Move this rule to the top of your list (above any drop rules). Optional but Recommended: Also accept IPsec ESP protocol: : input , Protocol : ipsec-esp , Action : accept . Part 6: Client Configuration (Testing)
/ppp profile set default-l2tp-profile dns-server=192.168.1.5,8.8.8.8 mikrotik l2tp server setup full
Setting up a MikroTik L2TP server with IPsec provides a secure, encrypted tunnel for remote access. This configuration involves creating an IP address pool, setting up a PPP profile and secret, enabling the L2TP server, and configuring firewall rules to allow traffic. Move this rule to the top of your
If use-ipsec=yes , port 1701 alone is useless without IPsec. You can block it. The above includes it for completeness. Protocol : ipsec-esp
Troubleshooting issues for users behind home routers
