hi eveyone i have a Juniper SA on a DMZ network connected to a firewall (see attachment), and VPN users currently connect to an outside network address on the firewall (eg. 10.1.1.1) which the firewall then statically NATs to the actual address of the Juniper SA on the DMZ network (eg. 22.214.171.124). i am going to have to change the ip addressing on the outside network (eg. to 126.96.36.199/24) and users will now have to connect to address 188.8.131.52 (instead of 10.1.1.1) which will be statically NATted to the Juniper SA adress on the DMZ network (184.108.40.206). (so no change in the DMZ network addressing of the Juniper SA). someone mentioned that this might cause issues for VPN users connecting to the Juniper SA (something to do with certificates?), but i think the change shouldn't affect the VPN users (except to cause them to browse to 220.127.116.11 instead of 10.1.1.1 in order to connect to the Juniper SA). am i correct, or will this change in address to which VPN users connect cause issues (taking into account that only the config of the firewall is changing, and there will not be any changes to config of the Juniper SA)????? thanks a lot for your help in advance!
... View more