Solved

Policy VPN on Juniper 520

Posted on 2009-07-15
1
368 Views
Last Modified: 2012-08-13
I receive an error stating I can't add multiple services or address to the existing policy VPN. However, when I created a separate policy for the new subnet it shows active up. Why can't I just add the new subnet to the existing VPN rule on both sides? i.e. policy untrust to trust scr 172.16.30.0 dst 10.22.0.0 service any action tunnel is the existing policy. I want to add subnet 10.23.0.0 to this policy. Is this allowed?
0
Comment
Question by:Jelonet
1 Comment
 
LVL 32

Accepted Solution

by:
dpk_wal earned 250 total points
ID: 24870550
When you are trying to add subnet are you using host/network object; one network object can also encapsulate other objects; if yes, then this should work.

Please provide more details, or smoe sanitized screenshot/log as applicable.

Thank you.
0

Featured Post

Control application downtime with dependency maps

Visualize the interdependencies between application components better with Applications Manager's automated application discovery and dependency mapping feature. Resolve performance issues faster by quickly isolating problematic components.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Cisco ASA 5510 VPN Bandwidth Throttling 8 114
ASA 5510 PAT question 1 26
Cisco ASA policy-map not matching the specific traffic 3 52
network error 8 32
In this tutorial I will show you with short command examples how to obtain a packet footprint of all traffic flowing thru your Juniper device running ScreenOS. I do not know the exact firmware requirement, but I think the fprofile command is availab…
I recently had the displeasure of buying a new firewall at one of the buildings I play Sys Admin at. I had to get a better firewall than the cheap one that I had there since I was reconnecting the main office to the satellite office via point-to-poi…
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

929 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

8 Experts available now in Live!

Get 1:1 Help Now