Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Firewalls
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Help in VPN setup

from [Shane Mahon] Network Security [Permanent Link]
Subject: RE: Help in VPN setup
Date: Tue, 26 Oct 2004 21:14:04 -0500 
-----Original Message-----
From: David [mailto:dalmada@sisp.cv] 
Sent: Tuesday, October 26, 2004 12:13 PM
To: firewalls@securityfocus.com
Subject: Help in VPN setup




Hello everyone,

I pretend to setup a gateway-to-gateway VPN throug internet 
using two PIX. My question is, do I have to use more than one 
public IP address for each site? if it is possible to use one 
public address for each site, how do I route the private IP 
through the internet? The scheme should like this one:

Hostt<--->PIX<--->RouterA<--->Internet 
Cloud<--->RouterB<--->PIXB<--->HostB
 privIP   privIP       pubIP    |VPN|         pubIP       
privIP   privIP

Thanks in advance

David

SISP



You only need one public IP for each PIX.  The private traffic is tunneled
through the VPN -- it sent across the Internet in encrypted form, decrypted
at the remote end, and sent on its merry way.  You specify which traffic is
to be sent out to the Internet normally and which traffic is to be sent
across the tunnel through the use of crypto ACLs that you will define on
your PIX.

There is a good example here:

http://www.cisco.com/en/US/products/sw/secursw/ps2120/products_configuration
_guide_chapter09186a0080172795.html
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Checkpoint Backup FAQ!!!, Shai Wolkomir
Next by Date:  Re: Unique POLICY NAT requirement, Stefan Deutinger
Previous by Thread:  Help in VPN setup, David
Next by Thread:  Re: Help in VPN setup, nhai
Indexes:  [Date] [Thread] [Top] [All Lists]