Netscreen Issue

Christopher Gripp cgripp at AXCELERANT.COM
Wed May 2 18:02:16 EDT 2001


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

There is a limitation in the Netscreens that will not allow you to
add more than 16 networks into a network group.  We have certain
instances where the subnets are not contiguous and can not be
supernetted efficiently.  In the past we simply created 2 or more
address groups and then a distinct policy for each group.  Each
policy however referenced the same IKE Gateway.  In the NEW code the
NS will not let you reference the same IKE GW in 2 different
policies. 

Anyone have a workaround?


Christopher S. Gripp
Systems Engineer
Axcelerant
Connecting Everyone In Your Business World
Visit us @ http://www.axcelerant.com 

-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com>

iQA/AwUBOvCDImLRPLnfp/zREQJBMgCfXEO64f16Bnr5wZXd5rxFtbGTBfMAmwWm
xeOyH42ehQeLODsxiz5P153h
=Sw8B
-----END PGP SIGNATURE-----

VPN is sponsored by SecurityFocus.COM




More information about the VPN mailing list