UTM Firewall

VPN: Site to Site and Remote Access Site to Site ASG220 to Juniper NetScreen

UTM Firewall requires membership for participation - click to join

Thread Info

State Not Answered
Locked Locked
Replies 0 replies
Subscribers 1 subscriber
Views 690 views
Users 0 members are here

Options

Suggested

This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Site to Site ASG220 to Juniper NetScreen

mgworek over 14 years ago

working with their IT guy. Getting close but failing at phase 2.

He has asked me to disable perfect forward secrecy (pfs) for Phase 2 but I see no way of doing that.

Here is my policy

Edit IPSec policy
Name:    Test
IKE encryption algorithm:  AES 128
IKE authentication algorithm:   SHA1
IKE SA lifetime:        7800
IKE DH group:        Group 2: MODP 1024
IPSec encryption algorithm:        AES 128
IPSec authentication algorithm:        SHA1
IPSec SA lifetime:        3600
IPSec PFS group:        Group 2: MODP 1024
Strict policy:
Compression:
Comment:

asg220 running 8.102

This thread was automatically locked due to age.