Hi all,
Creating a GRE interface with an IPsecret allows for the easy establishment of secure tunnels - in my case between several like type mikrotik routers.
When these tunnels are established, the Phase1 and Phase2 ISAKMP/IPsec policies are applied following the default settings under ip/ipsec/profile and ip/ipsec/proposal. These default settings can be tweaked as required (i.e to force SHA265-AES256-DH14 etc).
The ip/ipsec/peer is dynamically created as the tunnel is being created but it always selects the exchange mode of MAIN. Is there a way to set this so the dynamically created peer always uses IKEv2?
I know I can do this by manually by creating a static peer and setting the exchange mode, but wondered if this could be a done dynamically?
