Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Firewalls
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

R: PIX 501

from [edp.lists] Network Security [Permanent Link]
Subject: R: PIX 501
Date: Mon, 27 Jun 2005 14:25:09 +0200 

If the leases expire or the address change ( DHCP or obtained via PPP ) of
course the tunnel must be rebuilt and it happens automatically ( the branch
pix connect to the central office whose address is known ).

I'm using this kind of setup on some pix501 around the globe that obtain ip
address via PPP ( PPPoE ), and no problems till now.

Anyway, the cisco site is full of this kind of scenario ( a typical setup ),
look e.g.


http://www.cisco.com/en/US/products/sw/secursw/ps2308/products_configuration
_example09186a0080094680.shtml





Regards,

.FT










-----Messaggio originale-----
Da: Dave Nardoni [mailto:dnardoni@firstresponseconsulting.com] 
Inviato: venerdì 24 giugno 2005 15.54
A: firewalls@securityfocus.com
Oggetto: PIX 501

Is anyone aware of any problems with setting up site to site 
VPN's with PIX's where the sites have dynamic IP's.  Situation 
is I have to link a bunch of branch offices to main office and 
all branch offices are DSL or cable modems that have dynamic 
and do not have static IP's.  Any problems or gotcha's that 
anyone is aware of, one thing I am concerned about is when the 
lease expires will the VPN go down and come back up correctly? 
How is this handled?

Anyway thanks in advance for any comments,

David Nardoni CISSP, EnCE
dnardoni@firstresponseconsulting.com
PGP Signature: 9CE4 C240 BBC7 2945 BDD6  C97A 0E3D 2547 DB0A 104C
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Theoretical question: Can firewall detect attack which he can’t block?, Rodrigo Blanco
Next by Date:  RE: Theoretical question: Can firewall detect attack which he can't block?, Prashant Meswani
Previous by Thread:  RE: PIX 501, Brad Davenport
Next by Thread:  Re: PIX 501, Aida Lumbreras
Indexes:  [Date] [Thread] [Top] [All Lists]