There might have been a few things against me which have been corrected after reading the big SRX to ASA VPN thread.
1) Use policy based VPNs instead of route based VPNs
2) Place the VPN policies at the top of the zone policy list
3) Create a source nat rule disabling NAT for the destination address(es) of the remote subnet
4) Only use one address per VPN policy (i.e., not multi-address entries or address-sets)
Now traffic flows in both directions and either side can establish the tunnel. The next step is to setup tunnels for two different subnets on the Juniper side. I believe the tunnel IDs may come into play here but I'm not exactly sure how to proceed. Any ideas?
Thanks,
mawr