Netscreen ns25 - Vigor 2660 Ipsec dropping



  • Hi there.

    At our main office we have a ns25 running OS 5.2. Internal Ip range 192.168.1.X

    We have 2 remote sites with ADSL and vigor 2600’s Ip range 192.168.20.x and 192.168.30.x

    The vigors have a lan to lan to each other. Works perfectly. Both Vigors connect up to the NS25 fine but only 1 will allow traffic through. The logs on the ns25 show both sites connected fine but no traffic is passed through. If I switch off the problematic 2600 and reboot it it connects fine and passes traffic through fine for a short period of time then just stops.

    I have recreated the vigor 2600 to NS25 link and its the same.

    Both vigor 2600s have different pre shared keys when connecting up to the ns25.

    There was errors for bad SPI in the event log on the ns25 which I have applied the suggested fix from Juniper.

    Any Ideas

    cheers

    G


 

36
Online

38.4k
Users

12.7k
Topics

44.5k
Posts