[Vpn-help] HowtoJuniperSsg suggestion
Stefan Bauer
stefan.bauer at plzk.de
Thu Jun 12 04:27:51 CDT 2008
Dear Matthew,
i just successfully configured my Juniper Netscreen 5XT with the
shrewsoft vpn client + xauth.
I worked through your howto[1] and found a few things that need a little
face-lifting :p
The Destination Network is 10.3.0.0/16 so from 10.3.0.1 to 10.3.255.254
In the Policy Window you include a different network -> 10.1.2.0/24
I would set this similar to avoid problems.
Client Settings:
In the Phase 2 Tab i had to set this explicitly to ESP-3DES.
In the General Tab the Auto Configuration has to be Ike config push, if
not i get:
08/06/12 11:10:18 !! : peer violates RFC, transform number mismatch ( 1
!= 5 )
08/06/12 11:10:18 !! : no xauth status received and config mode is not
push
regards
[1] http://shrew.net/support/wiki/HowtoJuniperSsg
--
stefan.bauer at plzk.de Linux Professional
Phone +49 89 26 216 964 Debian GNU/Linux
Mobile +49 179 11 94 767 Josef-Führer-Str. 30
http://www.plzk.de 80997 München
Bitte senden Sie mir keine Word- oder PowerPoint-Anhänge.
Siehe http://www.gnu.org/philosophy/no-word-attachments.de.html
More information about the vpn-help
mailing list