API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jan 12th, 2020
673
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.01 KB | None | 0 0
raw download clone embed print report
  1. /ip ipsec profile
  2. set [ find default=yes ] enc-algorithm=aes-256,aes-192,aes-128
  3. add dh-group=modp2048 dpd-interval=30s enc-algorithm=aes-256 hash-algorithm=sha256 name=Site_to_site
  4.  
  5. /ip ipsec peer
  6. add address=94.177.X.X/32 exchange-mode=ike2 name=VPS2 profile=Site_to_site send-initial-contact=no
  7. add address=89.38.X.X/32 exchange-mode=ike2 name=VPS1 profile=Site_to_site send-initial-contact=no
  8.  
  9. /ip ipsec proposal
  10. set [ find default=yes ] auth-algorithms=sha256,sha1 pfs-group=none
  11. add auth-algorithms=sha256 enc-algorithms=aes-256-cbc name=Site_to_site pfs-group=none
  12.  
  13. /ip ipsec identity
  14. add auth-method=digital-signature certificate=Mikrotik peer=VPS1
  15. add auth-method=digital-signature certificate=Mikrotik peer=VPS2
  16.  
  17. /ip ipsec policy
  18. add dst-address=10.8.0.0/24 level=unique peer=VPS1 proposal=Site_to_site sa-dst-address=89.38.X.X sa-src-address=84.236.X.X src-address=10.10.15.0/24 tunnel=yes
  19. add dst-address=10.8.0.0/24 level=unique peer=VPS1 proposal=Site_to_site sa-dst-address=89.38.X.X sa-src-address=84.236.X.X src-address=10.10.16.0/24 tunnel=yes
  20. add dst-address=10.8.0.0/24 level=unique peer=VPS1 proposal=Site_to_site sa-dst-address=89.38.X.X sa-src-address=84.236.X.X src-address=10.10.14.0/24 tunnel=yes
  21. add dst-address=10.8.0.0/24 level=unique peer=VPS1 proposal=Site_to_site sa-dst-address=89.38.X.X sa-src-address=84.236.X.X src-address=10.10.120.0/24 tunnel=yes
  22. add dst-address=10.9.0.0/24 level=unique peer=VPS2 proposal=Site_to_site sa-dst-address=94.177.X.X sa-src-address=84.236.X.X src-address=10.10.15.0/24 tunnel=yes
  23. add dst-address=10.9.0.0/24 level=unique peer=VPS2 proposal=Site_to_site sa-dst-address=94.177.X.X sa-src-address=84.236.X.X src-address=10.10.16.0/24 tunnel=yes
  24. add dst-address=10.9.0.0/24 level=unique peer=VPS2 proposal=Site_to_site sa-dst-address=94.177.X.X sa-src-address=84.236.X.X src-address=10.10.120.0/24 tunnel=yes
  25. add dst-address=10.9.0.0/24 level=unique peer=VPS2 proposal=Site_to_site sa-dst-address=94.177.X.X sa-src-address=84.236.X.X src-address=10.10.14.0/24 tunnel=yes
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!