/WqCPCheX?fbclid=Iw ... WIXWVxmdIA

Strongswan configuration:
https://pastebin.com/bg0GXCRm?fbclid=Iw ... t6RinUcioc

Who is online

Users browsing this forum: Bing [Bot], kraker and 164 guests