Mikrotik IPSec traffic one way

Mikrotik IPSec traffic one way

Issue:
I am able to ping and connect to devices on the Mikrotik side from the Sophos but,
Traffic initiated from the Mikrotik side is not returning to the Sophos all.


Cause:

The traffic was being NATd through our WAN interface.  Looks like our NAT rules were set to use our WAN interface to translate the IPs.

Solution:

updated the rules as shown beneath where I excluded my specific subnet AND set ipsec-policy=out,none










Reference:
    • Related Articles

    • How to configure MikroTik Switch

      MikroTik MikroTik is a Latvian company which was founded in 1996 to develop routers and wireless ISP systems. MikroTik now provides hardware and software for Internet connectivity in most of the countries around the world. Our experience in using ...
    • Cisco Transceiver compatibility with Mikrotik switches

      Question: One of our partners are planning a new project for their end customer. They plan to use Cisco core switches (C9500-48Y4C-A with SFP-10G-SR=) and MikroTik (CRS328-4C-20S-4S+RM with S+85DLC03D) like an aggregation switch to which other ToR ...
    • Configure CAPsMAN on MikroTik Switch

      Configure CAPsMAN on MikroTik Switch What is CAPsMAN CAPsMAN allows us to centrally manage multiple Access Points (APs) from a single point. We can centrally configure wireless settings such as SSID, security settings, channel, transmit power, and ...
    • Find Serial Number in Mikrotik Devices

      Ways to check Serial number of Mikrotik Devices Using Manufactural sticker on device Check Serial number on sticker pasted on device. Using WinBox Open the winbox Login with IP or MAC address and login credentials Go to system>License>Find the serial ...
    • Ways to Update Mikrotik Devices

      How to update Mikrotik Device There are 3 ways to update your mikrotik device Update from prompt Manually Update NetInstaller 1. Update from Prompt Go to the winbox( device configuration tool) Connect with IP/MAC and login with credentials Go to ...