I need to use IKEv2 to setup site-to-site VPN with a 3rd party, I was astonished to find that IKEv2 does not support traffic-selectors, so we will need to have multiple encryption domains between two IKEv2 gateways, how does IKEv2 address this basic requirement?
Unfortunately Yes, IKEv2 does not supports to configure Traffic selectors asof yet and hence you need to have multiple vpns configured under the [edit security ipsec vpn] heirarchy with each vpn having different proxy-id's in it.
The below KB can serve as an example of how to configure multiple vpn configuration with different proxy IDs. Though the KB is using IKEv1 but the same can be used for IKEv2 as well
I undertand that now it is possible IKE v2 with traffic selectors, but I can't make it work. Please see the output from my FW. You can see that after I add the traffic-selector is telling me that I am missing statements that are clearly in the config. Have you encountered this? my box is an SRX4100 with 15.1X49-D150.2