[j-nsp] IPSec Interoperability with Cisco Router
Eric Shih (TP/ERT)
eric.shih at ericsson.com
Sat Jan 1 10:15:54 EST 2005
Hello
I have a question about M20's IPSec behavior toward Cisco Router or Pix firewall. Becasue when IPSec tunnel
(dynamic tunnel SA) is established , if you manfully clear ipsec tunnel ( clear ipsec security association) or lifetime of
IPSec SA expire, the IPSec tunnel will not negotiate with each other if there is no traffic going on. The only
way to bring tunnel up is from Cisco side by using ping to trigger. It seems that we can not bring it up from
J20's side. Do you have any idea of it ?
BR // Eric Shih
More information about the juniper-nsp
mailing list