[129381] in North American Network Operators' Group
Re: Juniper to Watchguard IPSEC
daemon@ATHENA.MIT.EDU (Iain Morris)
Fri Sep 3 17:20:16 2010
In-Reply-To: <DFA5AECDEC85EE4087D45C463C19B3751349F77B8A@KWAEXMAIL1.ARRS.ARRISI.COM>
Date: Fri, 3 Sep 2010 14:20:08 -0700
From: Iain Morris <iain.t.morris@gmail.com>
To: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Fri, Sep 3, 2010 at 10:03 AM, Welch, Bryan <Bryan.Welch@arrisi.com>wrote:
> Anyone have any experience with IPSEC between a WG Firebox and Juniper
> SRX/SSG? Running into some problems and beginning to think there might be
> some incompatibilities in their IPSEC options.
>
> Not WG but I had trouble getting a SSG to talk to a Cisco until I realized
> the SSG (ScreenOS) has to have a proxy-id defined, which the Cisco required
> to complete the SA. But perhaps you're using Junos on your SSGs if you're
> talking SRX as well.
-Iain
