Bret,
You can provide a more detailed answer then the one give. One of the
questions that should be posed is what type of VPN type is Brian using?
VPN Software (i.e. Shim software, V-ONE, etc)
VPN Hardware(i.e. New Oak Technologies, Network Alchemy, etc)
Client software (Microsoft PPTP, Dial/IP, FW-1 SecuRemote))
What type of firewall ?
Hardware?
Software?
What VPN product is it compatible with?
IPSEC compliant
Easy to use?
Services that will be utilizing VPN tunnel (FTP, HTTP, HTTPS, Proprietary)
/cheers
/m
Technical Incursion Countermeasures <[EMAIL PROTECTED]>
Sent by: [EMAIL PROTECTED]
01/24/00 04:49 PM
To: "Brian C. E. Buhl" <[EMAIL PROTECTED]>
cc: [EMAIL PROTECTED]
Subject: Re: VPN through firewall?
Hmm well firstly try and terminate the VPN either immediatly prior to the
firewall, or preferably on its own segment of the firewall. You don't want
it to go straight through since it is a tunnel (think someone else said
that too).
If you are doing what I think you are doing (running the VPN on the same
linux box as the firewall) then it will be terminating at the firewall and
you should be able to filter it normally.
Probably didn't help since the ports you open depend on the type of VPN
you
are using.. try not to use the MS one though.. not so good..
Cheers,
Bret
At 22:55 21/01/00 -0800, you wrote:
>At the risk of exposing my raw ignorance... what ports generally need to
be
>open for VPN to pass through a firewall?
>
Technical Incursion Countermeasures
[EMAIL PROTECTED] http://www.ticm.com/
voice mail/fax: (+65)98421426(UTC+8 hrs)
The Insider - a e'zine on Computer security
http://www.ticm.com/info/insider/index.html
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
