[j-nsp] SRX - multipoint st0 tunnel interface and static route
pkc_mls
pkc_mls at yahoo.fr
Fri Sep 14 05:10:23 EDT 2012
Le 14/09/2012 10:10, Mark Menzies a écrit :
> Have you set up NHTB? As the other side is non junos, you will need
> to set this up manually. NHTB allows the SRX to decide which VPN to
> send the remote traffic down. I will need to check but I am fairly
> sure that we will still need to set up routes for the remote nets to
> send them to st0.
>
NHTB has not been set, both tunnels go to the same gateway and same
network.
There are two local subnets involved.
> I take it the other side is just set up as a normal policy type VPN
> and as such should be looking for the proxy-IDs you have set?
sonicwall with this release can only be configured as policy type VPN.
proxy IDs are fine and both tunnels comes up, but the traffic is dropped
with a re-route error message.
More information about the juniper-nsp
mailing list