[j-nsp] Juniper SA SSL VPN static ip for user

Barny Sanchez barnys at juniper.net
Sat Feb 4 21:42:06 EST 2012

the suggestion from Jof is clever but it doesn't scale. I am afraid that you would require of an external device to help you accomplish this, such as using a Radius and Attribute Value Pairs (AVP) to send back to the SA the associated IP for an user (framed-ip-address) upon connection.

Sent from iPhone

On Feb 4, 2012, at 8:21 PM, "Jonathan Lassoff" <jof at thejof.com> wrote:

> On Sat, Feb 4, 2012 at 3:46 PM, Maciej Jan Broniarz <gausus at gausus.net> wrote:
>> I have a bunch of users using SSL VPN to Juniper SA box. Is there a way to "give" each user the same static ip that will
>> always be given to that user, whenever he logs in?
> Unfortunately, I don't know of a simple way of doing this. However, I
> would think that it should be possible to create address pools with
> just one IP in them (they're not CIDR, just ranges), user groups with
> just one user in them, and map each user to their own set of user
> group and address pool.
> Cheers,
> jof
> _______________________________________________
> juniper-nsp mailing list juniper-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/juniper-nsp

More information about the juniper-nsp mailing list