Setting up address translation for policy based VPN between Juniper Firewalls
Posted on 2008-06-12
I have two Juniper Firewalls at two different sites and I am trying to setup a policy based VPN between the two networks. The one firewall has alot of VPNs on it, specifically there is already a VPN that is using the subnet range of the remote network I am trying to nail a VPN to.
For example purposes lets say:
My local subnet (Firewall A) is 192.168.1.0/24
The remote subnet (Firewall B) is: 192.168.2.0/24 (this is already being used by another VPN)
How do I setup address translation for a policy based VPN so that I can specify a remote subnet of 192.168.3.0/24 on Firewall A and have that translated to 192.168.2.0/24 on Firewall B?
I was trying to do destination translation on Firewall B and I am getting the error "VPN policies cannot be used with the destination translation option"