Juniper Netscreen SSG20 VPN Config
Posted on 2013-05-14
I have a working VPN config between a remote Checkpoint site (that I dont manage) and our Juniper Netscreen.
VPN is policy based with traffic at the remote site only being allowed to initiate a connection for an application they run to a server at our end. All works fine.
I now need to allow a print server queue located at my site to send print jobs to a printer at the remote site. The application that is run creates a print request to the database at my end sends the print to to the print queue. I am told by the admin at the remote site that I need to add the printer IP to my encryption domain and give it the relevant access ie port 9100 outgoing through the tunnel.
How do I add the printer IP to my encryption domain?
Once added do I add a trust to untrust policy for the port number?