SRX

last person joined: 7 hours ago 

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.

  • 1.  Managing SRX gateways with NSM when the IP changes

    Posted 06-27-2011 05:57

    Hi,

    I have a central SRX cluster and IPSEC vpn with several SRX100 on remote offices.
    Some sites have dynamic ip...

    Is it possible to manage automatically SRX devices over the Internet if their public IP is changing?

    thanks



  • 2.  RE: Managing SRX gateways with NSM when the IP changes

    Posted 06-27-2011 08:27

    Hi,


    What version of NSM are you using?  I believe the newer versions don't care about IP changes.  The remote device contacts the NSM.  If the hash matches, the IP is updated.  I've done this a few times using version 2011.1 without issue.

     

    John



  • 3.  RE: Managing SRX gateways with NSM when the IP changes

    Posted 06-27-2011 08:33

    Hi,

    I'm using the last 2011.1 version of NSM.

    Do you have to create the SRX device in a particular way the first time? (I mean reachable or unreachable)

    Thanks for your feed back

     



  • 4.  RE: Managing SRX gateways with NSM when the IP changes
    Best Answer

    Posted 06-27-2011 17:55

    Hi,


    I haven't tested reachable.  I typically use the unreachable approach.  I guess a force of habit from the early days of SRX/NSM.  

     

    John



  • 5.  RE: Managing SRX gateways with NSM when the IP changes

    Posted 06-28-2011 00:13

    Thnak you John,

    I think the unreachable method is the good one since we don't know the IP on the remote side...

    thank you

     

    Romain