vSRX

 View Only

IMPORTANT MODERATION NOTICE

This community is currently under full moderation, meaning  all posts will be reviewed before appearing in the community. Please expect a brief delay—there is no need to post multiple times. If your post is rejected, you'll receive an email outlining the reason(s). We've implemented full moderation to control spam. Thank you for your patience and participation.



  • 1.  Traffic Selector on vSRX with encryption domain 0.0.0.0/0

    Posted 05-17-2022 10:15
    Hi,
    I have to configure an s2s vpn to a remote site and in the remote part they told me to enter 0.0.0.0/0 as the encryption domain towards their headquarters. I read that on vSRX this option is not provided and in fact it gives me an error. I wanted to ask if there was a way to handle this issue.

    Thanks a lot.


    ------------------------------
    LEONARDO LIBERATI
    ------------------------------


  • 2.  RE: Traffic Selector on vSRX with encryption domain 0.0.0.0/0

     
    Posted 05-19-2022 05:50
    If you have only a single pair with your 0.0.0.0/0 on the one side you can see if the proxy-id configuration option is available.  In this case you also need to configure the routes into the tunnel then by either dynamic routing or static routes.

    https://supportportal.juniper.net/s/article/SRX-Understanding-how-proxy-IDs-are-generated-in-route-based-and-policy-based-VPNs

    ------------------------------
    Steve Puluka BSEET - Juniper Ambassador
    IP Architect - DQE Communications Pittsburgh, PA (Metro Ethernet & ISP)
    http://puluka.com/home
    ------------------------------