cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
620
Views
0
Helpful
3
Replies
Highlighted

Cisco ASA - 2 - Juniper Firewall

I am trying to setup a site to site between a cisco and a juniper. The IT dept. ont he other side sent me this:

Peer IP: 111.111.111.111

Phase 1: pre-g2-3des-sha1

Phase 2: nopfs-esp-3des-sha1

Security Association Lifetime Value (Seconds)

Phase 1: 28800

Phase 2: 3600

Network: 10.195.0.0/16

Waiting on the PreShared Key

The phase 1 & 2 looks different that what I have seen with Cisco. What is the config I would nee to connect to this?

Everyone's tags (5)
3 REPLIES 3
Highlighted
Participant

Re: Cisco ASA - 2 - Juniper Firewall

as I remember juniper fw sends hostname instead of ip as identity. so you have to create a tunnel group whose name is peer's name , instead of ip.

Sent from Cisco Technical Support iPad App

Highlighted
Beginner

Cisco ASA - 2 - Juniper Firewall

Hi ,

i have a doubt , is cisco asa 5520 version 8.2 support sha1 configuration in site to site turnel ?

My client send me phase 2 like AES 128 , sha1 , but i am not able to see sha1 while configure this site to site vpn

Regards,

Prashant

Highlighted
Beginner

Cisco ASA - 2 - Juniper Firewall

in cisco sha(sha1 is same thing)

problem is resolved by matching the exact replica of phase2 Network address.

Regards,

Prashant