Creating a New Virtual SystemYou can logically partition a single Juniper Networks security system into multiple virtual systems to provide multi-tenant services. Each virtual system (vsys) is a unique security domain and can have its own virtual system administrators (vsys admins) who can individualize their security domain by setting their own address books, user lists, custom services, VPNs, and access policies (although only a root-level administrator can set firewall security options, create virtual system administrators, and define interfaces and sub-interfaces).
Virtual systems support two kinds of traffic classifications: VLAN-based and IP-based, both of which can function exclusively or concurrently.
The Vsys table lists all virtual systems configured on the security device and the following information about each one:
ID: (Read-only) Indicates the identification number of the virtual system.
Name: Indicates the name of the virtual system.
IP Classification: If you configured the system for IP-based traffic classification, this field displays the zone and the IP address/netmask for a subnet or the range of IP addresses associated with the virtual system. To configure IP-based traffic classification, see IP Classification.
Policies: Indicates the number of policies configured in the virtual system.
VPN Tunnels (auto/manual): Indicates the number of AutoKey IKE and Manual Key VPN tunnels are configured in the virtual system.
Configure: Click Enter to enter the virtual system. Click Edit to modify the password of the vsys admin or create or modify a vsys admin with read-only privileges. Click Remove to delete the virtual system. When you are in a virtual system, click Exit to exit the virtual system.
Creating a New Virtual SystemTo create a new virtual system, click New. For more information about creating a vsys, see Vsys Configuration.
Click Exit to exit a virtual system.