|
Posted by Triffid on November 26, 2005, 12:09 am
If you were Registered and logged in, you could reply and use other advanced thread options
news.iol.ie wrote:
> Hi All
>
> Has anyone configure WIndows XP to VPN with a Juniper firewall using not
> using Netscreen-remote. In effect just using the XP's built client VPN
> features.
>
> Thanks
>
> Stephen
Yes, it's possible. I have it working - but it was a PITA, mostly
because XP uses it's own terminology and hides anything that might be
useful for diagnostics.
I expect it would be easier if the client had a static IP, but when the
client IP is dynamic you _must_ use certificates for IKE authentication.
I used OpenSSL as my CA.
Sorry, I can't give you the recipe - I spent hours of trial and error
getting it to work, my notes are messy, and I don't have time to repeat
the process and document it. However, if you have questions along the
way I'll try to help - especially if you document the recipe :-)
Googling 'openssl netscreen' will help too.
Triffid
| 
XML site map