On 12/01/2010 05:03 PM, Michael Madigan wrote: > I know if one of our workstations connects to a VPN site (in this case a > hospital), when they are connected they are controlled by the hospital's > rules as to which websites you can connect to. This is using the CISCO > software VPN client. I was wondering if it redirects HTTP to run through the > tunnel.
I don't think port 80 has anything to do with VPN or VNC, especially if you're using Cisco's VPN client software on a remote computer to connect to a Cisco VPN gateway router. Once connected, the remote user become just another node in the local network. #------------------------------- Excerpt: Host-to-Network The host-to-network scenario occurs when remote users connect to the corporate network over the Internet. The mobile client first establishes Internet connectivity and then initiates a request for an encrypted tunnel establishment with the corporate VPN gateway. Once the authentication is done, the tunnel is established over a public network and the client becomes just another machine on the internal network. The growing practice of employees working from home is stimulating an increase in this type of VPN connectivity. As opposed to the network-to-network situation, where the number of VPN participants is limited and is more or less predictable, a host-to-network VPN can easily grow beyond the controllable boundaries. Therefore, system administrators must prepare a scalable mechanism for client authentication and a key management system. http://e-articles.info/e/a/title/VPN-Topologies-Review:-The-Wireless-Perspective/ #--------------------------- Regards, LelandJ > Our goal is to shut off web surfing to everyonem but our collectors need to > use a web browser to connect to the client's sites via CISCO VPN Client. > > I can't test it remotely or else I'll shut myself off from the router web > interface. > > > > > --- On Wed, 12/1/10, Tracy Pearson<[email protected]> wrote: > >> From: Tracy Pearson<[email protected]> >> Subject: RE: [NF] Turning off port 80 >> To: [email protected] >> Date: Wednesday, December 1, 2010, 5:46 PM >> Michael Madigan wrote on 2010-12-01: >> >>> If I have VPN set up between offices and I turn off >> Port 80 on the >>> router to the outside world but leave the VPN tunnel >> alone, I should >>> still be able to use HTTP to the VPN site, correct? >>> >> Michael, >> >> HTTP is port 80, if you shut that off, it's all off. >> Linux has IPTABLES. I've never used them myself. >> Routers sometimes allow a list of sites someone can reach. >> Depends on the >> router it's either a block list or a toggle of one type of >> the other. >> >> HTTPS is port 81, which might be what you're thinking >> about. >> >> Tracy Pearson >> PowerChurch Software >> >> >> >> [excessive quoting removed by server] _______________________________________________ Post Messages to: [email protected] Subscription Maintenance: http://leafe.com/mailman/listinfo/profox OT-free version of this list: http://leafe.com/mailman/listinfo/profoxtech Searchable Archive: http://leafe.com/archives/search/profox This message: http://leafe.com/archives/byMID/profox/[email protected] ** All postings, unless explicitly stated otherwise, are the opinions of the author, and do not constitute legal or medical advice. This statement is added to the messages for those lawyers who are too stupid to see the obvious.
