Community discussions

MikroTik App
 
tweasy
just joined
Topic Author
Posts: 2
Joined: Mon Mar 13, 2023 10:03 pm

IPSec passive mode no phase 1 on ROS v7.8

Wed Mar 15, 2023 3:45 pm

I had 4 IPSec tunnel, each on a single RB450Gx4, working fine with RouterOS 6.49.7, I copied configurations on a single RB4011 RouterOS 7.8 and now only two of them works (one active mode and one passive). The other two peer are in passive mode, I can see ISAKMP Identity Protection main mode packet in input from remote but isn't processed by RouterOS, I also activated IPSec logs but it shows only at statrup binds on port 500 and 4500, RB450Gx4 and RB4011 are both behind NAT and each tunnel goes on different IP, I also tried config with only one peer that doesn't work and same result.
I dumped incoming packets from interface to a .pcap and packet from remote that works and is almost the same to the one that doesn't (except some vendor IDs).
There are other logs I can enable? Any suggestions?

Who is online

Users browsing this forum: arebelo, Bing [Bot], Luanscps and 90 guests