[Vpn-help] HowtoJuniperSsg suggestion
Matthew Grooms
mgrooms at shrew.net
Sat Jun 14 19:30:29 CDT 2008
Stefan Bauer wrote:
> Dear Matthew,
>
> i just successfully configured my Juniper Netscreen 5XT with the
> shrewsoft vpn client + xauth.
>
> I worked through your howto[1] and found a few things that need a little
> face-lifting :p
>
> The Destination Network is 10.3.0.0/16 so from 10.3.0.1 to 10.3.255.254
>
> In the Policy Window you include a different network -> 10.1.2.0/24
> I would set this similar to avoid problems.
>
> Client Settings:
>
> In the Phase 2 Tab i had to set this explicitly to ESP-3DES.
>
> In the General Tab the Auto Configuration has to be Ike config push, if
> not i get:
>
> 08/06/12 11:10:18 !! : peer violates RFC, transform number mismatch ( 1
> != 5 )
> 08/06/12 11:10:18 !! : no xauth status received and config mode is not
> push
>
> regards
>
>
> [1] http://shrew.net/support/wiki/HowtoJuniperSsg
>
Stefen,
Thanks for the input. I will update the Howto with your corrections.
-Matthew
More information about the vpn-help
mailing list