This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Juniper <-> Astaro Site-to-Site

Hello, i need some help...

as the subject said, i have my Asatro (8.202) and a Juniper SRX100.

The Structure is simple... i want a Site-to-Site between this components.

Behind the Astaro i have 2 Networks in 2 different VLANs, my home net is 1 /24.
My state now is : the vpn is up and running (route based vpn) BUT...

only one Networks of the 2 VLAN-net's are reachable for me @home. I tried many configurations, but now i don't know where the problem is...

Can you please help...?

Thanks

This thread was automatically locked due to age.

Parents

0 BAlfson over 13 years ago

In the 'IPsec Connection', instead of "Any" in 'Local networks', put "VLAN1 (Network)" and "VLAN2 (Network)" there.

In the Juniper, you need to have the two VLANs indicated as accessible via the VPN, and the contents of 'Remote networks' in your 'Remote Gateway' definition listed as the resource offered to your end of the VPN.

Doing those things should result in a separate SA for each of your VLANs and give you access from both of them.

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BAlfson over 13 years ago

In the 'IPsec Connection', instead of "Any" in 'Local networks', put "VLAN1 (Network)" and "VLAN2 (Network)" there.

In the Juniper, you need to have the two VLANs indicated as accessible via the VPN, and the contents of 'Remote networks' in your 'Remote Gateway' definition listed as the resource offered to your end of the VPN.

Doing those things should result in a separate SA for each of your VLANs and give you access from both of them.

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data