Page 1 of 1
Can't add IPsec Policy
Posted: Wed May 16, 2012 11:09 am
by AlexPopov
I try to set up ipsec channel with RB750G as a client
First adding ipsec policy...
I enter source and dest addresses (via WinBox) and... "Couldn't add New IPsec Policy - transport mode policy must match sa endpoints (6)"
what is wrong?
Re: Can't add IPsec Policy
Posted: Wed May 16, 2012 11:29 am
by ditonet
Set IPSec 'Peer' and 'Proposal' first, then 'Policy'.
HTH,
Re: Can't add IPsec Policy
Posted: Wed May 16, 2012 12:44 pm
by AlexPopov
well, I have a default proposal and I have set up two peers (local and remote IPs)
it doesn't help!
Re: Can't add IPsec Policy
Posted: Thu May 17, 2012 12:35 am
by ditonet
In 'IPSec/Peer' set only remote peer, not local.
You can find manual and step-by-step example here:
http://wiki.mikrotik.com/wiki/Manual:IP/IPsec
HTH,
Re: Can't add IPsec Policy
Posted: Thu May 17, 2012 7:04 am
by vik1988
Are you adding transport mode...if no then please check tunnel in advance TAB.