I didn't mean to flame or be a troll. I was simply surprised.
Can you clarify how you have your workaround? Do you mean I would have to
statically assign the IP Addresses to my LAN clients and then enable those
protocols on the firewall? Or are you referring to the target IPs?
If I have more than one PC in the GREEN zone that needs to independently
connect to different IPSec targets, will this work???
Thanks again, as I said, I meant no offense in my previous post.
-AJ
"Gábriel Ákos" <[EMAIL PROTECTED]> wrote in message news:[EMAIL PROTECTED]
Aaron J Weber wrote:
> Is it true that IPSec pass-thru won't work properly?
no. i'm using a cisco vpn client from behind efw, and it is working
fine. you have to enable gre and esp protocols for the given ip in the
outgoing firewall rules.
> Does anyone have any (secure) workarounds, and is there any work going
> on to remedy this in a future release???
>
> Years ago this was something you had to look for in a firewall/gateway.
> Now-a-days, this seems like almost "a given", and I almost missed the
> fact that it might be missing!
and this is called flame, or better, a troll. don't feed the troll please.
>
> Please advise!
> -AJ
--
Üdvözlettel,
Gábriel Ákos
-=E-Mail :[EMAIL PROTECTED]|Web: http://www.i-logic.hu=-
-=Tel/fax:+3612367353/200 |Mobil:+36209278894 =-
-------------------------------------------------------------------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys - and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________
Efw-user mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/efw-user
