ipsec vpn up, but no traffic, no ping

Question

I've set up a VPN between my mikrotik router and Google Cloud Platform VPN.

According to the Green check next to peer IP on the VPN Console, VPN is up, but all pings are timed out.

> /ip ipsec policy print
Flags: T - template, X - disabled, D - dynamic, I - inactive, * - default
 0 T * group=default src-address=::/0 dst-address=::/0 protocol=all
       proposal=default template=yes

 1     src-address=192.168.88.0/24 src-port=any dst-address=10.240.0.0/24
       dst-port=any protocol=all action=encrypt level=require
       ipsec-protocols=esp tunnel=yes sa-src-address=xxx.xxx.xxx.xxx
       sa-dst-address=yyy.yyy.yyy.yyy proposal=default priority=0

where xxx.xxx.xxx.xxx is my router's public ip, and yyy.yyy.yyy.yyy is the IP to VPN server; 192.168.88.0/24 is my home LAN, and 10.240.0.0/24 is remote LAN.

> ping
address: 10.240.0.1
  SEQ HOST                                     SIZE TTL TIME  STATUS
    0 10.240.0.1                                              timeout
    1 10.240.0.1                                              timeout
    2 10.240.0.1                                              timeout
    3 10.240.0.1                                              timeout
    4 10.240.0.1                                              timeout
    5 10.240.0.1                                              timeout
    sent=6 received=0 packet-loss=100%

Answer 1

I figured out that GCE's IPSEC only connects sites, after route table set, you still need a VM instance to do the actual traffic forwarding.