Security

 View Only
last person joined: 18 days ago 

Ask questions and share experiences with Juniper Connected Security. Discuss Advanced Threat Protection, SecIntel, Secure Analytics, Secure Connect, Security Director, and all things related to Juniper security technologies.

  • 1.  IPsec Tunnel inactive

    Posted 09-01-2023 13:39

    Hello Everyone ;

    I have configured IPsec Tunnel on srx4100 , The Tunnel is not up , it's Inactive tunnel 

    bellow the details of tunnel 

     show security IPsec inactive-tunnels index 131129
    --------------------------------------------------------------------------
    ID: 131129 Virtual-system: root, VPN Name: YODEYMA-VPN-2
      Local Gateway: 194.117.219.20, Remote Gateway: 188.40.17.106
      Local Identity: ipv4_subnet(any:0,[0..7]=0.0.0.0/0)
      Remote Identity: ipv4_subnet(any:0,[0..7]=0.0.0.0/0)
      Version: IKEv1
      DF-bit: clear, Copy-Outer-DSCP Disabled, Bind-interface: st0.63
      Port: 500, Nego#: 104, Fail#: 0, Def-Del#: 0 Flag: 0x600a29
      Multi-sa, Configured SAs# 1, Negotiated SAs#: 0
      Tunnel events:
        Fri Sep 01 2023 16:35:57 +0200: IKE SA negotiation successfully completed (49 times)
        Sun Aug 27 2023 07:49:23 +0200: Hard lifetime of IPSec SA expired (1 times)
        Sun Aug 27 2023 06:49:23 +0200: IPSec SA negotiation successfully completed (83 times)
        Tue Aug 15 2023 13:05:19 +0200: No response from peer. Negotiation failed (1 times)
        Tue Aug 15 2023 13:03:49 +0200: IKE SA negotiation successfully completed (163 times)
        Fri Aug 11 2023 16:45:02 +0200: No response from peer. Negotiation failed (1 times)
        Fri Aug 11 2023 16:43:33 +0200: IKE SA negotiation successfully completed (214 times)
        Tue Aug 08 2023 22:35:16 +0200: Hard lifetime of IPSec SA expired (1 times)
        Tue Aug 08 2023 22:25:57 +0200: IPSec SAs cleared as corresponding IKE SA deleted (1 times)
        Tue Aug 08 2023 21:35:16 +0200: IPSec SA negotiation successfully completed (18 times)
        Tue Aug 08 2023 12:11:09 +0200: IPSec SA delete payload received from peer, corresponding IPSec SAs cleared (1 times)
        Tue Aug 08 2023 11:40:03 +0200: No response from peer. Negotiation failed (1 times)
        Tue Aug 08 2023 11:39:50 +0200: IPSec SA negotiation successfully completed (1 times)
        Tue Aug 08 2023 10:14:12 +0200: No response from peer. Negotiation failed (4 times)
        Tue Aug 08 2023 10:11:25 +0200: IKE SA negotiation successfully completed (221 times)
        Mon Aug 07 2023 12:03:44 +0200: No response from peer. Negotiation failed (39 times)

    Can please help me fix this issue.

    Best regards

    Younes



    ------------------------------
    Younes Ezzaari
    ------------------------------