[j-nsp] Juniper IPSEC VPN
Asad Raza
asadgardezi at gmail.com
Tue May 4 03:22:48 EDT 2010
Dear Nick,
You could check your IPSec logs to dig down the exact reason due to which
tunnel is dropping. It must be some parameter mismatch. Normally if your
establish tunnel between cisco devices and there is a parameter mismatch,
the tunnel wont establish. but incase of juniper the tunnel will establish
but you will face abnormal behavior.
regards,
Asad
On Tue, May 4, 2010 at 3:16 AM, Joe C <joe.cobalt at googlemail.com> wrote:
> Nick,
>
> I have set up IPsec tunnels between Juniper SRX 240 (started with 9.6,
> current one is a 10.x) and Cisco ISR and, the devil hides in the small
> details. Off the top of my head, I remember the lifetime defaults on both
> cisco and Juniper don't get along and I found the SRX setting a lifetime of
> 0 seconds, endlessly dropping and re-establishing the SA.
>
> Although it's not the same hardware scenario, it might help.
>
> JC
>
> On 3 May 2010, at 22:26, Nick Ryce wrote:
>
> > After some further testing it looks like the juniper keeps
> re-establishing the tunnel every 10-20 seconds or so.
> >
> > Does anyone have real world experience of getting a j2320 ipsec tunnel
> working with an ASA5510?
> >
> > Nick
>
>
> _______________________________________________
> juniper-nsp mailing list juniper-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/juniper-nsp
>
More information about the juniper-nsp
mailing list