Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
ON THIS PAGE
 

server-cluster (Security Group VPN Server)

Syntax

Hierarchy Level

Description

Configure the Group Domain of Interpretation (GDOI) group controller/key server (GCKS) cluster for the specified group. All servers in a group VPN server cluster must be SRX Series Firewalls.

Options

ike-gateway gateway-name

(Required) Specify the name of the IKE gateway for the local device in the group server cluster. IKE gateways are configured at the [edit security group-vpn server ike] hierarchy level.

If the local device is a root-server, the IKE gateway name must be a sub-server in the cluster; up to four sub-server IKE gateways can be specified.

If the local device is a sub-server, the IKE gateway name must be the root-server.
retransmission-period seconds

(Optional) Specify the time after which the root-server retransmits a cluster-update message if it has not received an acknowledgement from a sub-server.

  • Range: 2 to 60 seconds.

  • Default: 10 seconds.
server-role

(Required) Assign the role of the local device in the group server cluster, either root-server or sub-server. Only one device in the cluster can be configured as the root-server. You can configure up to four other devices as a sub-server in a group server cluster.

You must ensure that there is only one root-server at any time for a group VPN server cluster.

Required Privilege Level

security—To view this statement in the configuration.

security-control—To add this statement to the configuration.

Release Information

Statement introduced in Junos OS Release 15.1X49-D30.

Related Documentation