Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

VPNs

  • GCP KMS support (vSRX 3.0)—Starting in Junos OS Release 21.3R1, vSRX 3.0 supports Google Cloud Platforms (GCP) Key Management Service (KMS). With this feature integration, you can safeguard your sensitive data such as private keys that the pki and iked daemons use. The KMS server creates, stores, and performs the needed keypair operations.

    GCP KMS is a cloud service that works as a secure secrets store. You can securely store keys, passwords, certificates, and other secret data. You can also use this service to securely generate, store, and manage cryptographic keys. vSRX applications use these cryptographic keys to protect data at rest, such as private keys, passwords, and other sensitive data.

    [See Secure Data with vSRX 3.0 Using GCP KMS (HMS).]

  • Support for IPsec tunnel MTU (MX240, MX480, and MX960 with MX-SPC3,SRX5400, SRX5600, and SRX5800 with SPC3, and and vSRX devices)— Starting in Junos OS Release 21.3R1, you can configure the MTU size for IPsec tunnels. This configuration defines the maximum size of an IP packet, including the IPsec overhead.

    On IPv6, we provide support to disable the ICMPv6 Packet Too Big error message.

    [See Configuring IPsec VPN on MX-SPC3 Services Card.]

  • Support for CMPv2 (MX240, MX480, and MX960 with MX-SPC3—Starting in Junos OS Release 21.3R1, Certificate Management Protocol version 2 is supported on MX-SPC3 service card.

    [See PKI Components In Junos OS.]