Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Example: Configuring AutoVPN with Pre-Shared Key

SUMMARY 

This example shows how to configure different IKE preshared key used by the VPN gateway to authenticate the remote peer. Similarly, to configure same IKE preshared key used by the VPN gateway to authenticate the remote peer.

Requirements

This example uses the following hardware and software components:

  • MX240, MX480, and MX960 with MX-SPC3
  • Junos OS Release 21.1R1 that support AutoVPN

Configuration

To configure different IKE preshared key that the VPN gateway uses to authenticate the remote peer, perform these tasks.

  1. Configure the seeded-psk for ike policy in the device with autovpn hub.

    or

    For example:

    or

  2. Generate the pre-shared-key for remote peer using gateway name and user-id.

    For example:

    Pre-shared key: "$ABC1223"; ## SECRET-DATA
  3. Configure the generated PSK on the ike policy for remote peer device.

    For example:

Result

From the configuration mode, confirm your configuration by entering the show security command. If the output does not display the intended configuration, repeat the instructions in this example to correct the configuration.

Configuration

To configure same IKE preshared key that the VPN gateway uses to authenticate the remote peer, perform these tasks.

  1. Configure the common pre-shared-key for ike policy in the device with autovpn hub.

    For example:

  2. onfigure the common pre-shared-key on the ike policy for remote peer device.

    For example:

Result

From the configuration mode, confirm your configuration by entering the show security command. If the output does not display the intended configuration, repeat the instructions in this example to correct the configuration.