Juniper Question & Answer

Two SRX Series devices are having problems establishing an IPsec VPN session

Two SRX Series devices are having problems establishing an IPsec VPN session. One of the devices has a firewall filter applied to its gateway interface that rejects UDP traffic. What  would resolve the problem?

A. Disable the IKE Phase 1 part of the session establishment.

B. Disable the IKE Phase 2 part of the session establishment.

C. Change the configuration so that session establishment uses TCP.

D. Edit the firewall filter to allow UDP port 500.

 

Answer : D. Edit the firewall filter to allow UDP port 500.

Leave a Reply

Your email address will not be published. Required fields are marked *