[j-nsp] Vpn in active/active HA
SunnyDay
cscosunny at gmail.com
Fri Aug 29 06:11:40 EDT 2008
Im not going to use cerificates just policy based vpn or route-based
is there any issue on these?
-----Original Message-----
From: Sidney Boumendil [mailto:sidney.boumendil at gmail.com]
Sent: Friday, August 29, 2008 1:06 PM
To: SunnyDay
Cc: Juniper-Nsp
Subject: Re: [j-nsp] Vpn in active/active HA
On 8/29/08, SunnyDay <cscosunny at gmail.com> wrote:
> Hello is there anything specific setting to watch out for when configuring
a
> vpn in
> two ssg when in high availability active/active state?
Hello,
If you are going to use certificate authentication for some tunnels,
be sure to configure a nsrp cluster name and issue your certificates
with this name so as not to disrupt the ipsec tunnel in case of vsd
group failover.
B.R
Sidney
More information about the juniper-nsp
mailing list