Table of Contents
Advertisement
Network and Security Manager Administration Guide
612
For Encryption Algorithm, select 3DES-CBC, then select Generate Key by Password
and enter the password asdlk24234.
For Authentication Algorithm, select SHA-1, then select Generate Key by Password
and enter the password PNas134a.
Select the Binding tab. Enable Tunnel Interface, then select tunnel 1.
6.
Click OK to save the new VPN.
7.
Create Paris Routes.
In the device navigation tree, select Network > Virtual Router to display the list of
1.
virtual routers on the device.
Double-click the trust-vr route to open the vr for editing.
2.
In the virtual router dialog box, click Routing Table, then click the Add icon under
3.
destination-based Routing Table to add a new static route.
NOTE: ScreenOS 5.0.x devices display both destination-based and source-based
routing tables; ScreenOS 5.1 and later devices display destination-based, source-based,
and source interface-based routing tables.
Configure a route from the untrust interface to the gateway, then click OK:
4.
Configure route from the trust zone to the tunnel interface, then click OK:
5.
Your routing table should appear.
Click OK to save your changes to the virtual router, then click OK to save your changes
6.
to the Paris device.
Create the security policy:
In the main navigation tree, select Policies. Click the Add icon to display the New
1.
Security Policy dialog box.
Configure the following, then click OK:
2.
For Security Policy Name, enter Corporate Route-based VPNs.
3.
Optionally, add comments.
4.
In the main navigation tree, select Policies > Corporate Route-based VPNs. The
5.
security policy appears in the main display area.
Figure 98: Configure Rules for RB Site-to-Site VPN, MK
Copyright © 2010, Juniper Networks, Inc.
Advertisement
Table of Contents
