SRX

last person joined: yesterday 

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.

  • 1.  How can I initiate connections to dynamic VPN-connected clients?

    Posted 11-28-2014 00:45

    Hi all.

     

    I need to connect to VPN-connected clients

    Network scheme like this:

    VPN Client<---------->INTERNET<---------->SRX<------------->Local LAN

     

    VPN Client Users are using  junos Pulse and they have access to protected resources in Local Lan (all fine)

    But if it is possible to access VPN Client from Local Lan ???

     

     



  • 2.  RE: How can I initiate connections to dynamic VPN-connected clients?
    Best Answer

    Posted 11-28-2014 00:48

    Hi sultan,

     

     

    By design it is not possible to access vpn clients from LAN network.

     

     

    only VPN to protected resource will work and not vice versa

     

     

    Regards

     

    rparthi

     

     

     

    Please Mark My Solution Accepted if it Helped, Kudos are Appreciated Too

     



  • 3.  RE: How can I initiate connections to dynamic VPN-connected clients?

     
    Posted 11-28-2014 00:56

    The concept of bi-directional Dynamic VPN does not work in Junos currently. Traffic sourced out from the protected resources will fail to reach the client due to an internal policy lookup failure.

    The following KB explains this behavior.

    http://kb.juniper.net/InfoCenter/index?page=content&id=KB21800

     

    Thanks,

    Suraj

    If this worked for you please flag my post as an "Accepted Solution" so others can benefit. A kudo would be cool if you think I earned it.



  • 4.  RE: How can I initiate connections to dynamic VPN-connected clients?

    Posted 11-28-2014 01:20

    Thank all !!!

    you save my time