Hi,
In our company we make use of a Juniper SA 700 VPN solution. This VPN is used for external technicians to login in our network. The thing is that technician one need an address from vlan 10 and technician two need an ip address from vlan 30.
How I can configure this in the SA 700?
Thanks in advance.
if you give them unique IDs you can test for that ID range wiht widecards.
If id ABC* thne get this role whtcih has a range of IPS 10.10.10.10-20
IF id XYZ* then this role which ahs range Ips10.20.10.10-20
Hi,
I don't understand what you mean. How I need to configure it?
Hi, this link is very usefull. However I don't have the option Network Settings -> VLAN's. So I guess SA 700 doens't support this.
yes, that does confim that SA700 does not support vlan's and the assigment of different IP's from different vlans ont work.
Regads,
Jay
Hi Jay,
Thanks for this information. The only thing I can find is Network -> Internal Port -> Virtual Port.
But I don't know a virtual port is the same as vlan?
Virtual ports are different, they can serve as aliases to reach the SA/ MAG device for example user different hostnames to reach the SA/MAG.
Regards,
Jay
I found the documentation of the SA 700 and in that document I canr ead this:
Secure Access Service enable you to create VLANs for your enterprise. VLANs are used
extensively in the virtual systems. You can also create a VLAN for use in an environment
in which you have deployed a Secure Access Service device for use by all of your enterprise
end-users.
The Secure Access Service VLAN feature is based on VLAN tagging, by which Secure
Access Service tags traffic with 802.1Q VLAN IDs before transmitting the traffic over the
backend. The infrastructure uses the VLAN tag to direct the packets to your appropriate
VLANs/subnets.
So the option most be there, but it seems to be it is not enabled on my SA 700. How I can enable it?
What version of code is your SA700 on? The document's reference 7.1 or greater. It looks like VLAN's were introduced in IVE 5.x and improved in IVE 6.x.