Hi,

Could someone please tell me how to match these Juniper parameters on a Cisco ASA ASA5545 Version 9.12(3)12. Below is the Juniper config I need to match on the ASA

set interfaces st0.53 family inet
set security zones security-zone untrust interfaces st0.53
set routing-instances transit-router interface st0.53
set routing-instances transit-router routing-options static route 172.18.x.x next-hop st0.53

set security ike proposal ike-pre-sha256-aes256-dh19-28800 authentication-method pre-shared-keys
set security ike proposal ike-pre-sha256-aes256-dh19-28800 encryption-algorithm aes-256-cbc
set security ike proposal ike-pre-sha256-aes256-dh19-28800 dh-group group19
set security ike proposal ike-pre-sha256-aes256-dh19-28800 lifetime-seconds 28800

set security ike policy ike-policy-test mode main
set security ike policy ike-policy-test pre-shared-key ascii-text xxxxxxx
set security ike policy ike-policy-test proposals ike-pre-sha256-aes256-dh19-28800

set security ike gateway ike-gateway-test ike-policy ike-policy-test
set security ike gateway ike-gateway-test address 109.x.x.x
set security ike gateway ike-gateway-test external-interface lo0.0
set security ike gateway ike-gateway-test version v2-only

set security ipsec proposal ipsec-esp-sha256-aes256-3600 protocol esp
set security ipsec proposal ipsec-esp-sha256-aes256-3600 encryption-algorithm aes-256-cbc
set security ipsec proposal ipsec-esp-sha256-aes256-3600 lifetime-seconds 3600

set security ipsec policy ipsec-policy-test proposals ipsec-esp-sha256-aes256-3600
set security ipsec policy ipsec-policy-test perfect-forward-secrecy keys group19

set security ipsec vpn test ike gateway ike-gateway-test
set security ipsec vpn test ike ipsec-policy ipsec-policy-test
set security ipsec vpn test  bind-interface st0.53
set security ipsec vpn test establish-tunnels on-traffic