Answer the question
In order to leave comments, you need to log in
V
V
Vitaly2021-07-14 12:34:36
Vitaly, 2021-07-14 12:34:36
How to configure the VPN (ipsec) client on Mikrotik correctly?
Good time everyone!
I ran into a task that was not entirely clear to me, the wiki somehow doesn’t help much.
I need to connect to VPN ipsec on mikrotik, they reset me these settings
IKEv2
DH Group: 2, policy: aes-sha-sha, aes-256-sha-sha
SA 3600
IPsec Proposal
enkrypce: aes-256 Integrity Hash: sha-1, md5
Security ESP
PFS DH Group 2
SA 28800, 4608000
But in mikrotik I don’t find DH Group anywhere: 2, policy: aes-sha-sha, aes-256-sha-sha
SA 3600
and even aes-sha-sha
and this is also missing
Security ESP
PFS DH Group 2
SA 28800, 4608000
Or I'm looking in the wrong place. I don't know what's on the other side, maybe cisco, maybe something else.
help me please
3 answer(s)
@CityCat4
C
CityCat4, 2021-07-14 @CityCat4
The first is for setting up a profile (Proposals tab)
The second is for a proposal (Proposals tab)
SA ... - these are timings in seconds
On the other hand, most likely a tsiska, and apparently not the newest one, since md5 was included in the proposal. Well, or some other not painfully new piece of iron, it looks like sha1 is its maximum
Similar questions
E
B
A
T
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question