Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
ON THIS PAGE
 

tcp-encap

Syntax

Hierarchy Level

Description

CAUTION:

Enabling tracing can adversely impact scale and performance and may increase security risk. We strongly recommend using the trace, tracing, or traceoptions commands only under the guidance of a JTAC support engineer. After collecting the debug information, immediately disable tracing to minimize risk and restore normal system performance.

Specify TCP encapsulation operations for a remote access client to a remote access gateway on an SRX Series Firewall to support IPsec messages encapsulated within a TCP connection.

Options

profile profile-name

Configure a TCP encapsulation profile for a remote access client to a remote access gateway on an SRX Series Firewall to define the data encapsulation operation.

ssl-profile ssl-profile-name

Specify the SSL termination profile that is configured at the [edit services ssl termination profile] hierarchy level. This parameter is required for NCP Exclusive Remote Access Client of Full SSL Session.
log

Enable logging for remote access client connections.
traceoptions

Configure TCP encapsulation tracing options.

Required Privilege Level

view-level—To view this statement in the configuration.

control-level—To add this statement to the configuration.

Release Information

Statement introduced in Junos OS Release 15.1X49-D80.

Support for the ssl-profile option added in Junos OS Release 18.1R1.

Related Documentation