[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Firewall-1 Secure Remote

To: Michael Nowacki <Michael@internetcsi.net>
Subject: RE: Firewall-1 Secure Remote
From: Aaron C. Springer <a.conrad@ix.netcom.com>
Date: Mon, 08 May 2000 11:09:47 -0700 (PDT)
Cc: Firewalls@Lists.GNAC.NET, Andreas Stylianou <andreass@zenon.logos.cy.net>, Richard Noonan <rnoonan@nda.com>

depends on the tunnel...

compatible systems (now cisco) has a client that can handle NAT by tunneling
ipsec inside http.

I use it on a debian machine behind an openbsd nat/ipfilter firewall.. works
great..

acs

On 08-May-00 Michael Nowacki wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> It is possible to run a VPN connection through NAT.  However, it
> requires a GRE tunnel for the VPN tunnel to run through...  which of
> course brings up other issues.
> 
> Mike Nowacki, CISSP
> 
> - -----Original Message-----
> From: Richard Noonan [mailto:rnoonan@nda.com]
> Sent: Monday, April 24, 2000 10:32 AM
> To: Andreas Stylianou
> Cc: Firewalls@Lists.GNAC.NET
> Subject: Re: Firewall-1 Secure Remote
> 
> 
> If you're running NAT (which, I believe, is the primary feature of MS
> Proxy), you can't use Secure Remote VPN. 
> 
> -----BEGIN PGP SIGNATURE-----
> Version: PGP 6.5.3
> Comment: Internet Commerce Solutions Inc.
> 
> iQA/AwUBORbLkK0Unx3HNXmCEQKHIwCePzmljeaMzlCe28BsDBJZM0XQJFUAoLwU
> whGxl/EsBRGbeXnKWtKTuPY2
> =IdCX
> -----END PGP SIGNATURE-----
> -
> [To unsubscribe, send mail to majordomo@lists.gnac.net with
> "unsubscribe firewalls" in the body of the message.]


_______________________
Aaron C. Springer
a.conrad@ix.netcom.com
pgp key published
_______________________
-
[To unsubscribe, send mail to majordomo@lists.gnac.net with
"unsubscribe firewalls" in the body of the message.]

Prev by Date: Re: Off-Topic: Data Recovery Companies Recommendations?
Next by Date: FHC port 1499 UDP
Prev by thread: RE: Firewall-1 Secure Remote
Next by thread: RE: Load Balancing / Gauntlet Question
Index(es):
- Date
- Thread