[SunRay-Users] SunRay VPN with Juniper ScreenOS, JunOS
Kent Peacock
Kent.Peacock at Sun.COM
Tue Dec 2 22:53:48 EET 2008
On 12/02/08 14:58, Nick Ross wrote:
> In the release notes for 4.1 it states "This release supports Cisco ASA
> family (EzVPN) and Juniper/Netscreen IPsec-based gateways."
>
>
>
> We have Sun Ray 2 and 2FS models that work with a Cisco VPN gateway, but
> thus far we have been unable to get them to work with any of our Juniper
> gear.
>
>
>
> Currently we are attempting to configure a Juniper SSG20 running
> ScreenOS 5.4.0r3a.0.
>
>
>
> The SSG reports "unrecognized peer gateway" and the Sun Rays stay at 28E
> (VPN connection being attempted, VPN Phase I IKE initiated).
>
>
>
> Does anyone have a configuration guide or any reference material (e.g.
> testing criteria for 4.1 feature) for setting up this configuration?
You need to use the Cisco "EzVPN" model, which means using group/key
authentication for phase 1, followed by Xauth using a username/password.
I've tested this with an SSG5, and it works. I'm not sure what
"unrecognized peer gateway" means, but it suggests you're trying to use
IP identifiers.
Ketn
More information about the SunRay-Users
mailing list