If the SRX box was at the same site as I am, it would be at risk
of physical assault. This just seems so wrong and broken. If I look
at the IPsec logs (kmd), the Phase 2 negotiations with the peer look
totally correct,
Jul 19 06:21:05 Phase-2 [responder] done for
I've got what I think should be a fairly vanilla hub-and-spoke
VPN configuration. The hub is a Cisco ASA (really, it eventually
should be dual hub, but wait until I get one working before I
worry about that) and one of the spokes is a SRX (10.1).
I can get a single tunnel up between the SRX and
2 matches
Mail list logo
