Hello, I have configured an ipsec-ikev2, I have a connection to the local network and the internet. But I am unable to communicate between ipsec-ikev2 clients. I need to open rdp between these clients.

I have already disabled firewalls on windows computers.

Thanks for your help.

It was indeed the missing rule NAT
add action=accept chain=srcnat comment="MSQRD IKE2->WAN" ipsec-policy=out,ipsec out-interface=ether1-WAN src-address=RED_VPN

You should put a new rule before your "NAT" rule to disable NAT for ipsec communications.

Thats what that rule does @kx002...