Good day,
I'm running Mikrotik v6.19 at the moment, and I need to configure some IPSEC/L2TP, but I have a few questions that I couldn't find any answer.
- There is a way to only allow L2TP traffic if a corresponding IPSec tunnel is up and working? Because I've read somewhere in the forum that if IPSEC fails, it still connects the L2TP tunnel and could be possible that the L2TP tunnel runs without encryption and there's no way to know it.
- Do we need MPPE encryption when IPSec is enabled? Probably no. But actually it seems to be active. Is there a way to check if it is really working? I ask this because in the release notes of v6.19 they said: “*) l2tp - force l2tp to not use MPPE encryption if IPsec is used;” How can we be sure that it is disabled?
edit:
-What exactly does activate IPSEC Option in L2TP server?(It was new in 6.16 if i rembember correctly) If have a IPSEC peer already with his key, is necesary to mark the option with the same key? or other key? or is not necesary at all?
Thanks.