Support Support Downloads Knowledge Base Case Manager My Juniper Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

Cannot paste a "set vpn" command in FIPS ScreenOS 6.2

0

0

Article ID: KB16528 KB Last Updated: 27 Apr 2010Version: 1.0
Summary:
Cannot paste a "set vpn" command in FIPS ScreenOS 6.2
Symptoms:
In a SSH session, the admin cannot paste a "set vpn" command into the configuration of the firewall.
Solution:
This is per-design.  The workaround is to use the console session to paste the "set vpn" command.

For remote SSH connections (which are protected by Triple-DES encryption), the strength of the management connection is considered to be 112 bits. Therefore, the operator is prevented from configuring a VPN whose encryption algorithm has a strength greater than 112 bits, e.g. 128, 192 or 256 bit AES.

For more information, refer to the FIPS documentation:
http://www.juniper.net/techpubs/hardware/netscreen-certifications.html

Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Getting Up and Running with Junos

Getting Up and Running with Junos Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search