I have run into a brick wall trying to setup an IPSEC site2site VPN with a Juniper ISG 1000 on one end and a Cisco router on the other. What makes this configuration even more complicated is that I don't have access to the other side and there is a need to SNAT on the Juniper.
To try and understand the Juniper VPN configuration I have been trying to setup a VPN tunnel between the Juniper device and my Cisco ASA sitting at my house. Here are the settings that I have in the Juniper right now:
Juniper Configuration:
ethernet 2/3 (Untrust) = 1.1.1.1/24
loopback.5 = 2.2.2.2/32, routed, admin status up
tunnel.6 = zone: untrust, unnumbered, loopback.5 (trust-vr)
Gateway (test 1) = 3.3.3.3, outgoing interface: ethernet 2/3, psk=test, local ID: 2.2.2.2
AutoKey (test) = remote gateway: test 1, bind to: tunnel.6, vpn monitor enabled
Proxy ID = source: 5.5.5.0/24, destination: 6.6.6.0/24
At this point I would expect to see phase 1 trying to attempt to make a connection to the ASA but there is nothing. This makes me beleive there is something else that I'm missing because it appears that the Juniper isn't trying to initiate the connection. It's my understanding that the VPN monitor being enabled should bring this up right away, am I wrong?
Any help would be greatly appreciated.