I have several Juniper SSG5 units and I am trying to connect them via VPN. However, the untrusted LAN subnet for each unit is the same as they are all intra-site units. I have followed as many documents that I can find regarding a VPN setup, but I am missing something. Ultimately, I need the following setup. Device to SSG5 #1 Trusted Zone (port E0/2) on Subnet A (192.168.1.0). Device to SSG5 #2 Trusted Zone (port E0/2) on subnet B (192.168.2.0). Untrusted connection between SSG5 #1 and SSG5 #2 using port E0/0 on both units to use Subnet C (192.168.3.0). There will be no internet connection on this network, so that part is irrelevant in this situation. However, I do need the device connected to SSG #1 to be able to communicate with the device on SSG #2. I also need data encryption, so I do not believe that simply setting routes will suffice either. Please advise.