IPSec VPN with Dynamic Routing / Mikrotik and Cisco

From MikroTik Wiki
Revision as of 11:13, 2 October 2007 by Fatonk (talk | contribs)
Jump to: navigation, search

UNDER CONSTRUCTION

First setup Tunnel Interface: 

   / interface ipip\ 
   add name="ipip1" mtu=1480 local-address=10.10.1.100 remote-address=10.10.1.200 comment="" disabled=no

Setup IP addresses for interfaces: 

   / ip address\
   add address=10.10.1.100/24 network=10.10.1.0 broadcast=10.10.1.255 interface=WAN comment="" disabled=no\ 
   add address=192.168.1.1/24 network=192.168.1.0 broadcast=192.168.1.255 interface=LAN comment="" disabled=no\ 
   add address=192.168.0.18/30 network=192.168.0.18 broadcast=192.168.0.18 interface=ipip1 comment="" disabled=no

Enable Routing: 

  / routing rip\ 
  set redistribute-static=no redistribute-connected=no redistribute-ospf=no redistribute-bgp=no metric-static=1\ 
  metric-connected=1  metric-ospf=1 metric-bgp=1 \
  update-timer=30s timeout-timer=3m garbage-timer=2m\ 
  / routing rip interface\ 
  add interface=Tunnel-1 receive=v2 send=v2 authentication=none authentication-key="" prefix-list-in="" prefix-list-out="" 
  / routing rip neighbor\ 
  add address=172.16.0.17\ 
  / routing rip network\ 
  add address=192.168.1.0/24\ 
  add address=172.16.0.16/30
Retrieved from "https://wiki.mikrotik.com/index.php?title=IPSec_VPN_with_Dynamic_Routing_/_Mikrotik_and_Cisco&oldid=5476"