How to make sure L2TP VPN is secure on mikrotik?

L

lazix2020-04-15 21:09:33

VPN

lazix, 2020-04-15 21:09:33

I connected two Mikrotiks via VPN according to the manual .
Then I added rules to the firewall for input and forward with the following parameter:

And it turned out that all vpn traffic matches them. What does it mean that I didn't set up encryption? But after all, ipsec proposal aes-256, that's all. Something is wrong?

Reply

Answer the question

In order to leave comments, you need to log in

4 answer(s)

L

lolowin32, 2020-04-17
@lazix

To find out if traffic is being encrypted, which is what we need, go to the ipsec - installed SAs section
In the Encryp Key Size and Current Bytes columns, bytes should “run”, which indicates that the traffic is encrypted

. If this is not the answer to your question, then ask him differently

K

korsar182, 2020-04-15
@korsar182

Looks like Toaster can't be saved...

K

Keffer, 2020-04-16
@Keffer

The very fact of establishing PPP and generating ipsec encryption keys is already the answer to the question of security. What about firewall rules? In vain you generally twist the settings of the value of which you do not understand.

W

Wexter, 2020-04-15
@Wexter

Rules for which interface/address prefix did you add?
and in general post /ip firewall export and /ip address export