[j-nsp] Juniper IPSEC VPN
Nick Ryce
Nick.Ryce at lumison.net
Mon May 3 17:26:57 EDT 2010
After some further testing it looks like the juniper keeps re-establishing the tunnel every 10-20 seconds or so.
Does anyone have real world experience of getting a j2320 ipsec tunnel working with an ASA5510?
Nick
From: Nicholas Oas [mailto:nicholas.oas at gmail.com]
Sent: 30 April 2010 13:03
To: Nick Ryce
Subject: Re: [j-nsp] Juniper IPSEC VPN
OFF-LIST PRIVATE RESPONSE.
Spec sheet of "1000265-en.pdf" indicates a j2320 should be able to do 140mb/s IPsec VPN... Also 1000206-en.pdf says that crypto module you found is for a 2350 only.
If you are not pushing more than that published limit I would say there a bug, which is entirely possible. Have you contacted TAC?
Also an even cheaper punt would be to throw 9.6r3 on it... Or something in the 10 train for that matte (can be ugly in other ways though).
-Nicholas
On Fri, Apr 30, 2010 at 7:21 AM, Nick Ryce <Nick.Ryce at lumison.net<mailto:Nick.Ryce at lumison.net>> wrote:
Just found JXH-HC2-S
Might give that a try but its an expensive 'punt'
Nick
From: Chris Evans [mailto:chrisccnpspam2 at gmail.com<mailto:chrisccnpspam2 at gmail.com>]
Sent: 30 April 2010 12:13
To: Nick Ryce
Cc: juniper-nsp at puck.nether.net<mailto:juniper-nsp at puck.nether.net>
Subject: Re: [j-nsp] Juniper IPSEC VPN
The asa has a hardware encryption engine in it. I don't believe that the j series router has one. That is the root of your problem I would say.
On Apr 30, 2010 5:13 AM, "Nick Ryce" <Nick.Ryce at lumison.net<mailto:Nick.Ryce at lumison.net><mailto:Nick.Ryce at lumison.net<mailto:Nick.Ryce at lumison.net>>> wrote:
Is there a default speed that a juniper ipec tunnel runs at? We have an asa5510 and an 1812 where the ipsec tunnel was running near full speed on a 10 meg link. We swapped the 1812 with a 2320 running 9.6R2.8 and we are seeing lost packets and slow throughput. The tunnel does not drop once established but packets continue to be lost. Any ideas?
Nick
--
Nick Ryce
Network Engineer
Lumison
08451199999
P.S. do you love Lumison? Why not take a moment and vote for us?
http://bit.ly/Vote_Lumison
--
This email and any files transmitted with it are confidential and intended
solely for the use of the individual or entity to whom they are addressed.
If you have received this email in error please notify the sender. Any
offers or quotation of service are subject to formal specification.
Errors and omissions excepted. Please note that any views or opinions
presented in this email are solely those of the author and do not
necessarily represent those of Lumison.
Finally, the recipient should check this email and any attachments for the
presence of viruses. Lumison accept no liability for any
damage caused by any virus transmitted by this email.
_______________________________________________
juniper-nsp mailing list juniper-nsp at puck.nether.net<mailto:juniper-nsp at puck.nether.net><mailto:juniper-nsp at puck.nether.net<mailto:juniper-nsp at puck.nether.net>>
https://puck.nether.net/mailman/listinfo/juniper-nsp
________________________________
--
This email and any files transmitted with it are confidential and intended
solely for the use of the individual or entity to whom they are addressed.
If you have received this email in error please notify the sender. Any
offers or quotation of service are subject to formal specification.
Errors and omissions excepted. Please note that any views or opinions
presented in this email are solely those of the author and do not
necessarily represent those of Lumison.
Finally, the recipient should check this email and any attachments for the
presence of viruses. Lumison accept no liability for any
damage caused by any virus transmitted by this email.
_______________________________________________
juniper-nsp mailing list juniper-nsp at puck.nether.net<mailto:juniper-nsp at puck.nether.net>
https://puck.nether.net/mailman/listinfo/juniper-nsp
________________________________
--
This email and any files transmitted with it are confidential and intended
solely for the use of the individual or entity to whom they are addressed.
If you have received this email in error please notify the sender. Any
offers or quotation of service are subject to formal specification.
Errors and omissions excepted. Please note that any views or opinions
presented in this email are solely those of the author and do not
necessarily represent those of Lumison.
Finally, the recipient should check this email and any attachments for the
presence of viruses. Lumison accept no liability for any
damage caused by any virus transmitted by this email.
More information about the juniper-nsp
mailing list