[j-nsp] SRX VPN in Virtual Router
Levi Pederson
levipederson at mankatonetworks.net
Mon Mar 30 10:08:43 EDT 2015
M,
I've landed a VPN on an SRX 240 cluster but I had to update the config to a
version of 12+ to use the LoopBack as a VPN end-point. believe it was 12.44
but I would check the information sheets on the OS versions. Though I am
unsure of the support on the Virtual Side
Thank you,
*Levi Pederson*
Mankato Networks LLC
cell | 612.481.0769
work | 612.787.7392
levipederson at mankatonetworks.net
On Mon, Mar 30, 2015 at 9:03 AM, M Abdeljawad via juniper-nsp <
juniper-nsp at puck.nether.net> wrote:
> Hi All
> I have a question about SRX VPN support under virtual router;There are two
> WAN links and each link member in different Virtual Router (not inet0), and
> the VPN tunnels must be established from both virtual routers
>
>
>
> Per to my search I found two conflict results as below;
>
>
>
> Below KB link mention that its supported, and the st0interface and the IKE
> listener interface can be assigned to the custom virtualrouter.
>
> http://kb.juniper.net/InfoCenter/index?page=content&id=KB21487
>
>
>
>
>
> And below document link mention that the IKE listener mustbe member of
> inet.0 for the VPN to work.
>
>
> http://www.juniper.net/documentation/en_US/junos11.4/topics/concept/virtual-router-support-for-route-based-vpns.html
>
>
>
>
>
> What if I used Lo0 interface and assigned it to inet.0 andused it as the
> external VPN interface, is this valid solution?
>
>
> RegardsMahmoud
> _______________________________________________
> juniper-nsp mailing list juniper-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/juniper-nsp
More information about the juniper-nsp
mailing list