SRX

last person joined: yesterday 

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.

  • 1.  VPN entries Twice

    Posted 11-30-2010 10:38

    I am using SRX-3600, when I give following command

     

    show security ike security-associations

     

    all IKE gateways (up / down) becomes visible. However I am facing a problem, SOME GATEWAY entries repeat twice.

     

    What to do now to resolve the issue.

     

    Regards



  • 2.  RE: VPN entries Twice
    Best Answer

    Posted 12-02-2010 12:30

    It's hard to say...  If these are like a PPPOE connection that is dynamic and changing in nature before your ike timeouts you might see this. 

     

    DONT DO THIS ON A CONCENTRATOR....!!!!!!!!!!

     

    commands to flush ike / ipsec / etc...

     

    NOTE: These will clear all

    clear security ike security-associations

    clear security ipsec security-associations

     

    NOTE: These are by index

    clear security ike security-associations index <Number>

    clear security ipsec security-associations index <Number>

     

    NOTE:  DROPS HAMMER

    restart ipsec-key-managment

     

    NOTE: DROP HAMMER HAMMER

    commit full

     



  • 3.  RE: VPN entries Twice

    Posted 12-25-2010 07:35

    restart ipsec-key-management

     

    did the trick ...

     

    thanks all