[j-nsp] VPN btwn netscreen and cisco
David Prall
dcp at dcptech.com
Thu Sep 18 08:47:16 EDT 2008
Here is a quick example for PIX to Netscreen.
http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_examp
le09186a00801c4445.shtml
Key issue is that default timers between the two devices are not the same.
Looking at the configuration on the netscreen it states phase 1 lifetime of
26400, while the pix has 86400 in the config. I think this is a doc bug and
the two should be configured the same. The phase 2 lifetime is configured to
3600 on the netscreen, which I believe to be the cisco default.
David
--
http://dcp.dcptech.com
> -----Original Message-----
> From: juniper-nsp-bounces at puck.nether.net
> [mailto:juniper-nsp-bounces at puck.nether.net] On Behalf Of
> gmburu at cellulant.com
> Sent: Thursday, September 18, 2008 8:24 AM
> To: juniper-nsp at puck.nether.net
> Subject: [j-nsp] VPN btwn netscreen and cisco
>
> HI guys,
>
> We have configured a vpn btwn our netscreen and a the end is
> a cisco device, however we get an error abour
> NOTIFY_RESPONDER_LIFETIME. What could be the problem, phase 1
> is going thru well.
>
> George
>
> __________________________________________________________
> Sent from iMailReader.com - Read your mail everywhere - any time
>
> _______________________________________________
> juniper-nsp mailing list juniper-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/juniper-nsp
More information about the juniper-nsp
mailing list