Security

 View Only
last person joined: yesterday 

Ask questions and share experiences with Juniper Connected Security. Discuss Advance Threat Protection, Policy Enforcer, SecIntel, Secure Analytics, Secure Connect, Secure Director and all things related to Juniper security technologies.

  • 1.  IPsec Tunnel inactive

    Posted 26 days ago

    Hello Everyone ;

    I have configured IPsec Tunnel on srx4100 , The Tunnel is not up , it's Inactive tunnel 

    bellow the details of tunnel 

     show security IPsec inactive-tunnels index 131129
    --------------------------------------------------------------------------
    ID: 131129 Virtual-system: root, VPN Name: YODEYMA-VPN-2
      Local Gateway: 194.117.219.20, Remote Gateway: 188.40.17.106
      Local Identity: ipv4_subnet(any:0,[0..7]=0.0.0.0/0)
      Remote Identity: ipv4_subnet(any:0,[0..7]=0.0.0.0/0)
      Version: IKEv1
      DF-bit: clear, Copy-Outer-DSCP Disabled, Bind-interface: st0.63
      Port: 500, Nego#: 104, Fail#: 0, Def-Del#: 0 Flag: 0x600a29
      Multi-sa, Configured SAs# 1, Negotiated SAs#: 0
      Tunnel events:
        Fri Sep 01 2023 16:35:57 +0200: IKE SA negotiation successfully completed (49 times)
        Sun Aug 27 2023 07:49:23 +0200: Hard lifetime of IPSec SA expired (1 times)
        Sun Aug 27 2023 06:49:23 +0200: IPSec SA negotiation successfully completed (83 times)
        Tue Aug 15 2023 13:05:19 +0200: No response from peer. Negotiation failed (1 times)
        Tue Aug 15 2023 13:03:49 +0200: IKE SA negotiation successfully completed (163 times)
        Fri Aug 11 2023 16:45:02 +0200: No response from peer. Negotiation failed (1 times)
        Fri Aug 11 2023 16:43:33 +0200: IKE SA negotiation successfully completed (214 times)
        Tue Aug 08 2023 22:35:16 +0200: Hard lifetime of IPSec SA expired (1 times)
        Tue Aug 08 2023 22:25:57 +0200: IPSec SAs cleared as corresponding IKE SA deleted (1 times)
        Tue Aug 08 2023 21:35:16 +0200: IPSec SA negotiation successfully completed (18 times)
        Tue Aug 08 2023 12:11:09 +0200: IPSec SA delete payload received from peer, corresponding IPSec SAs cleared (1 times)
        Tue Aug 08 2023 11:40:03 +0200: No response from peer. Negotiation failed (1 times)
        Tue Aug 08 2023 11:39:50 +0200: IPSec SA negotiation successfully completed (1 times)
        Tue Aug 08 2023 10:14:12 +0200: No response from peer. Negotiation failed (4 times)
        Tue Aug 08 2023 10:11:25 +0200: IKE SA negotiation successfully completed (221 times)
        Mon Aug 07 2023 12:03:44 +0200: No response from peer. Negotiation failed (39 times)

    Can please help me fix this issue.

    Best regards

    Younes



    ------------------------------
    Younes Ezzaari
    ------------------------------