# Configure security policies for tunnel traffic in outbound direction #set security ipsec vpn ipsec-vpn-cfgr vpn-monitor optimized Set security ipsec vpn ipsec-vpn-cfgr bind-interface st0.0 Set security ipsec vpn ipsec-vpn-cfgr ike ipsec-policy ipsec-policy-cfgr Set security ipsec vpn ipsec-vpn-cfgr ike gateway ike-gate-cfgr Set security ipsec policy ipsec-policy-cfgr proposal-set standard Set security ike gateway ike-gate-cfgr external-interface ge-0/0/0 Set security ike gateway ike-gate-cfgr address 98.0.0.2 Set security ike gateway ike-gate-cfgr ike-policy ike-policy-cfgr # Configure IKE gateway with peer IP address, IKE policy and outgoing interface Set security ike policy ike-policy-cfgr pre-shared-key ascii-text "_YouHackersStayAwayFromMyPassword_" Set security ike policy ike-policy-cfgr proposal-set standard Set security ike policy ike-policy-cfgr mode main # Configure address book entries for each zone Set security zones security-zone untrust host-inbound-traffic system-services ike #set security zones security-zone trust host-inbound-traffic system-services all Set security zones security-zone vpn interfaces st0.0 # Configure security zones, assign interfaces to the zones & host-inbound services for each zone Set routing-options static route 192.168.4.0/24 next-hop st0.0 Set routing-options static route 192.168.3.0/24 next-hop st0.0 Set routing-options static route 192.168.1.0/24 next-hop st0.0 Set interfaces st0.0 family inet address 10.2.2.2/24 # Configure interface IP and route for tunnel traffic Juniper configuration prepared by this tool: Generated Configuration (Route-based): Please find below my configuration for both ends:ฤก. The goal is to have Site 4 (Fedora/CentOS) connect to Site 1: When I try to connect my Linux box to the Juniper, Juniper always shows 0 tunnels up. I am using Fedora/CentOS Linux and have a Juniper SRX210 gateway configured as a site-to-site IPsec VPN. It's been almost more than a week, but I seem to have no answer for this and can't really figure out how to solve this:
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |