SRX

 View Only
last person joined: 15 hours ago 

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.
  • 1.  Ipsec vpn using the same subnet, different host IP

    Posted 12-01-2022 13:54

    Hi guys, 

    I am working on an ipsec vpn between 2 remote SRXs with the same host subnet. The idea is the end host are on the same subnet but using a unique ip and should be able to communicate (ping) with each other. 

    My tunnels config are all ok, up and running.

    The solution I found online are end host have the same exact host ip. Any idea? Thanks

    Example: 
    gateway: 192.168.10.1
    srx1: 192.168.10.11
    srx2: 192.168.10.12



    ------------------------------
    all3n
    ------------------------------


  • 2.  RE: Ipsec vpn using the same subnet, different host IP

    Posted 12-01-2022 20:26
    I'm not sure I follow the question but I think you have the same subnet behind two vpn connected nodes.  If that is the case you would need to choose a nat subnet for the communication to work between the overlapping subnets.  An example is here.

    https://www.juniper.net/documentation/en_US/release-independent/nce/topics/task/configuration/lan2lan-vpn-jseries-srx-series-configuring.html

    ------------------------------
    Steve Puluka BSEET - Juniper Ambassador
    IP Architect - DQE Communications Pittsburgh, PA (Metro Ethernet & ISP - Retired)
    http://puluka.com/home
    ------------------------------