[j-nsp] Srx 240 ipsec site to site
Nc Aji
aji14730 at gmail.com
Mon May 13 05:29:59 EDT 2013
Yes the issue is dyn-dns support , does any one have working scripts and
procedures for getting this work ?
On Mon, May 13, 2013 at 10:22 AM, Nick Kritsky <nick.kritsky at gmail.com>wrote:
> I guess you can achieve this functionality using event-scripts.
>
> Nick
>
>
> On Mon, May 13, 2013 at 10:30 AM, Klaus Groeger <klauzi at gmail.com> wrote:
>
> > Hi
> >
> >
> > you may not resolve the issue with auto vpn, because the main problem is:
> > both sites are assigned the IPs dynamically - via dhcp or whatever. If
> > both sites do not know the peer's IP address, they cannot establish a
> > tunnel.
> >
> >
> > In ScreenOS, one has the option to use hostname instead of an IP address,
> > the system makes a name lookup and connects to the resolved address. This
> > isn't possible with SRX, because the hostname is resolved during
> > configuration and the IP address will be naild down in the config.
> >
> >
> > Even if you use aggressive mode, one site has to be a fixed IP address!
> >
> >
> > Regards
> >
> >
> > Klaus
> >
> >
> >
> > —
> > Sent from Mailbox for iPhone
> >
> >
> > On So., Mai 12, 2013 at 20:58, Misha Gzirishvili <
> > misha.gzirishvili at gmail.com="mailto:misha.gzirishvili at gmail.com">>
> wrote:
> > Hi Aji,
> > Take a look at AutoVPN.
> > Some links about it:
> > _______________________________________________
> > juniper-nsp mailing list juniper-nsp at puck.nether.net
> > https://puck.nether.net/mailman/listinfo/juniper-nsp
> >
> _______________________________________________
> juniper-nsp mailing list juniper-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/juniper-nsp
>
More information about the juniper-nsp
mailing list