Filter
Top Products
FW/IPSec VPN Buyer’s Guide
Copyright © 2004, Juniper Networks, Inc. 14
Supports different VPN
deployment modes:
Rule-based/Policy-based
Route-based
Dynamic Route-based (Best
Path)
Yes
Yes
Yes
Support multiple VPN
gateways to enable VPN to
persist in the event of a failure
Yes
For rule-based or policy-
based VPNs
Supports multiple tunnels,
running the same services,
between VPN gateways
Yes
Note: rule-based or policy-
based VPNs cannot do this,
only route-based and
dynamic route-based VPNs
Supports fail-over between
tunnels based on alternate
static routes defined in the
route table
Yes
For route-based VPNs, can
take up to a minute for fail-
over
Supports fail-over between
redundant tunnels using
dynamic routing
Yes
For dynamic route-based
VPNs, can take up to a
minute for fail-over
Supports fail-over between
redundant tunnels using
another mechanism
Yes, custom VPN
Path Monitor-
configurable interval
to allow fail-over in
seconds
R-associate VPN with another
tunnel without having to
renegotiate the encryption
keys
Yes, Security
Association mirroring
mechanism