SRX Services Gateway
Highlighted
SRX Services Gateway

How can I initiate connections to dynamic VPN-connected clients?

‎11-28-2014 12:45 AM

Hi all.

 

I need to connect to VPN-connected clients

Network scheme like this:

VPN Client<---------->INTERNET<---------->SRX<------------->Local LAN

 

VPN Client Users are using  junos Pulse and they have access to protected resources in Local Lan (all fine)

But if it is possible to access VPN Client from Local Lan ???

 

 

3 REPLIES 3
Highlighted
SRX Services Gateway
Solution
Accepted by topic author sultanov2007@gmail.com
‎08-26-2015 01:27 AM

Re: How can I initiate connections to dynamic VPN-connected clients?

‎11-28-2014 12:48 AM

Hi sultan,

 

 

By design it is not possible to access vpn clients from LAN network.

 

 

only VPN to protected resource will work and not vice versa

 

 

Regards

 

rparthi

 

 

 

Please Mark My Solution Accepted if it Helped, Kudos are Appreciated Too

 

Highlighted
SRX Services Gateway

Re: How can I initiate connections to dynamic VPN-connected clients?

‎11-28-2014 12:55 AM

The concept of bi-directional Dynamic VPN does not work in Junos currently. Traffic sourced out from the protected resources will fail to reach the client due to an internal policy lookup failure.

The following KB explains this behavior.

http://kb.juniper.net/InfoCenter/index?page=content&id=KB21800

 

Thanks,

Suraj

If this worked for you please flag my post as an "Accepted Solution" so others can benefit. A kudo would be cool if you think I earned it.

Thanks,
Suraj
Please Mark My Solution Accepted if it Helped, Kudos are Appreciated too
Highlighted
SRX Services Gateway

Re: How can I initiate connections to dynamic VPN-connected clients?

‎11-28-2014 01:19 AM

Thank all !!!

you save my time 

Feedback