It depends on how your outbound access-list is configured. If you are allowing everything out, then you should be OK. Otherwise, you are going to have allow the protocols/ports that are used by the remote VPN. If it's Cisco, you need UDP 4500, UDP isakmp, TCP/UDP 10000, and ESP (from a quick scan of my own settings).
Bill Mayo -----Original Message----- From: Jon D [mailto:[email protected]] Sent: Monday, April 04, 2011 9:11 AM To: NT System Admin Issues Subject: VPN Connection from behind Cisco ASA Firewall? -- Anything special? I'm a firewall newb. If someone wanted to connect to a remote VPN from inside my network, is there anything I would have to do to my Cisco ASA firewall? Most things just work when it's an outbound connection, but I'm not sure if VPN connections are different? Thanks, Jon . ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
