Re: Policy-Based Site-to-Site VPN - SSG5 to Cisco ASA - Multiple Zone Question
When using policy based vpn tunnels you can simply create multiple policies and associate them with the same autokey object. When you do this they will each generate a pair of proxy ids for the tunnel. so they do not need to be contiguous with the existing subnets. The address objects used in each policy are additive on the Juniper side.
Steve Puluka BSEET - Juniper Ambassador Senior IP Engineer - DQE Communications Pittsburgh, PA (Metro Ethernet & ISP) http://puluka.com/home