• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1635
  • Last Modified:

Juniper VPN client to connect multiple Networks

I am using juniper Netscreen remote to connect to my Juniper firewall. In that particular client I can select destnation IP as "ip address", "ip range", or a "network" . If I want to allow the particular user to 2 distict IP's that are not in sequence range, how will I give the option? Also if I want the user to connect two 2 seperate subnets, then how will i configure the client? any idea?
0
anishpeter
Asked:
anishpeter
  • 2
1 Solution
 
harbor235Commented:
Typically, VPN users are trusted users and you are allowing access to a network not a single IP.
You could restrict access by creating a filter on the inside network, the only problem is that you are allowing VPN users to be assigned IPs dynamically. I guess you could create seperate VPNs for each user and dynamically assign one IP, this would give you a source IP allowing granularity with your filters restricting a particular user to resources you determine by network or IP address. Only problem is that you need seperate VPNs per user. This doe snot scale but if you lnly need a few it would not be bad.

harbor235 ;}
0
 
anishpeterAuthor Commented:
In ASA, u can use the source as specif IP addess for VPN rule. But in Jubiper VPN addess is always a generic address as"DIALUP VPN" because Juniper assign Dynamic IP only after policy checking. But in Juniper I can use the same rule with different IP sec tunnel for specific IKE user. But my problem is in the client side. I use Netscreen Remote VPN client Application. In that ,I can select destnation IP as "ip address", "ip range", or a "network" . If I want to allow the particular user to 2 distict IP's that are not in sequence range, how will I give the option? Also if I want the user to connect two 2 seperate subnets, then how will i configure the client?  This is the problem in client side, not firewall side. then what to do?
0
 
anishpeterAuthor Commented:
Yes.. At last I found a solution myself. I can use Route basd Dialup VPN in Juniper. This is a rare installtion concept and solve all the problems. This si the actual VPN, that I can take control of the VPN tunnel and user access. If any one need help to configure that u can contact me.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

What Kind of Coding Program is Right for You?

There are many ways to learn to code these days. From coding bootcamps like Flatiron School to online courses to totally free beginner resources. The best way to learn to code depends on many factors, but the most important one is you. See what course is best for you.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now