Screen OS

I'm confident when it comes to "building" a vpn tunnel. I used the same steps as described in Raheel's post "ScreenOS to JUNOS-Enhanced Services VPN configuration"

The difficulty comes when I need to remove a VPN tunnel from a device. I've searched through the KB and this forum without finding any specific instructions on which pieces need to be removed and in what order. Without knowing the exact order to remove the VPN parts, a lot of time is spent, trial and error, figuring out what is bound to what, and what has to be removed first, second, etc.

Does anyone have a step by step list of CLI commands describing the proper way to remove a VPN?

Thanks,

BrentB

BrentB,

On ScreenOS, for policy based VPN the procedure is as follows:

First, delete VPN policies.

Second, delete VPN configuration

Third, delete IKE gateway configuration

On ScreenOS, for route based VPN the procedure is as follows:

First, unbind VPN to tunnel interface

Second, delete VPN configuration

Third, delete IKE gateway configuration

 Fourth, delete tunnel configuration

Thanks,

Cesar

Thank you for the great information! That's exactly what I was looking for!

Cheers,

BrentB

How about SRX (Junos)?

I am finding some trouble removing a VPN configuration, after removing all configuration I am still getting alerts that the tunnel is down and trying to negotiate phase 1