Screen OS

last person joined: 8 months ago 

This is a legacy community with limited Juniper monitoring.

  • 1.  DialUp VPN..??

    Posted 08-16-2009 23:14

    Hi ,

             I have configured a Dialup VPN in SSG140 and  a server in Trust zone. The problem is  I can access(Ping,RDP,shared folder) trust zone server from dialup VPN using NetScreen-Remote. But in home page of the firewall, the IPSEC VPN link status is Down or Inactive. at same time i could see P1 and P2 completed negotiation in Event logs.

     

    SA status also UP and  I can see the logs in VPN policy( from untrust to Trust)

     

    Is it Firmware issue?   My version is 6.2.0r2.0(firewall+VPN)

     

    please help on this.

     

    Thanks

    Sona

     

     



  • 2.  RE: DialUp VPN..??

    Posted 08-16-2009 23:54

    IF SA and events logs and policy logs are indicating about the correct VPN status then definetly it is something wrong on the 6.2r2 firmware.

     

    I would suggesst  to please load the 6.1r6 which is the Sixth release in 6.1 branch and would be more mature than 6.2.r2.

     

     



  • 3.  RE: DialUp VPN..??

    Posted 08-17-2009 01:49

    Hi,

           I changed to firmware to ssg140.6.1.0r6.0. still the same.

    SA and events logs and policy logs are indicating about the correct VPN ID  becaz  i didnt configure any other VPN.

     

     

    Thanks

    TG

     

     

     

     

     



  • 4.  RE: DialUp VPN..??
    Best Answer

    Posted 08-18-2009 09:02

    Hi,

     

    what is your setting  on VPN > auto key ike ? do u enable vpn monitor ?

    if u dont use juniper netscreen device each other you should disable vpn monitor.

     

    Thanks

     

    EL