[c-nsp] OT: Juniper SSG Policy-based VPN and NAT
D W
kapsi1911 at hotmail.com
Wed Apr 7 20:21:03 EDT 2010
All,
I have a query regarding NAT/VPN on a Netscreen 550 running screenOS 6.0/6.1 code. When an incoming IPSEC packet arrives from a remote site (P2P Lan-to-LAN VPN) is it possible to run that packet thru the same MIP policy that's assigned to the outside physical interface (untrust). I don't think this is possible to accomplish with a routed VPN, but my question is if I can achieve this with a policy-based VPN. I'm looking to use a single MIP for incoming VPN and Internet traffic so that every remote device (VPN and non-VPN) hits the server using the same IP address (the MIP).
Thanks,
Dave
_________________________________________________________________
The New Busy think 9 to 5 is a cute idea. Combine multiple calendars with Hotmail.
http://www.windowslive.com/campaign/thenewbusy?tile=multicalendar&ocid=PID28326::T:WLMTAGL:ON:WL:en-US:WM_HMP:042010_5
More information about the cisco-nsp
mailing list