If I understand this correctly I should be able to do this. But I've been wrong before...
I use a SRX550 for multiple route based VPN's. In they have been set up with 1 public ip on the outbound interface, then bind the tunnel to it etc etc.
My question is... Can I have more than 1 VPN on the interface?
ge-0/0/0 address 184.108.40.206
ike-policy IKE-policy-12345;address 100.100.100.100;dead-peer-detection;external-interface ge-0/0/0;
Of course all the other good stuff that goes with the Tunnel...
ike-policy IKE-policy-54321;address 220.127.116.11;dead-peer-detection;external-interface ge-0/0/0;
+++ the rest of the config.
Basically I'd make sure there are no duplicates for external IP's EXECPT for the interface going out to the outside world.
Does that make sense? Can this be done?
Go to Solution.
If I understand your question correctly, then of course you can!
Have a read below and see whether a Policy or Route based VPN best suits your needs. Usually a Route Based VPN is the way to go.
Fantastic!!! Route based is what I need for sure. Thanks!