cancel
Showing results for 
Search instead for 
Did you mean: 

Recycling IP addresses

SOLVED
after1_
Contributor

Recycling IP addresses

When I connect to the company wireless network I get an ip address. I then connect to te VPN network and get another ip address - wasting address space. Is it possible to setup IVE so that it use only 1 ip address?
1 ACCEPTED SOLUTION

Accepted Solutions
spuluka
Super Contributor

Re: Recycling IP addresses

I'm not sure what your company network architecture is. If you are making a secured wireless connection to an internal company network, I don't see why you would also need to connect to the VPN on the IVE. The IVE is designed to be a gateway for external networks into your secured internal resources. Perhaps you are using the IVE as an internal network access control. If that is the case you should have a look at the the UAC line (Unified Access Control).

As for using ip addresses on the SA line, these are needed if you have resources setup using the network connect/Pulse method of access. The only way to avoid using these is the migrate the connection type to use a different method. The blog posting linked below provides a good overview of all the connect methods. If you setup your access to use SAM or above, then you can avoid creating and using ip pools.

http://forums.juniper.net/t5/Networking-Security-Now/Best-practices-in-selecting-Secure-Access-metho...

Steve Puluka BSEET - IP Architect - DQE Communications Pittsburgh, PA (Metro-Ethernet & ISP) - http://puluka.com/home

View solution in original post

1 REPLY 1
spuluka
Super Contributor

Re: Recycling IP addresses

I'm not sure what your company network architecture is. If you are making a secured wireless connection to an internal company network, I don't see why you would also need to connect to the VPN on the IVE. The IVE is designed to be a gateway for external networks into your secured internal resources. Perhaps you are using the IVE as an internal network access control. If that is the case you should have a look at the the UAC line (Unified Access Control).

As for using ip addresses on the SA line, these are needed if you have resources setup using the network connect/Pulse method of access. The only way to avoid using these is the migrate the connection type to use a different method. The blog posting linked below provides a good overview of all the connect methods. If you setup your access to use SAM or above, then you can avoid creating and using ip pools.

http://forums.juniper.net/t5/Networking-Security-Now/Best-practices-in-selecting-Secure-Access-metho...

Steve Puluka BSEET - IP Architect - DQE Communications Pittsburgh, PA (Metro-Ethernet & ISP) - http://puluka.com/home

View solution in original post