Juniper SSG140 Policy Based VPN!! Help
-
Hi
I'm trying policy based ipsec vpn with juniper ssg140 but config doesn't work. There was my site fortigate 80c and ipsec vpn worked.
I changed fortigate and pfsense. SSG 140 config is same. I moved ipsec config from fortigate to pfsense. But tunnel isn't up. I sending log. Can you review?http://tinypic.com/view.php?pic=2heftp3&s=8
http://tinypic.com/view.php?pic=35ku9fm&s=8#.UxThxvl_smk
http://tinypic.com/r/34pfei8/8
http://tinypic.com/view.php?pic=2urmljn&s=8#.UxTiJ_l_smk
-
"Remote Side Not Responding". Looks like there is something on the Juniper that it does not like (or is not configured for this PFS endpoint). Any way you can post the config from that side?
I just setup PFS to our Juniper SRX and also a Cisco ASA. They are route base on the juniper side, but shouldn't be too different.
-
I setup a policy based VPN on a Juniper SSG140 -> pfsense and have it working fine. can you post pictures of your Gateway setup including the advanced page. Also your AutoIKE page and advanced page and lastly your policy setup.
Most likely you have either the Phase 1 / Phase 2 proposal mismatched or you did not set the ProxyId in the AutoIKE to match the Phase 2 in pfsense.
-
Hi
Did you have any luck with this? I am having the same trouble with a SSG20.