Hi,
It depends on your complete requirement. ...
Common Reasons to use a Policy-based VPN:
- Remote VPN device is a non-Juniper device
- Need to access only one subnet or one network at the remote site, across the VPN
Common Reasons to use a Route-based VPN:
- Source or Destination NAT (NAT-Src, NAT-Dst) needs to occur as it traverses the VPN
- Overlapping Subnets/IP Addresses between the two LANs
- Hub-and-spoke VPN topology
- Design requires Primary and Backup VPN
- A Dynamic Routing Protocol (i.e. OSPF, RIP, BGP) is running across the VPN
- Need to access multiple subnets or networks at the remote site, across the VPN
Note : In some cases, you can do either of them but in certain cases only one works !!