Title: EG209GS and mikrotik CHR IPsec [Print this page] Author: ruijie@eon.in.u Time: 2024-5-6 21:47 Title: EG209GS and mikrotik CHR IPsec does anyone have guide how to make correct connection with this two?
i can only get from CHR logs
got fatal error: AUTHENTICATION_FAILED
Author: liujunhui1@ruij Time: 2024-5-7 12:14
Hi/Hello sir
I‘m sorry that we can't provide a specific solution for you based on current information.
Can you help to check the following aspects:
1.Check whether devices from both ends have obtained the public ip address(If the IP address is a public address, you can ping the management IP address of the device even if you do not access the device locally. However, it is not ruled out that ISPs will prohibit ping)
2.Check whether the device from branch and HQ can ping with each other And if they can ping the ip address 8.8.8.8 too (we can use the Network Tools on the device)
Author: liujunhui1@ruij Time: 2024-5-7 12:37
3.check if the IPsec VPN configuration is correct on the deviceYou can refer to this guide to check the configuration on page:269 https://www.ruijienetworks.com/resources/preview/ruijie-reyee-rg-eg-series-routers-web-based-configuration-guide-release-reyeeos-2-248-en
4.Check if the upstream network has released relevant port trafficThe transmission of packets by EG can be verified through packet capture to determine if they are being sent normally, as well as to confirm if packets are being received as expected. If packet transmission appears normal, yet reception is not occurring as intended, it will be necessary for the customer to get in touch with their service provider or examine whether the uplink device permits IPsec VPN traffic through UDP port 500 and UDP port 4500.
Welcome to Ruijie Community (https://community.ruijienetworks.com/)