Hi,
I am new to juniper and i cannot get any type of VPN actually connect. I can get to where it accepts the authentication but then it fails. I either get a tunnels not established or network error message. Basically trying to get an outside vendor access to our voice gateway.
Below is my config. Needs some cleaning up. Any tips? Also, the config wizards on the GUI did not work either.
policy CityNet {
mode aggressive;
description CityNet;
proposals PDIPROKMP;
gateway gw_CityNet {
ike-policy CityNet;
dynamic {
hostname OFFICE;
connections-limit 2;
ike-user-type group-ike-id;
external-interface ge-0/0/0.0;
xauth {
access-
profile remote_access_profile;
policy CityNet {
description CityNet;
perfect-forward-secrecy {
keys group5;
}
proposals PDIPRO;
vpn CityNet {
ike {
gateway gw_CityNet;
ipsec-policy CityNet;
}
establish-tunnels immediately;
policy CityNet {
match {
source-address any;
destination-address any;
application any;
}
then {
permit {
tunnel {
ipsec-vpn CityNet;
interfaces {
ge-0/0/0 {
unit 0 {
family inet {
access {
profile remote_access_profile {
authentication-order password;
client citynet {
firewall-user {
password "$9$ErHyrKMWL-b2-VjkPfzFylKMxN"; ## SECRET-DATA