0% found this document useful (0 votes)

110 views5 pages

VPN Juniper-Forti

The document describes the configuration of a Juniper VPN network. It specifies the VPN gateway and IP address, IKE and IPsec proposals using DES encryption, MD5 authentication and DH group 5. It configures an IPsec VPN between the WAN interface and a security zone for the VPN tunnel, and defines policies to permit traffic between the trust and VPN zones in both directions.

Uploaded by

Alberto Huamani Canchiz

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

110 views5 pages

VPN Juniper-Forti

Uploaded by

Alberto Huamani Canchiz

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

You are on page 1/ 5

VPN

Name Juniper VPN

Network
IP Version IPv4
Remote Gateway Static IP Address
IP Address 192.168.1.200
Interface WAN (port1)
Local Gateway <disable>
Mode Config <disable>
NAT Transversal Enable
Keepalive Frecuency 10
Dead Peer Detection Disable
Authentication
Method Pre-shared Key
Pre-shared Key ******
IKE
Version 1
Mode Main(ID protection)

Phase 1 Proposal
Encription DES
Authentication MD5
Diffie Hellman Group 5
Key Lifetime (Seconds) 86400
Lolca ID 192.168.1.201

XAUTH
Type Disabled
Routing

Policies
JUNIPER

=======

IKE

set security ike proposal prop-ike-forti authentication-method pre-shared-keys

set security ike proposal prop-ike-forti dh-group group5

set security ike proposal prop-ike-forti authentication-algorithm md5

set security ike proposal prop-ike-forti encryption-algorithm des-cbc

set security ike proposal prop-ike-forti lifetime-seconds 86400

set security ike policy pol-ike-forti mode main

set security ike policy pol-ike-forti proposals prop-ike-forti

set security ike policy pol-ike-forti pre-shared-key ascii-text "$9$azGkPfT3tu1zFcyKvLX"

set security ike gateway gw-ike-forti ike-policy pol-ike-forti

set security ike gateway gw-ike-forti address 192.168.1.201

set security ike gateway gw-ike-forti external-interface ge-0/0/0.0

set security ike gateway gw-ike-forti general-ikeid

set security ike gateway gw-ike-forti version v1-only

IPSEC

set security ipsec proposal prop-ipsec-forti protocol esp

set security ipsec proposal prop-ipsec-forti authentication-algorithm hmac-md5-96

set security ipsec proposal prop-ipsec-forti encryption-algorithm des-cbc

set security ipsec proposal prop-ipsec-forti lifetime-seconds 1800

set security ipsec policy pol-ipsec-forti perfect-forward-secrecy keys group5

set security ipsec policy pol-ipsec-forti proposals prop-ipsec-forti

set security ipsec vpn vpn-forti bind-interface st0.0

set security ipsec vpn vpn-forti ike gateway gw-ike-forti

set security ipsec vpn vpn-forti ike ipsec-policy pol-ipsec-forti

set security ipsec vpn vpn-forti establish-tunnels on-traffic

INTERFACE

set interfaces st0 unit 0 family inet

ROUTE

set routing-options static route 172.16.14.0/24 next-hop st0.0

ZONE

set security zones security-zone VPN-Zone host-inbound-traffic system-services ike

set security zones security-zone VPN-Zone host-inbound-traffic system-services ping

set security zones security-zone VPN-Zone host-inbound-traffic system-services traceroute

set security zones security-zone VPN-Zone interfaces st0.0

POLICY

set security policies from-zone trust to-zone VPN-Zone policy to_Forti match source-address
any

set security policies from-zone trust to-zone VPN-Zone policy to_Forti match destination-
address any

set security policies from-zone trust to-zone VPN-Zone policy to_Forti match application any

set security policies from-zone trust to-zone VPN-Zone policy to_Forti then permit

set security policies from-zone trust to-zone VPN-Zone policy to_Forti then log session-close

set security policies from-zone trust to-zone VPN-Zone policy to_Forti then count

set security policies from-zone VPN-Zone to-zone trust policy toJunos match source-address
any

set security policies from-zone VPN-Zone to-zone trust policy toJunos match destination-
address any

set security policies from-zone VPN-Zone to-zone trust policy toJunos match application any

set security policies from-zone VPN-Zone to-zone trust policy toJunos then permit

set security policies from-zone VPN-Zone to-zone trust policy toJunos then log session-close

set security policies from-zone VPN-Zone to-zone trust policy toJunos then count

How To Configure FortiOS SSL VPN With FortiToken
No ratings yet
How To Configure FortiOS SSL VPN With FortiToken
15 pages
Security VPN Ipsec@@@ PDF
No ratings yet
Security VPN Ipsec@@@ PDF
1,678 pages
Oxford Big Ideas Australian Curriculum History 7 Maggy Saldais Download
No ratings yet
Oxford Big Ideas Australian Curriculum History 7 Maggy Saldais Download
79 pages
FortiGate IPSec VPN User Guide
No ratings yet
FortiGate IPSec VPN User Guide
166 pages
Cisco Ccna 200-301 Study Guide, 2024
80% (10)
Cisco Ccna 200-301 Study Guide, 2024
451 pages
Practical Analysis and Design
No ratings yet
Practical Analysis and Design
570 pages
WireShark and Traffic Analysis 1694671285
No ratings yet
WireShark and Traffic Analysis 1694671285
59 pages
Cisco ACI Zero To Hero
100% (2)
Cisco ACI Zero To Hero
625 pages
Fortigate Ipsecvpn 56 PDF
No ratings yet
Fortigate Ipsecvpn 56 PDF
242 pages
FortiOS 7.4.0 New - Features - Guide551 600
No ratings yet
FortiOS 7.4.0 New - Features - Guide551 600
50 pages
Implementing AnyConnect IKEv2 VPNs On ASA and Routers
No ratings yet
Implementing AnyConnect IKEv2 VPNs On ASA and Routers
4 pages
Mikrotik To Cisco ASA IPsec VPN
No ratings yet
Mikrotik To Cisco ASA IPsec VPN
83 pages
2022 ACCO Student Handbook
No ratings yet
2022 ACCO Student Handbook
56 pages
IPsec VPN
No ratings yet
IPsec VPN
260 pages
FortiGate IPSec VPN User Guide
No ratings yet
FortiGate IPSec VPN User Guide
166 pages
Full Notes CCIE Enterprise CCNP Encor
100% (7)
Full Notes CCIE Enterprise CCNP Encor
462 pages
FortiGate Infrastructure 7.0 Study Guide-Online Unlocked
100% (9)
FortiGate Infrastructure 7.0 Study Guide-Online Unlocked
402 pages
Penetration Testing Step-By-Step Guide
92% (12)
Penetration Testing Step-By-Step Guide
417 pages
Fortigate Ipsec 52
No ratings yet
Fortigate Ipsec 52
233 pages
Designing For Cisco Network Service (CCDP ARCH 300-320)
No ratings yet
Designing For Cisco Network Service (CCDP ARCH 300-320)
205 pages
Nmap Network Discovery III Reduced Size PDF
100% (5)
Nmap Network Discovery III Reduced Size PDF
937 pages
Fortigate Ipsec VPN 52 - 2
No ratings yet
Fortigate Ipsec VPN 52 - 2
240 pages
Anticancer A New Way of Life
100% (1)
Anticancer A New Way of Life
5 pages
Bond Strength of Concrete Plugs Embedded in Tubula PDF
No ratings yet
Bond Strength of Concrete Plugs Embedded in Tubula PDF
16 pages
Virtual Private Network (VPN)
No ratings yet
Virtual Private Network (VPN)
48 pages
TCP IP Primer Plus
100% (7)
TCP IP Primer Plus
525 pages
Palo Alto Student Manual - c3226cb5 595e 49e0 B5a9 Acb7d1f067bf
100% (4)
Palo Alto Student Manual - c3226cb5 595e 49e0 B5a9 Acb7d1f067bf
229 pages
CCNP Enterprise Advanced Routing ENARSI 300-410
85% (27)
CCNP Enterprise Advanced Routing ENARSI 300-410
1,100 pages
CCNA Lab Guide - Routing and Switching
100% (5)
CCNA Lab Guide - Routing and Switching
151 pages
Kubernetes 101
100% (1)
Kubernetes 101
76 pages
The Linux Cookbook, Second Edition
100% (4)
The Linux Cookbook, Second Edition
824 pages
NLMK Strip-Product-Catalogue Web Spread
No ratings yet
NLMK Strip-Product-Catalogue Web Spread
28 pages
Company Profile PT Indesign Domus - Feb 2023
No ratings yet
Company Profile PT Indesign Domus - Feb 2023
48 pages
ProCurve SR VPN Config Guide
No ratings yet
ProCurve SR VPN Config Guide
14 pages
Network Security Strategies
100% (10)
Network Security Strategies
378 pages
Parody
No ratings yet
Parody
26 pages
Setting Up Site-To-Site IPsec VPN On TP-LINK Router
No ratings yet
Setting Up Site-To-Site IPsec VPN On TP-LINK Router
8 pages
Safe Vehicle Operation
No ratings yet
Safe Vehicle Operation
38 pages
Downloadable Official CompTIA Security+ Student Guide
100% (13)
Downloadable Official CompTIA Security+ Student Guide
708 pages
Lab 09
No ratings yet
Lab 09
13 pages
AI Travel Web App Development
No ratings yet
AI Travel Web App Development
6 pages
FGT1 06 Basic IPsec VPN V2 PDF
No ratings yet
FGT1 06 Basic IPsec VPN V2 PDF
32 pages
Colour Connection Brand Guidelines
No ratings yet
Colour Connection Brand Guidelines
32 pages
IPSEC Tunnel Juniper
No ratings yet
IPSEC Tunnel Juniper
11 pages
ESG200 - Barracuda Email Security Gateway Product Specialist
No ratings yet
ESG200 - Barracuda Email Security Gateway Product Specialist
13 pages
CCNP and CCIE Enterprise Core & CCNP Advanced Routing Portable Command Guide All ENCOR (350-401) and ENARSI (300-410) PDF
100% (9)
CCNP and CCIE Enterprise Core & CCNP Advanced Routing Portable Command Guide All ENCOR (350-401) and ENARSI (300-410) PDF
950 pages
IPSEC Config - Fortigate
No ratings yet
IPSEC Config - Fortigate
220 pages
Establish IPSec VPN Between Hillstone and FortiGate Firewalls
No ratings yet
Establish IPSec VPN Between Hillstone and FortiGate Firewalls
6 pages
FortiGate Site-To-Site IPsec VPN Guide - Private WAN IPs With Public Gateway IPs
No ratings yet
FortiGate Site-To-Site IPsec VPN Guide - Private WAN IPs With Public Gateway IPs
6 pages
Class11sci
No ratings yet
Class11sci
7 pages
VPN ES
No ratings yet
VPN ES
7 pages
VPN 0bd1710bbe03dec94
No ratings yet
VPN 0bd1710bbe03dec94
7 pages
Customized Port For IPSec VPN
No ratings yet
Customized Port For IPSec VPN
6 pages
VPN 0efcaaaaaa53b85c5
No ratings yet
VPN 0efcaaaaaa53b85c5
7 pages
Class 7 Mensuration - Perimeter, Area, Volume: All Questions Are 1 Marks
No ratings yet
Class 7 Mensuration - Perimeter, Area, Volume: All Questions Are 1 Marks
13 pages
Java Gson + JSON Tutorial With Examples: Gson Jar To Resolve Dependency
No ratings yet
Java Gson + JSON Tutorial With Examples: Gson Jar To Resolve Dependency
10 pages
ADDITIONAL NOTES On Readings in Philippine History
No ratings yet
ADDITIONAL NOTES On Readings in Philippine History
19 pages
Jweb Config Example Policy Based VPN
No ratings yet
Jweb Config Example Policy Based VPN
14 pages
Vlan To Cgnet Cisco Aci To Palo Alto Networks
No ratings yet
Vlan To Cgnet Cisco Aci To Palo Alto Networks
7 pages
Veeam Backup & Replication
No ratings yet
Veeam Backup & Replication
15 pages
SPI 8 10K Hybrid Inverter US Voltage
No ratings yet
SPI 8 10K Hybrid Inverter US Voltage
3 pages
Cisco CCNA 200-301 Exam Mock Tests 2022
100% (7)
Cisco CCNA 200-301 Exam Mock Tests 2022
330 pages
Configuring Site To Site IPSec VPN Tunnel Between Cisco Routers
No ratings yet
Configuring Site To Site IPSec VPN Tunnel Between Cisco Routers
5 pages
IPSec VPN LAB
100% (2)
IPSec VPN LAB
7 pages
10.1 9. Flex VPN
No ratings yet
10.1 9. Flex VPN
27 pages
CCNA 200-301 Practice Exam Questions 2020
100% (7)
CCNA 200-301 Practice Exam Questions 2020
350 pages
Oracle Security Ref Arch Whitepaper Final - 04152019 PDF
No ratings yet
Oracle Security Ref Arch Whitepaper Final - 04152019 PDF
10 pages
VPN Project 2
No ratings yet
VPN Project 2
2 pages
340 - Questions - CCNA - CCNA 200-301 - Billy Calvert
100% (10)
340 - Questions - CCNA - CCNA 200-301 - Billy Calvert
176 pages
Troubleshooting With Wireshark PDF
100% (10)
Troubleshooting With Wireshark PDF
450 pages
Router 1: Router 3:: ! (Basic Configuration For Connection To Internet) ! (Basic Configuration For Connection To Internet)
No ratings yet
Router 1: Router 3:: ! (Basic Configuration For Connection To Internet) ! (Basic Configuration For Connection To Internet)
6 pages
Heat Transfer Characteristics of MWCNT Nano Uid in Rectangular Mini Channels
No ratings yet
Heat Transfer Characteristics of MWCNT Nano Uid in Rectangular Mini Channels
8 pages
Cisco CCNA Lab Guide
90% (10)
Cisco CCNA Lab Guide
356 pages
Infoblox Whitepaper Nios - 1
No ratings yet
Infoblox Whitepaper Nios - 1
7 pages
IPSec Tunnel Configuration Between GWR Router and Juniper SSG Firewall
No ratings yet
IPSec Tunnel Configuration Between GWR Router and Juniper SSG Firewall
11 pages
TS 101 Traffic Signalling Systems (Inspection and Assessment) - Web
No ratings yet
TS 101 Traffic Signalling Systems (Inspection and Assessment) - Web
11 pages
Logger
No ratings yet
Logger
3 pages
Ethical Hacking With Kali Linux - Made Easy
100% (8)
Ethical Hacking With Kali Linux - Made Easy
185 pages
Jones, Daniel CISSP 3 in 1 Beginner's Guide To Learn The Realms
80% (5)
Jones, Daniel CISSP 3 in 1 Beginner's Guide To Learn The Realms
468 pages
Fortigate IPSec DialUP Client
No ratings yet
Fortigate IPSec DialUP Client
10 pages
Arslan CV
No ratings yet
Arslan CV
1 page
Introduction To Ore Mineralogy
No ratings yet
Introduction To Ore Mineralogy
10 pages
Wireshark Cheat Sheet
100% (2)
Wireshark Cheat Sheet
2 pages
File 2505376057 PDF
No ratings yet
File 2505376057 PDF
2 pages
Lab VPN
No ratings yet
Lab VPN
9 pages
Juniper SRX Series & GreenBow IPSec VPN Client Software Configuration (English)
No ratings yet
Juniper SRX Series & GreenBow IPSec VPN Client Software Configuration (English)
13 pages
Cisco IPSec Easy VPN Server Configuration Guide
No ratings yet
Cisco IPSec Easy VPN Server Configuration Guide
6 pages
How To Configure IPSec VPN
No ratings yet
How To Configure IPSec VPN
6 pages
Fortiisolator: Allow User Access To Potentially Malicious Content While Maintaining Strict Security
No ratings yet
Fortiisolator: Allow User Access To Potentially Malicious Content While Maintaining Strict Security
3 pages
Ipsec Between SRX and Vyos
100% (1)
Ipsec Between SRX and Vyos
6 pages
Untitled File
No ratings yet
Untitled File
4 pages
srx220 Juniper VPN Config
No ratings yet
srx220 Juniper VPN Config
4 pages
Configuración VPN Site To Site Juniper Cisco
No ratings yet
Configuración VPN Site To Site Juniper Cisco
5 pages
Configuring Site To Site Ipsec VPN Tunnel Between Cisco Routers
No ratings yet
Configuring Site To Site Ipsec VPN Tunnel Between Cisco Routers
6 pages
Juniper Configurare
No ratings yet
Juniper Configurare
40 pages
Kali Linux Wireless Penetration Testing - Master Wireless Testing Techniques To Survey and Attack Wireless Networks With Kali Linux (PDFDrive) PDF
100% (4)
Kali Linux Wireless Penetration Testing - Master Wireless Testing Techniques To Survey and Attack Wireless Networks With Kali Linux (PDFDrive) PDF
214 pages
Datasheet Trend Micro Trend Vision One - XDR For Endpoints - Anglais
No ratings yet
Datasheet Trend Micro Trend Vision One - XDR For Endpoints - Anglais
3 pages
Verdolini Et Al. - 2012 - Vocal Exercise May Attenuate Acute Vocal Fold Inflammation
No ratings yet
Verdolini Et Al. - 2012 - Vocal Exercise May Attenuate Acute Vocal Fold Inflammation
13 pages
LBS-2600-03Tree Pit
No ratings yet
LBS-2600-03Tree Pit
1 page
Implementing FlexVPN Using Local AAA On Routers and Firewalls
No ratings yet
Implementing FlexVPN Using Local AAA On Routers and Firewalls
2 pages
IPSec VPN in HA Environment
No ratings yet
IPSec VPN in HA Environment
6 pages
Router Vpnclient Pi Stick
No ratings yet
Router Vpnclient Pi Stick
10 pages
Kali Linux Advanced Methods and Strategies To Learn Kali Linux (BooxRack)
100% (8)
Kali Linux Advanced Methods and Strategies To Learn Kali Linux (BooxRack)
110 pages
Configuring IPsec VPN With A FortiGate and A Cisco ASA
No ratings yet
Configuring IPsec VPN With A FortiGate and A Cisco ASA
6 pages
TCP/IP
100% (15)
TCP/IP
286 pages
Configuring Easy VPN With The IOS CLI: Learning Objectives
No ratings yet
Configuring Easy VPN With The IOS CLI: Learning Objectives
26 pages
Pa 5200 Series
No ratings yet
Pa 5200 Series
4 pages
Kali Linux - The Beginners Guide On Ethical Hacking With Kali
100% (10)
Kali Linux - The Beginners Guide On Ethical Hacking With Kali
75 pages
Sorting Out Endodontic Symptoms: ©JK Mitchell, DDS, Med April 2012
100% (1)
Sorting Out Endodontic Symptoms: ©JK Mitchell, DDS, Med April 2012
2 pages
Work Automation With Ansible
100% (5)
Work Automation With Ansible
52 pages
NSE Institute: Alberto Huamani
No ratings yet
NSE Institute: Alberto Huamani
1 page
NSE 3 Certificate
No ratings yet
NSE 3 Certificate
1 page
Plantilla Reval Multipagas Encriptacion
No ratings yet
Plantilla Reval Multipagas Encriptacion
2 pages
PUMP - ASM - PAV - C - 20 - 410 - 2N - A045 - 125 - DTL - A3 - W1 - 155 RN - RX01 N - TH01 3,20 - X - CAP PP - Specif. Sheet
No ratings yet
PUMP - ASM - PAV - C - 20 - 410 - 2N - A045 - 125 - DTL - A3 - W1 - 155 RN - RX01 N - TH01 3,20 - X - CAP PP - Specif. Sheet
1 page
Configuring A Remote Access VPN With Pulse Secure
No ratings yet
Configuring A Remote Access VPN With Pulse Secure
3 pages
Single Line Diagram of Dcim (r1) - Model
No ratings yet
Single Line Diagram of Dcim (r1) - Model
1 page
Flexconvert Bess: Indrivetec Ag
No ratings yet
Flexconvert Bess: Indrivetec Ag
2 pages
Introduction To AutoLISP Programming
No ratings yet
Introduction To AutoLISP Programming
41 pages
FortiGate III Course Description-Online
No ratings yet
FortiGate III Course Description-Online
2 pages
How To Perform A Planned or Unplanned Failover - Sap Ase and Srs
No ratings yet
How To Perform A Planned or Unplanned Failover - Sap Ase and Srs
3 pages
Configuring Site To Site IPSec VPN Tunnel Between Cisco Routers
No ratings yet
Configuring Site To Site IPSec VPN Tunnel Between Cisco Routers
4 pages
SRX Series To SSG Series Route-Based VPN Configuration
No ratings yet
SRX Series To SSG Series Route-Based VPN Configuration
3 pages
FireEye Systems Engineer PDF
No ratings yet
FireEye Systems Engineer PDF
1 page
How To Setup A Routed IPSEC VPN Tunnel From Juniper SRX UTM Firewall To Draytek 2820 ADSL Firewall Router
No ratings yet
How To Setup A Routed IPSEC VPN Tunnel From Juniper SRX UTM Firewall To Draytek 2820 ADSL Firewall Router
7 pages
CheckPoint Cloudguard Saas
No ratings yet
CheckPoint Cloudguard Saas
1 page
Modern Band Syllabus
No ratings yet
Modern Band Syllabus
5 pages
The OpenVPN Handbook: Secure Your Networks with Virtual Private Networking
From Everand
The OpenVPN Handbook: Secure Your Networks with Virtual Private Networking
Robert Johnson
No ratings yet
Basic Setup of FortiGate Firewall
From Everand
Basic Setup of FortiGate Firewall
Dr. Hidaia Mahmood Alassouli
No ratings yet
CCNA Exam Focus: Study Guide with Practice Tests
From Everand
CCNA Exam Focus: Study Guide with Practice Tests
SUJAN
No ratings yet
Network Security All-in-one: ASA Firepower WSA Umbrella VPN ISE Layer 2 Security
From Everand
Network Security All-in-one: ASA Firepower WSA Umbrella VPN ISE Layer 2 Security
Redouane MEDDANE
No ratings yet
Network with Practical Labs Configuration: Step by Step configuration of Router and Switch configuration
From Everand
Network with Practical Labs Configuration: Step by Step configuration of Router and Switch configuration
Mulayam Singh
No ratings yet
CISCO PACKET TRACER LABS: Best practice of configuring or troubleshooting Network
From Everand
CISCO PACKET TRACER LABS: Best practice of configuring or troubleshooting Network
Mulayam Singh
No ratings yet
Cisco CCNA Command Guide: An Introductory Guide for CCNA & Computer Networking Beginners: Computer Networking, #3
From Everand
Cisco CCNA Command Guide: An Introductory Guide for CCNA & Computer Networking Beginners: Computer Networking, #3
Ramon Nastase
4.5/5 (2)

VPN Juniper-Forti

Uploaded by

VPN Juniper-Forti

Uploaded by

VPN

Name Juniper VPN

set security ike proposal prop-ike-forti authentication-method pre-shared-keys

set security ike proposal prop-ike-forti dh-group group5

set security ike proposal prop-ike-forti authentication-algorithm md5

set security ike proposal prop-ike-forti encryption-algorithm des-cbc

set security ike proposal prop-ike-forti lifetime-seconds 86400

set security ike policy pol-ike-forti mode main

set security ike policy pol-ike-forti proposals prop-ike-forti

set security ike policy pol-ike-forti pre-shared-key ascii-text "$9$azGkPfT3tu1zFcyKvLX"

set security ike gateway gw-ike-forti ike-policy pol-ike-forti

set security ike gateway gw-ike-forti address 192.168.1.201

set security ike gateway gw-ike-forti external-interface ge-0/0/0.0

set security ike gateway gw-ike-forti general-ikeid

set security ike gateway gw-ike-forti version v1-only

set security ipsec proposal prop-ipsec-forti protocol esp

set security ipsec proposal prop-ipsec-forti authentication-algorithm hmac-md5-96

set security ipsec proposal prop-ipsec-forti encryption-algorithm des-cbc

set security ipsec proposal prop-ipsec-forti lifetime-seconds 1800

set security ipsec policy pol-ipsec-forti perfect-forward-secrecy keys group5

set security ipsec policy pol-ipsec-forti proposals prop-ipsec-forti

set security ipsec vpn vpn-forti bind-interface st0.0

set security ipsec vpn vpn-forti ike gateway gw-ike-forti

set security ipsec vpn vpn-forti ike ipsec-policy pol-ipsec-forti

set security ipsec vpn vpn-forti establish-tunnels on-traffic

set interfaces st0 unit 0 family inet

set routing-options static route 172.16.14.0/24 next-hop st0.0

set security zones security-zone VPN-Zone host-inbound-traffic system-services ike

set security zones security-zone VPN-Zone host-inbound-traffic system-services ping

set security zones security-zone VPN-Zone host-inbound-traffic system-services traceroute

set security zones security-zone VPN-Zone interfaces st0.0

You might also like