Now your Internet traffic is not L2 switched through Mikrotik but L3 routed (additional hop as you say) and that is why it goes via Bridge.

@janisk can you please provide SNMP OIDs for OSPF monitoring?

Was this ever solved? The problem still exist with Mikrotiks

Created script on Router A and Router B which disables AWS related IPSEC policy on router if AWS networks in routing table are coming from GRE interface and enables policy if route is not seen from GRE

mducharme thanks for suggestion, but that will not work, as that brakes the redundancy. I don't need static IPSEC links, I need redundant routed connection. Routing is actually working as it should, the problem is with encryption. Traffic needs to be encrypted only when it leaves WAN interface and n...

And yes, when I disable encryption policy on Router B everything starts to work, but that is not a solution, because I need redundancy with two links.

I have problem with IPSEC and routing towards AWS. I have setup like in attached picture: two routers connected via IPSEC to AWS and third router below. Dynamic routing on AWS links is used. Link from Router A to AWS should be primary and from Router B is backup link. All is good but when link from ...

I have 3 VLANs, for example Vlan10 (IP 10.10.10.1/24), Vlan20 (IP 10.20.20.1/24), Vlan30 (10.30.30.1/24). What I want to achieve is that I would like to have: Ether1 with Vlan 10 in access mode Ether2 with Vlan 20 in access mode Ether3 with Vlan 30 in access mode Ether4 with tagged Vlan 10, tagged V...