[ Contents] [ Prev] [ Next] [ Index] [ Report an Error]

ipsec-vpn

See the following sections:

ipsec-vpn (Flow)

Syntax

ipsec-vpn {
mss value ;
}

Hierarchy Level

[edit security flow tcp-mss]

Release Information

Statement introduced in Release 8.5 of JUNOS software.

Description

Specify the TCP maximum segment size (TCP MSS) for the TCP packets that are about to go into an IPsec VPN tunnel. This value overrides the value specified in the all-tcp-mss statement.

This statement is supported on J-series and SRX-series devices.

Options

mss value —TCP MSS value for TCP packets entering an IPsec VPN tunnel. Value is optional.

Range: 64 through 65535 bytes
Default: 1320 bytes

Usage Guidelines

For configuration instructions and examples, see the JUNOS Software Security Configuration Guide.

Required Privilege Level

security—To view this statement in the configuration.

security-control—To add this statement to the configuration.

ipsec-vpn (Policies)

Syntax

ipsec-vpn vpn-name ;

Hierarchy Level

[edit security policies from-zone zone-name to-zone zone-name policy policy-name then permit tunnel]

Release Information

Statement introduced in Release 8.5 of JUNOS software.

Description

Define IPsec name for VPN.

This statement is supported on J-series and SRX-series devices.

Options

vpn-name —Name of the IPsec.

Usage Guidelines

For configuration instructions and examples, see the JUNOS Software Security Configuration Guide.

Required Privilege Level

security—To view this statement in the configuration.

security-control—To add this statement to the configuration.

[ Contents] [ Prev] [ Next] [ Index] [ Report an Error]

[an error occurred while processing this directive]