Hi all. Please advise me.
I have such scheme :

[192.168.250.0/23]--------[10.10.0.0/24(DFL800)]---IPSEC-----[192.168.75.0/24(Mikrotik)]

I made an ipsec channel between dfl800 and mikrotik but have a little problem

All working excluding an icmp traffic from 192.168.250.0/23 and 10.10.0.0/24 to 192.168.75.0/24
And also I see no dropped or other icmp traffic on the mikrotik.
But from the mikrotik side these subnets pinging. What may it be?

probably something different with D-link DFL defaults. thats why i like their conventional DSR devices - bit more, despite lack of some features and similarly ancient processors.
you should extensively check DFL manual i suppose.

Before was the DFL instead the mikrotik and all worked. But after replacement not working only ICMP, all other traffic passing correctly. I can't understand where I need to dig/

found no solution till this time. Anybody can make another advise how to resolve this issue

bump

The problem is still here

I use DFL800 too and process of switching my mind from DFL to Mikrotik is still painfull.
What does mean "all working" ? Is there eg. WWW on 75's subnet accessible from 250's one ? Are 250's devices visible from 75's subnet ? More datails please.
IMHO Mikrotik does not know where the 250 subnet is and you need set the static route on mikrotik to 10.x.x.x. DFL sets many rules automatically and you do not even know that eg. new route is created during IPSEC tunell creation.

The problem solved. ( incorrect rules on the dfl side )