IPSEC Connection Configuration
{
"LocalSubnet": "192.168.200.0/24,192.168.209.0/24,172.28.0.0/16,172.28.128.0/23",
"RemoteSubnet": "172.23.62.0/25,172.23.62.128/25,172.23.63.0/25",
"IpsecConfig": {
"IpsecPfs": "group14",
"IpsecEncAlg": "aes256",
"IpsecAuthAlg": "sha1",
"IpsecLifetime": 28800
},
"Remote": "8.215.76.99",
"Local": "103.146.58.249",
"IkeConfig": {
"IkeAuthAlg": "sha1",
"LocalId": "103.146.58.249",
"IkeEncAlg": "aes256",
"IkeVersion": "ikev2",
"IkeMode": "main",
"IkeLifetime": 28800,
"RemoteId": "8.215.76.99",
"Psk": "I^iZ2b14HdG&kFF1",
"IkePfs": "group14"
}
}
Tahapan setting mikrotik
1. profile
2. proposal
3. peer
4. identity >> peer diarahin
5. polices >> general dan action
6. ip firewall nat bikin 2 rule >> action accept
‘