Mikrotik and Sophos IPSec Site to Site

Question

I am having the exact same issue as the below person. 
 https://community.sophos.com/products/xg-firewall/f/vpn/94105/ipsec-mikrotik-to-sophos-problem 
 The IPSec tunnel establishes correctly and from the local network behind the Mikrotik can ping the local network behind the Sophos XG Firewall. But from the local network behind the Sophos XG I cannot ping the Mikrotik or the local network behind the Mikrotik. I do not have any policy routes and tried the below command but that did not help. 
 system ipsec_route add net 192.168.87.0/255.255.255.0 tunnelname <IPSec Tunnel Name> 
 Any help would be greatly appreciated. Thanks!

NathanOhara · Accepted Answer

Issue resolved! Had to make adjustments on the Mikrotik side. 
 
 [ pepsi@mikrotik ] > / ip firewall filter print 
 Flags : X - disabled , I - invalid , D - dynamic 
 0 chain = input action = accept protocol = udp port = 500 log = no log - prefix = ""

1 chain = input action = accept protocol = ipsec - esp log = no log - prefix = ""

2 chain = forward action = accept src - address = 10.0 . 100.0 / 24 dst - address = 192.168 . 87.0 / 24 log = no log - prefix = ""

3 chain = forward action = accept src - address = 192.168 . 87.0 / 24 dst - address = 10.0 . 100.0 / 24 log = no log - prefix = ""

Mikrotik and Sophos IPSec Site to Site

Submitted a Tech Support Case lately from the Support Portal?