Excuse the long post, but I just want all this out in the open in case
someone else finds it useful. :-)
Here are my Cisco and Juniper configs for the IPSec portion. Add in
the EEM script to help with updating the tunnel destination IP on the
Cisco, and you'll need some kind of event script for th
For anyone else that wants to do something like this, I whipped up a EEM applet:
event manager applet update_tunnel0_dest authorization bypass
event none
event timer watchdog time 60
action 1.0 set ifname "Tunnel0"
action 1.1 set tundest "dyndns.hostname"
action 2.0 cli command "show interfac
Hi Nick,
Yeah, I dont believe Juniper support NHRP, thats a Cisco thing.
I just tried replacing my Tunnel config with a Virtual-Template
config, I now get an IPSec SA, and a Virtual-Access interface is
created and seems to be receiving packets if I run a ping from the
Juniper...!
How to get an I
Hi Tom,
Try with 'general-ikeid' on SRX side under the definition of ike gateway.
You might need to upgrade Junos to have that option.
host@srx# set security ike gateway general-ikeid
HTH,
Ivan,
On Fri, Mar 13, 2015 at 3:35 PM, Tom Storey wrote:
> Hi everyone,
>
> Trying to establish an IP
4 matches
Mail list logo