SRX Services Gateway
Posts: 7
Registered: ‎02-09-2011

Who can help with Shrewsoft vpn setting?

Hi all,


I’m having problem with my VPN connection (SRX 240 with shrew soft client)…


I’m sure that my VPN configuration on SRX is running well because I’ve tested with Juniper Access Manager.

However, I’m trying to connect the VPN by using shrew soft. It show me the status that I success connected and I can browse internet as usual. But I can’t ping/access to the protected network (internal network).


Can anybody help on this? Please have a look the attached file. Thx.

Super Contributor
Posts: 167
Registered: ‎08-02-2010

Re: Who can help with Shrewsoft vpn setting?

[ Edited ]

Your vpn configuration is fine when it comes to Dynamic-vpn, although if you want to go with shrew soft you should use a standard client-vpn configuration. You should basically remove the dynamic-vpn stanza.

That one should work.


(if my post helped solve your problem, mark it as accepted solution)
Posts: 7
Registered: ‎02-09-2011

Re: Who can help with Shrewsoft vpn setting?

Hi Adam,


Thx for your advice.


The reason that I configure as Dynamic-vpn is because office don’t have an internet static IP address. To configure as a standard client-vpn we need to have internet static IP address ready, right?

Distinguished Expert
Posts: 979
Registered: ‎09-10-2009

Re: Who can help with Shrewsoft vpn setting?

Dynamic VPN is a licensed feature (you would need to buy client licenses) and I believe isn't interoperable with non-Juniper client software.


Shrew is a "standard" IPSec client, so from the perspective of your SRX it's just another IPSec tunnel.


If this solves your problem, please mark this post as "Accepted Solution."
Kudos are always appreciated.
Copyright© 1999-2015 Juniper Networks, Inc. All rights reserved.