Mikrotik IPSec traffic one way
Issue:
I am able to ping and connect to devices on the Mikrotik side from the Sophos but,
Traffic initiated from the Mikrotik side is not returning to the Sophos all.
Cause:
The traffic was being NATd through our WAN interface. Looks like our NAT rules were set to use our WAN interface to translate the IPs.
Solution:
updated the rules as shown beneath where I excluded my specific subnet AND set ipsec-policy=out,none
Reference:
Related Articles
How to configure MikroTik Switch
MikroTik MikroTik is a Latvian company which was founded in 1996 to develop routers and wireless ISP systems. MikroTik now provides hardware and software for Internet connectivity in most of the countries around the world. Our experience in using ...
Cisco Transceiver compatibility with Mikrotik switches
Question: One of our partners are planning a new project for their end customer. They plan to use Cisco core switches (C9500-48Y4C-A with SFP-10G-SR=) and MikroTik (CRS328-4C-20S-4S+RM with S+85DLC03D) like an aggregation switch to which other ToR ...
Configure CAPsMAN on MikroTik Switch
Configure CAPsMAN on MikroTik Switch What is CAPsMAN CAPsMAN allows us to centrally manage multiple Access Points (APs) from a single point. We can centrally configure wireless settings such as SSID, security settings, channel, transmit power, and ...
Find Serial Number in Mikrotik Devices
Ways to check Serial number of Mikrotik Devices Using Manufactural sticker on device Check Serial number on sticker pasted on device. Using WinBox Open the winbox Login with IP or MAC address and login credentials Go to system>License>Find the serial ...
Ways to Update Mikrotik Devices
How to update Mikrotik Device There are 3 ways to update your mikrotik device Update from prompt Manually Update NetInstaller 1. Update from Prompt Go to the winbox( device configuration tool) Connect with IP/MAC and login with credentials Go to ...