Here is our config (after I followed an online how-to guide trying to redo the VPN)
Appreciate any help Thanks! PPP Config # aug/05/2019 05:16:53 by RouterOS 6.45.1 # software id = A4X7-ER4H # # model = CCR1009-8G-1S-1S+ # serial number = removed /ppp profile add change-tcp-mss=yes local-address=10.222.22.1 name=\ "L2TP Remote Connection" remote-address="VPN Pool" use-encryption=\ required /ppp secret "L2TP Remote Connection" add name=removed password=#Removed profile="L2TP Remote Connection" IPsec Config # aug/05/2019 05:20:41 by RouterOS 6.45.1 # software id = A4X7-ER4H # # model = CCR1009-8G-1S-1S+ # serial number = removed /ip ipsec profile add dh-group=modp2048 enc-algorithm=aes-256,aes-128,3des name=L2TP /ip ipsec peer add local-address=10.222.22.1 name=L2TP-in-Server passive=yes profile=L2TP /ip ipsec proposal set [ find default=yes ] lifetime=0s pfs-group=none /ip ipsec identity add generate-policy=port-override peer=L2TP-in-Server secret=removed /ip ipsec policy set 0 dst-address=0.0.0.0/0 src-address=10.222.22.1/32 On Thu, Aug 1, 2019 at 10:06 PM Adam Moffett <[email protected]> wrote: > Coincidentally, I just went through that this morning. > > I do not have a link, but I did figure it out. Create a profile for your > IPSec peer. The profile has the settings that used to be on the > "encryption" and "advanced" tabs of your peer. > > -Adam > > > > On 8/1/2019 6:53 AM, Timothy Steele wrote: > > Hello, > > We upgraded from a very old version of RouterOS to 6.45.1 > > it completely scrambled the IPSec settings > > I have been trying to rebuild it following online how-to guides > > but the way IPSec settings are now in winbox are completely different than > anything I can find online > > > I turned on debug logging for ipsec and its saying ikev peer not setup for > the IP that tries to connect > > I don't see anything setup for ikev so I'm very confused > > dose anyone on here have an updated link showing how to setup LT2P VPN > Server with IPSec?? > > Thanks > > > -- > AF mailing list > [email protected] > http://af.afmug.com/mailman/listinfo/af_af.afmug.com >
-- AF mailing list [email protected] http://af.afmug.com/mailman/listinfo/af_af.afmug.com
