Tim, I would need to look at your routers etc., I’m sure I can find the issue. Toss in a ticket and we can get ya some help 😊
[LTI-Full_175px] Dennis Burgess, Mikrotik Certified Trainer MTCNA, MTCRE, MTCWE, MTCTCE, MTCINE, MTCSE, HE IPv6 Sage, Cambium ePMP Certified Author of "Learn RouterOS- Second Edition” Link Technologies, Inc -- Mikrotik & WISP Support Services Office: 314-735-0270 Website: http://www.linktechs.net<http://www.linktechs.net/> Create Wireless Coverage’s with www.towercoverage.com From: AF <[email protected]> On Behalf Of Timothy Steele Sent: Monday, August 5, 2019 4:41 AM To: AnimalFarm Microwave Users Group <[email protected]> Subject: Re: [AFMUG] Mikrotik 6.45.1 L2TP IPSec not working need updated guide Here is our config (after I followed an online how-to guide trying to redo the VPN) Appreciate any help Thanks! PPP Config # aug/05/2019 05:16:53 by RouterOS 6.45.1 # software id = A4X7-ER4H # # model = CCR1009-8G-1S-1S+ # serial number = removed /ppp profile add change-tcp-mss=yes local-address=10.222.22.1 name=\ "L2TP Remote Connection" remote-address="VPN Pool" use-encryption=\ required /ppp secret "L2TP Remote Connection" add name=removed password=#Removed profile="L2TP Remote Connection" IPsec Config # aug/05/2019 05:20:41 by RouterOS 6.45.1 # software id = A4X7-ER4H # # model = CCR1009-8G-1S-1S+ # serial number = removed /ip ipsec profile add dh-group=modp2048 enc-algorithm=aes-256,aes-128,3des name=L2TP /ip ipsec peer add local-address=10.222.22.1 name=L2TP-in-Server passive=yes profile=L2TP /ip ipsec proposal set [ find default=yes ] lifetime=0s pfs-group=none /ip ipsec identity add generate-policy=port-override peer=L2TP-in-Server secret=removed /ip ipsec policy set 0 dst-address=0.0.0.0/0<http://0.0.0.0/0> src-address=10.222.22.1/32<http://10.222.22.1/32> On Thu, Aug 1, 2019 at 10:06 PM Adam Moffett <[email protected]<mailto:[email protected]>> wrote: Coincidentally, I just went through that this morning. I do not have a link, but I did figure it out. Create a profile for your IPSec peer. The profile has the settings that used to be on the "encryption" and "advanced" tabs of your peer. -Adam On 8/1/2019 6:53 AM, Timothy Steele wrote: Hello, We upgraded from a very old version of RouterOS to 6.45.1 it completely scrambled the IPSec settings I have been trying to rebuild it following online how-to guides but the way IPSec settings are now in winbox are completely different than anything I can find online I turned on debug logging for ipsec and its saying ikev peer not setup for the IP that tries to connect I don't see anything setup for ikev so I'm very confused dose anyone on here have an updated link showing how to setup LT2P VPN Server with IPSec?? Thanks -- AF mailing list [email protected]<mailto:[email protected]> http://af.afmug.com/mailman/listinfo/af_af.afmug.com
-- AF mailing list [email protected] http://af.afmug.com/mailman/listinfo/af_af.afmug.com
