Table of Contents
Advertisement
Copyright © 2010, Juniper Networks, Inc.
Add a NetScreen-208 security device named "Bozeman." This is the device protects
7.
the FTP server. Configure the Bozeman device with the following interfaces:
Ethernet1 is the Trust IP (10.1.1.1/24) in the Trust zone.
Ethernet3 is the Untrust IP (2.2.2.2/24) in the Untrust zone.
Create a Protected Resource to represent the destination point of the VPN. In this
8.
example, the destination point is the FTP server in the trust zone of Bozeman. In
Protected Resources (under VPN Manager), click the Add icon. Configure the object,
and then click OK:
Create the VPN. In the main navigation tree, select VPN Manager > VPNs. Click the
9.
Add icon and select AutoKey IKE RAS VPN. The New AutoKey IKE RAS VPN dialog
box appears. Configure as shown below:
In Name, enter Reseller Remote Access VPN.
Select Enable.
In Termination Point, select Untrust.
Click OK to save the VPN and return to VPN Manager. The Reseller Remote Access
VPN appears in the main display area.
Configure the policy-based members:
1.
In the main display area, select the Protected Resources link.
In the Protected Resources list, select the rsl-svr1 protected resource, then click
OK:
Configure the termination points of the VPN:
2.
Click the Termination Points link. The Termination Points dialog box appears.
Configure the Bozeman device to use ethernet3 as the termination point (this is the
3.
Untrust zone interface).
Click OK to return to the main display area.
4.
Configure the remote users for the VPN:
5.
In the Remote Users section, click the Users link. The Remote User dialog box
appears.
Select the Reseller local user group.
Click Save to save your configuration changes to the VPN.
Configure the VPN gateway:
6.
Click the Gateway Parameters link. The Properties tab appears.
For Mode, select Main.
In the XAuth section, select XAuth Server and then select the radius1 authentication
server for Auth Server Name. Later, after you have autogenerated the VPN rules
Chapter 11: Configuring VPNs
575
Advertisement
Table of Contents
Related Manuals for Juniper NETWORK AND SECURITY MANAGER 2010.2 - ADMINISTRATION GUIDE REV1
Related Products for Juniper NETWORK AND SECURITY MANAGER 2010.2 - ADMINISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - CONFIGURING INTRUSION DETECTION AND PREVENTION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INTRUSION DETECTION PREVENTION DEVICES GUIDE REV 01
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - API GUIDE REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - M-SERIES AND MX-SERIES DEVICES GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - ADMINISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING J SERIES SERVICES ROUTERS AND SRX SERIES SERVICES GATEWAYS GUIDE REV
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - ADMININISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - NSMXPRESS SERIES II REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - M-SERIES AND MX-SERIES DEVICES GUIDE REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.3
- Juniper MEDIA FLOW CONTROLLER 2.0.4 -
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - AQL EVENT AND FLOW QUERY CLI GUIDE
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - EVENT CATEGORY CORRELATION REV 1
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - SNMP AGENT GUIDE REV 1
- Juniper STRM LOG MANAGEMENT 2008.2 - S 6-2008