Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Firewalls
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Fwd: Cisco 3030

from [Mark Lewis] Network Security [Permanent Link]
Subject: Fwd: Cisco 3030
Date: Wed, 28 Dec 2005 17:12:36 +0000 
Hi,


I wonder if the Cisco 3030 vpn concentrator offers a good
endpoint security on IPSec or WebSSL client side ?
(can we enforce a security policy like "don't open the tunnel if the personal 
firewall is off")


Yep, you can enforce policies such as firewall policies on VPN clients using 
the Cisco VPN 3000.

For IPsec remote access VPNs, you can enforce firewall policies under the 
'Client FW' tab. See:

http://www.cisco.com/en/US/products/hw/vpndevc/ps2284/products_configuration_guide_chapter09186a00803ee1f0.html#wp2199987


For SSL remote access VPNs, you can use the Cisco Secure Desktop. See:

http://www.cisco.com/en/US/products/ps6742/products_configuration_guide_chapter09186a0080577b62.html#wp1041425


It works pretty well for both IPsec and SSL remote access VPNs, in my 
experience.

Hope that helps,

Mark



CCIE#6280 / CCSI#21051 / JNCIS#121 / etc.

Author:

www.ciscopress.com/title/1587051796
www.ciscopress.com/title/1587051044
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Procedure to uninstall CheckPoint NG (R56), seaktf (sent by Nabble.com)
Next by Date:  RE: Cisco 3030, Bourque Daniel
Previous by Thread:  Cisco 3030, gilles . lami
Next by Thread:  RE: Cisco 3030, Bourque Daniel
Indexes:  [Date] [Thread] [Top] [All Lists]