Re: [FW-1] Opening checkpoint fw-1 to for Cisco VPN

Jeffrey Shuron Fri, 20 Sep 2002 04:54:29 -0700

Don't forget IP protocol 50 if they are using ESP, or 51 for AH.

Jeffrey Shuron
Security Specialist- CCSA, GSEC, CCNA, MCP
MPR Technologies
315-345-3015
[EMAIL PROTECTED]
www.mprtech.com




|--------+---------------------------------------------->
|        |          Lars Troen <[EMAIL PROTECTED]> |
|        |          Sent by: Mailing list for discussion|
|        |          of Firewall-1                       |
|        |          <[EMAIL PROTECTED]|
|        |          point.com>                          |
|        |                                              |
|        |                                              |
|        |          09/20/2002 05:36 AM                 |
|        |          Please respond to Mailing list for  |
|        |          discussion of Firewall-1            |
|        |                                              |
|--------+---------------------------------------------->
  
>-----------------------------------------------------------------------------------------------------------------------|
  |                                                                                    
                                   |
  |      To:     [EMAIL PROTECTED]                          
                                   |
  |      cc:                                                                           
                                   |
  |      Subject:     Re: [FW-1] Opening checkpoint fw-1 to for Cisco VPN              
                                   |
  
>-----------------------------------------------------------------------------------------------------------------------|





udp 500 and udp 10000
 -----Original Message-----
 From: Perrymon, Josh L. [mailto:[EMAIL PROTECTED]]
 Sent: Thursday, September 19, 2002 19:19
 To: [EMAIL PROTECTED]
 Subject: [FW-1] Opening checkpoint fw-1 to for Cisco VPN

 Scenario,

 I have a consultant on my network that need to VPN to back to Dupont to
 access his LAN. ( I assigned static IP )

 He is running win2k and Cisco VPN Client....
 My understanding that VPN Client uses IPSEC tunneling.

 So it would look like this..

 Client on my LAN with Cisco VPN
 client----------------------------------------------my firewall ( FW1)
 -------------internet----------------Dupont VPN ( Cisco 3000 ) ----------
 ------------their private LAN

 Question-- in order to open access in my firewall ... what ports should I
 open?
 And is there any ideas you would like to share about this?


 Thanks,


 Josh Perrymon
 Network Security Consultant
 BE&K , INC
 (205) 972-6745

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================

Re: [FW-1] Opening checkpoint fw-1 to for Cisco VPN

Reply via email to