You should permit ip protocols 50 and 51 ( IPSec AH and ESP ) on the
firewall.
http://www.cisco.com/cgi-bin/Support/PSP/psp_view.pl?p=Hardware:PIX&s=Softwa
re_Configuration#Software_Samples_%26_Tips
watch the word wrap
you need a CCO login to get here, but there are a lot of configuration and
tr
hehe...funny. If you could it'd be a big time security hole! Besides...it
requires 2 ports to work. I think this was the subject of the April fools
RFC this year too. Port 80 being used to run tunnels so you don't have to
bother with the network admin to get your job done. ;) I noticed that
VPN Client. [7:2865]
hehe...funny. If you could it'd be a big time security hole! Besides...it
requires 2 ports to work. I think this was the subject of the April fools
RFC this year too. Port 80 being used to run tunnels so you don't have to
bother with the network admin to get you
Depending on what you configure, you would require the first, and possible
one or both of the latter:
Protocol 50 (ESP)
Protocol 51 (AH)
Protocol 17 (UDP) Port 500 (ISAKMP)
http://www.cis.ohio-state.edu/cgi-bin/rfc/rfc1700.html
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List e
And folks get protocols and tcp/udp ports confused. It's not simply running
on another port, but a different protocol (ESP).
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""Chuck Larrieu"" wrote in message
[EMAIL
PM
To: [EMAIL PROTECTED]
Subject: Re: Cisco VPN Client..... [7:2865]
And folks get protocols and tcp/udp ports confused. It's not simply running
on another port, but a different protocol (ESP).
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED
> -Original Message-
> From: Jason Roysdon [mailto:[EMAIL PROTECTED]]
> Sent: 02 May 2001 21:18
> To: [EMAIL PROTECTED]
> Subject: Re: Cisco VPN Client. [7:2865]
>
>
> And folks get protocols and tcp/udp ports confused. It's not
> simply running
&g
7 matches
Mail list logo
