Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Firewalls
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Cisco VPN Client Behind Firewall

from [daniel.sullivan] Network Security [Permanent Link]
Subject: RE: Cisco VPN Client Behind Firewall
Date: Wed, 21 Dec 2005 11:10:21 -0800 
There may be some information regarding this on the Virtual Private Network 
Consortium site at http://www.vpnc.org.  There are many interoperability docs 
available there.  Not sure if this info is there, as I haven't looked for this 
specific information myself.  This is a great site and I would recommend 
browsing it.

--daniel

-----Original Message-----
From: ext Richard St John [mailto:Richard.StJohn@gbe.com]
Sent: Wednesday, December 21, 2005 5:12 AM
To: firewalls@securityfocus.com; vtlists@wyae.de
Subject: Re: Cisco VPN Client Behind Firewall


Thanks for all the information

I guess I should clarify. I have no issues passing it through my own
firewall and have done so, in our testing. Analysis of the traffic from
our VPN clients shows:

UDP 10000 {source and destination port}
UDP 500 {source and destination port}
UDP 62515
UDP 4500  {source and destination port}

The traffic is slightly different when we use iPass {3rd party
connectivity client} versus just the Cisco VPN.

The issue is when we have our personnel onsite at another company
{vendor/customer} and THEIR IT personnel want to know how to pass the
traffic through their XYZ firewall. Unfortunately, not all of the
companies we deal with have the sharpest personnel. 

I was hoping that there was a web site that I could point these people
to and say,"Here is a website that show you how you change your XYZ
firewall to allow the Cisco VPN" I have to be concerned that if I tell a
company how to modify their own security posture and they make a mistake
that my company is not liable.

RS
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Detecting/Blocking Dasher with SmartDefense, Shane B. Milburn
Next by Date:  Re: FTP/SSL through PIX, Jason Dixon
Previous by Thread:  SV: Cisco VPN Client Behind Firewall, Jan Nielsen
Next by Thread:  Re: Cisco VPN Client Behind Firewall, Volker Tanger
Indexes:  [Date] [Thread] [Top] [All Lists]