Security

 View Only
last person joined: yesterday 

Ask questions and share experiences with Juniper Connected Security. Discuss Advanced Threat Protection, SecIntel, Secure Analytics, Secure Connect, Security Director, and all things related to Juniper security technologies.
  • 1.  Traffic Selector on vSRX with encryption domain 0.0.0.0/0

    Posted 05-17-2022 10:14
    Hi,
    I have to configure an s2s vpn to a remote site and in the remote part they told me to enter 0.0.0.0/0 as the encryption domain towards their headquarters. I read that on vSRX this option is not provided and in fact it gives me an error. I wanted to ask if there was a way to handle this issue.

    Thanks a lot.


    ------------------------------
    LEONARDO LIBERATI
    ------------------------------


  • 2.  RE: Traffic Selector on vSRX with encryption domain 0.0.0.0/0

    Posted 05-19-2022 05:50
    If you have only a single pair with your 0.0.0.0/0 on the one side you can see if the proxy-id configuration option is available.  In this case you also need to configure the routes into the tunnel then by either dynamic routing or static routes.

    https://supportportal.juniper.net/s/article/SRX-Understanding-how-proxy-IDs-are-generated-in-route-based-and-policy-based-VPNs

    ------------------------------
    Steve Puluka BSEET - Juniper Ambassador
    IP Architect - DQE Communications Pittsburgh, PA (Metro Ethernet & ISP)
    http://puluka.com/home
    ------------------------------