Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

About the IPsec VPN Page

You are here: Network > VPN > IPsec VPN.

A VPN is a private network that uses a public network to connect two or more remote sites. Instead of using dedicated connections between networks, VPNs use virtual connections routed (tunneled) through public networks. IPsec VPN is a protocol, consists of set of standards used to establish a VPN connection. Use this page to configure IPsec VPN.

Tasks You Can Perform

You can perform the following tasks from this page:

  • Configure IPsec VPN global settings. See IPsec VPN Global Settings.

  • Create a Site-to-Site VPN. See Create a Site-to-Site VPN.

  • Create a remote access VPN. See Create a Remote Access VPN—Juniper Secure Connect and Create a Remote Access VPN—NCP Exclusive Client.

  • Edit an IPsec VPN configuration. See Edit an IPsec VPN.

  • Delete an IPsec VPN configuration. See Delete an IPsec VPN.

  • Show or hide columns in the IPsec VPN table. To do this, click the Show Hide Columns icon in the upper-right corner of the page and select the columns you want to display or deselect to hide columns on the page.

  • Advance search for an IPsec VPN. To do this, use the search text box present above the table grid. The search includes the logical operators as part of the filter string. An example filter condition is displayed in the search text box when you hover over the Search icon. When you start entering the search string, the icon indicates whether the filter string is valid or not.

    For an advanced search:

    1. Enter the search string in the text box.

      Based on your input, a list of items from the filter context menu appears.

    2. Select a value from the list and choose a valid operator for your advanced search.

      Note:

      Press Spacebar to add an AND operator or OR operator to the search string. Press backspace to delete a character of the search string.

    3. Press Enter to display the search results in the grid.

Field Descriptions

Table 1 describes the fields on the IPsec VPN page.

Table 1: Fields on the IPsec VPN Page

Field

Description

Name

Displays the name of the IPsec VPN.

IKE Status

Displays the Phase I Internet Key Exchange (IKE) status.

VPN Topology

Displays the name of the VPN topology:

  • Site to Site VPN—Connects two sites in an organization together and allows secure communications between the sites.

  • Remote Access VPN—Allows a user who is working at home or traveling to connect to the corporate office and its resources. This topology is sometimes referred to as an end-to-site tunnel.

    The options available are Remote Access VPN (Juniper Secure Connect) and Remote Access VPN (NCP Exclusive Client).

  • Other topologies which are displayed and you cannot add or edit are:

    • Dynamic VPN—The dynamic VPN feature simplifies remote access by enabling users to create IPsec VPN tunnels without having to manually configure settings on their PCs or laptops. This feature is supported on SRX300, SRX320, SRX340, SRX345, and SRX550HM devices.

    • Hub-and-spoke VPNs—Connects branch offices to the corporate office in an enterprise network. You can also use this topology to connect spokes together by sending traffic through the hub.

    • ADVPN Hub—Auto Discovery VPN (ADVPN) dynamically establishes VPN tunnels between spokes to avoid routing traffic through the Hub.

    • ADVPN Spoke—Allows the spokes to establish a shortcut tunnel between peers.

Dead Peer Detection

Displays if the dead peer detection (DPD) is enabled or disabled.

Routing Mode

Displays the name of the routing mode to send traffic to the IPsec VPN.

Connection Profile

Displays the connection profile in the FQDN or FQDN/Realm format if configured. If not configured, the field displays as external-IP/VPN-Name.

Note:

Starting in Junos OS 23.1R1 Release, Remote Access column is renamed as Connection Profile.