Support Support Downloads Knowledge Base Case Manager My Juniper Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

[SRX] Length of hostname in aggressive mode site-to-site IPSec VPN

0

0

Article ID: KB21716 KB Last Updated: 04 Mar 2017Version: 2.0
Summary:
This article provides information about the length of the hostname in aggressive mode site-to-site IPSec VPN.
Symptoms:
  • What is the maximum length of the hostname in aggressive mode site-to-site IPSEC VPN?
  • Can we use special characters for the hostname?
Solution:

The maximum allowed length of the hostname is 20 characters; inclusive of special characters (such as: @,.,-, ....). If the length of the hostname is increased, the VPN tunnel will not come up.

Config example :

Dynamic Side :

[edit security ike]
gateway HQ {
ike-policy LA-remote;
address 10.0.1.2;
local-identity hostname jtac-juniper-srx-100;
external-interface fe-0/0/3.0;



Static Side :

[edit security ike]
gateway LA-remote-gw {
ike-policy LA-remote;
dynamic hostname jtac-juniper-srx-100;
external-interface fe-0/0/3.0;

Related Links

Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Getting Up and Running with Junos

Getting Up and Running with Junos Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search