ScreenOS Firewalls (NOT SRX)
Reply
Visitor
romaihi
Posts: 7
Registered: ‎11-05-2009
0

Policy Based VPN in the VR - IP conflict bypass

Hi,

I want to make sure the following setup is doable.

 

We have 2 customers

Corp1 with the following IP range 192.168.0.0/24 [ from 192.168.0.1 to 192.168.0.100 ]

Corp2 have the same above range

 

connectivity as follows

 

Router1 <--> FW1 <--> Internet

 

For Corp1 we have the following traffic flow

Corp1 Client <-->Corp1 VRF [Router1] <--> Corp1 VR [ FW ] <--> ISP VR [ FW ] <--VPN via Internet--> Corp1 Server

 

For Corp2 we have the following traffic flow

Corp2 Client <-->Corp2 VRF [Router2] <--> Corp2 VR [ FW ] <--> ISP VR [ FW ] <--VPN via Internet--> Corp2 Server

 

The ISP VR is a common VR for both Corp customers. Can I bypass IP conflict in this VR by having a policy based VPN ?

 

Also, attached a diagram

 

Regards,

Mubarak

Copyright© 1999-2013 Juniper Networks, Inc. All rights reserved.