Support Support Downloads Knowledge Base Case Manager My Juniper Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

[Archive] Create VPN to a MIP address

0

0

Article ID: KB5301 KB Last Updated: 02 Jul 2010Version: 5.0
Summary:
Create VPN to a MIP address
Symptoms:
Environment:
  • Users on the '"trusted'" side of a remote VPN device need to reach a host on the "trusted" side of the NetScreen device using the public MIP address (instead of the private address).
  • Route based VPN
  • set flow vpn-untrust-mip
Symptoms & Errors:
  • Cannot reach a public MIP address through a tunnel using route-based VPN
Solution:
Note: This article applies to ScreenOS 5.0 and higher.

A special command is needed to terminate a VPN to the untrust interface, with the destination as the MIP address, instead of a trust address.

From the command line interface (CLI):

set flow vpn-untrust-mip [Enter]
save [Enter]

Related Links

Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Getting Up and Running with Junos

Getting Up and Running with Junos Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search