Junos

Deactive and active IPSec in Junos

To troubleshoot some times you need to deactive and active and see if the tunnel goes up. Good old turning it off and on again.

configure

deactivate security ike policy <IKE-POLICY>

deactivate security ipsec policy <IPSEC-POLICY>

commit confirmed 3

Command example output

{primary:node0}
jr@DC1FW01> configure
warning: Clustering enabled; using private edit
warning: uncommitted changes will be discarded on exit
Entering configuration mode

jr@DC1FW01# deactivate security ike gateway fdkl01

jr@DC1FW01# deactivate security ipsec vpn fdkl01

jr@DC1FW01# commit confirmed 3
node0:
configuration check succeeds
commit confirmed will be automatically rolled back in 3 minutes unless confirmed
node1:
commit complete

# commit confirmed will be rolled back in 3 minutes
{primary:node0}[edit]
jr@DC1FW01#

# commit confirmed will be rolled back in less than 1 minute
{primary:node0}[edit]

Broadcast Message from root@DC1FW01
        (no tty) at 10:22 CEST...

Commit was not confirmed; automatic rollback complete.


{primary:node0}[edit]
jr@DC1FW01#

Was this article helpful?

YesNo