Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Modify IPsec VPN Settings

Modify an IPsec VPN Setting

To modify the IPsec VPN settings:

  1. Select Configure > IPsec VPN > IPsec VPNs.

    The IPsec VPNs page is displayed.

  2. Right-click the IPsec VPN that you want to modify and select Modify VPN or select the IPsec VPN and click the pencil icon.

    Based on the VPN topology the corresponding edit IPsec VPN page appears.

  3. Edit the required fields and click OK.

    Follow the applicable configuration guidelines used while creating the IPsec VPN.

  4. You can also edit the tunnel settings on the device configuration page by clicking View/Edit Tunnels and modify a traffic selector by clicking Edit Traffic Selector.

View or Edit Tunnels

To view or edit a tunnel in the VPN:

  1. Click a Juniper managed device, and select the Edit Tunnel option.

  2. Edit the values as required and click OK.

Edit Traffic Selector

Starting in Junos Space Security Director Release 24.1R5, you can enhance VPN configuration flexibility for Juniper managed devices using Edit Traffic Selector option. It allows you to enable or disable traffic selectors through the GUI.

Traffic selectors are agreements between IKE peers that permit traffic through a tunnel if it matches specified local and remote address pairs. This feature provides more control over VPN configurations by allowing the definition of traffic selectors within specific route-based VPNs, enabling users to activate or deactivate them as needed.

The option to edit a traffic selector is applicable for the following Route-Based VPN types:

  • Site-to-Site VPN

  • Hub-and-Spoke (Establishment All Peers) VPN

  • Full Mesh VPN

  • Remote Access VPN—Juniper Secure Connect

  • Remote Access VPN—NCP Exclusive Client

Note: To use the Edit Traffic Selector option:

  • The selected device in a VPN must be a Juniper managed device

  • The devices must have protected networks assigned.

  • The routing topology for the device must be set to Traffic Selector

  1. Click a Juniper managed device, and select Edit Traffic Selector option.

    The Edit Traffic Selector page appears with a list of protected networks available for the Local IP and Remote IP.

  2. You can enable, disable or rename any of the traffic selectors available in the list.

  3. Click OK to save your selection.

Modify Device Selection

To view or edit the devices:

  1. Select Configure > IPsec VPN > VPNs.

    The IPsec VPNs page is displayed.

  2. Select an IPsec VPN and click the pencil icon.

    The Modify IPsec VPN page is displayed.

  3. Click View/Select Devices.
  4. Edit the device selection.
  5. Click OK.