![]() Note that this connection uses PPPoE, so your in-interface may differ. You’ll need to create the firewall rules to allow the traffic. ![]() You should be able to copy, edit and update this to suit your needs. Here’s the config from the Mikrotik, suffice it to say there was a lot of clicking and swearing and trying to edit things in the console to make this work. You can be lazy and just any/any/any it, or make more specific ones. ![]() You’ll need to configure appropriate firewall rules for traffic traversing the IPsec link in the “ipsec” firewall rules section. Sometimes it’ll make the right firewall rules, but double check your WAN interface actually has a rule that lets ESP traffic from 9.9.9.9 on UDP/500 and ESP. Make sure you tick “Enable IPsec” on the tunnel config screen and ensure you hit apply, otherwise it won’t start the tunnels… From the Tunnel settings page, next to the newly created phase 1 configuration, there should be a button to add a phase 2 entry. This is the actual “traffic encryption” stage.
0 Comments
Leave a Reply. |