I am at the last piece of my first firewall and I'm wondering which direction I should go with the ip firewall NAT.
I notice that the default config adds an ipsec-policy=out,none
add chain=srcnat action=masquerade out-interface-list=WAN ipsec-policy=out,none
but the recommended firewall at https://help.mikrotik.com/docs/display/ ... t+Firewall
add chain=srcnat out-interface=ether1 action=masquerade
I looked at the ipsec doc at https://wiki.mikrotik.com/wiki/Manual:IP/IPsec
and it is too advanced for me at this early stage.
Is this another case of something was put in the default config that might be useful later but isn't a drag on processing?