Hi,
I'm setting up a policy based VPN with a Cisco device on a SRX 240 Chassis cluster. I have multiple subnets which need to be reachable through the vpn. I know I have to make multiple gw's because of the single subnet proxy-id support. Is it possible to define a subnet and allow that and filter within the VPN?
Let say:
Juniper Local net: 192.168.10.0/24
Cisco Remote net's: 10.20.30.0/24 & 192.168.20.0/24
I want to allow traffic and have an exception (within the Juniper cluster):
permit tcp host 192.168.10.10 host 10.20.30.40 eq 25
deny tcp 192.168.10.0/24 10.20.30.0/24 eq 25
permit ip 192.168.10.0/24 10.20.30.0/24
How is that possible with Junos?
Regards,
PisPix