Screen OS

last person joined: 8 months ago 

This is a legacy community with limited Juniper monitoring.

  • 1.  policy based vpn nat!

    Posted 10-20-2009 02:00
    Hi 
     
    Costumer of me, has a policy based VPN 
     
     
    from                                          to
    192.164.131.0\24        <VPN>     172.21.208.164/32
    192.164.128.0\24                        10.2.19.0.0/24 
    192.168.130.0\24
     
    now he had to add these networks inc. nat at the same VPN! but only for 2 weeks!
     
    from                                                                                to
    172.16.101.83   <NAT> 192.168.13.5                  <VPN>    192.168.141.0/24
    172.16.101.84   <NAT> 192.168.13.6
    172.16.101.129 <NAT> 192.168.13.7
    172.16.101.130 <NAT> 192.168.13.8
    172.16.101.15   <NAT> 192.168.13.9
    172.16.101.16   <NAT> 192.168.13.10
     
    what is the best option for this problem....
     
     
    Thanks
     
    Chris


  • 2.  RE: policy based vpn nat!
    Best Answer

    Posted 10-20-2009 09:58
    You will want to change the policy based VPN into a route based vpn. On the tunnel interface, you will want to create a MIP. http://www.juniperforum.com/index.php?page=9


  • 3.  RE: policy based vpn nat!

    Posted 10-22-2009 06:30

    Hi

     

    Thanks, that is exact the same what i found in my lab...