Faced some kind of strange problem when setting up VPN tunnle between cisco routers & Juniper ISG firewall.
Problem what we faced is , VPN tunnel came up in phase-1 & phase-2 also and we were able to to icmp & telnet test as well.
however when users came on work they faced frequent disconnection..i mean first webpage used to open & next no....or in other applictions first sessions used to go through but next not..since i was not on battel field i dont know exact logs which showing status in terms of connection.
But when investigated what i found is PFS in Cisco router was disable & where as in Juniper it was enabled at with Group-1.
I feel issue could have happen due to PFS only...can someone please help me to know if that is the reason? (Verfied MSS erros but didnt see those).