Route based VPN on ssg device

zvitins_ · ‎12-21-2009

Hello,

I have created (for test purpose) route based VPN based on this manual
I have used two juniper devices ssg-5 and ssg-140.

VPN is up and running:

device-a(M)-> get sa 0000000d<     x.x.x.x  500 esp:3des/md5  3f5567dd  2457 unlim A/U    -1 0 0000000d>     x.x.x.x  500 esp:3des/md5  3aac7cc9  2457 unlim A/U    -1 0

My interfaces:

ssg-5 device-a(M)->get interface  Interfaces in vsys Root:  Name           IP Address                        Zone        MAC            VLAN State VSD   bgroup0        10.200.0.250/24                   Trust       0010.dbff.20b0    -   U   0   tun.1          10.1.10.1/24                      VPN         N/A               -   U   -    set interface "tunnel.1" mip 10.1.10.1 host 10.200.0.0 netmask 255.255.255.0 vr "trust-vr"   ssg-140 device-b(M)-> get interface   Interfaces in vsys Root:  Name           IP Address                        Zone        MAC            VLAN State VSD eth0/1         10.9.10.1/24                      internal    0010.dbff.2050    -   U   0   tun.1          10.1.20.1/24                      VPN         N/A               -   R   0    set interface "tunnel.1" mip 10.1.20.1 host 10.9.10.1 netmask 255.255.255.0 vr "trust-vr"

from ssg devices I can ping other device tunnel.1 IP address.

But I can not access device from one Lan to other Lan.

Any ideas?

123go_ · ‎12-21-2009

Hello zvitins

This board is for Juniper SSL VPN products (Secure Access Series).

For firewall issues you might want to try the Firewall board.

zvitins_ · ‎12-22-2009

Ok, thanks.

Route based VPN on ssg device

Route based VPN on ssg device

Re: Route based VPN on ssg device

Re: Route based VPN on ssg device