Hi all you Guru's :) I have a "hub and spoke" Ipsec VPN network. On the hub side is Juniper router. We have 900 Cisco 881 routers on the spoke side all with standard broadband links (pppoe, dhcp and static w/dsl, cable or wireless) connecting back to it. We have a loopback address assigned on each cisco that is the ipsec tunnel termination point. We use a loopback because we want to monitor on an interface that is always up (even if nothing is connected to lan of cisco we have access). Now we want to do same thing with Mikrotik. I have been reading posts on how to create a loopback on a bridge interface and have created one for my lab. I have been unsuccessful in creating the same scenario with MT 750GL as I have with a cisco 881 spoke. On the MT I can build IPsec tunnel to juniper with no issues. It is when I try and make the loopback IP the tunnel peer it fails. Anyone offer some support on this issue?
For some notes: The Cisco does overload from lan to internet (masquerade) and does not do nat thru ipsec tunnel back to Co-Lo server (content filtering server at other end of tunnel). So tunnel is needed only for two things, management/polling and access to content filtering server. Thanks in advance for your insight *Jerry Roy* Sr. Systems Engineer <http://www.ipass.com/> <http://www.ipass.com/> 1 949 681 5054 1 562 305 9545 Cell Managed Network Services *An iPass Company* 125 Technology Drive Suite 100 Irvine, CA 92618 *be well connected* *iPass.com/blog* <http://www.ipass.com/blog>* | **facebook.com/iPass*<http://www.facebook.com/ipass> * | **twitter.com/iPass <http://www.twitter.com/ipass/>* -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://www.butchevans.com/pipermail/mikrotik/attachments/20120821/1b9f8e8f/attachment.html> -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: image/gif Size: 2041 bytes Desc: not available URL: <http://www.butchevans.com/pipermail/mikrotik/attachments/20120821/1b9f8e8f/attachment.gif> _______________________________________________ Mikrotik mailing list Mikrotik@mail.butchevans.com http://www.butchevans.com/mailman/listinfo/mikrotik Visit http://blog.butchevans.com/ for tutorials related to Mikrotik RouterOS
