Hi Maxime, Microsoft's implementation of IPSec in Windows 2000 isn't (or doesn't appear to be) a true implementation as per the standards and therefore won't connect to a Cisco router or firewall natively. I'm not sure if MS or Cisco are to blame for this one but I've spent countless hours with both MS and Cisco engineers trying to get it working with both sides eventually blaming the other. Safenet inc. (used to be IRE) make a VPN client (around US$110 per client) that I'm happy to say works with Win2k beautifully. I can provide you some sample scripts and configs in order to help you get it going as it's a bit tricky.
Anyhow check out http://www.ire.com and see if anything there is of use and get back to me if you'd like some sample configs. Regards, Darren McKeown Senior Internetworking Engineer Relative Networks Pty Ltd When encryption is outlawed, only outlaws will have encryption! Relative Networks - "It's the way of the future!" NOTICE - This e-mail and any files transmitted with it are confidential and are only for the use of the person to whom they are addressed. If you are not the intended recipient you have received this e-mail in error and if so please reply immediately. Any use, printing, dissemination, forwarding, copying or dealing in any way whatsoever with this e-mail is strictly prohibited. Relative Networks Pty Ltd do not accept any responsibility for changes made to this message after it was sent. It is the addressee/recipients duty to virus scan, and test the information provided before loading onto any computer system or applying to a production server. Relative Networks Pty Ltd does not warrant that the information is free of a virus, defect or other kind of error. Any views expressed in this message are those of the individual sender, except where the sender specifically states them to be the views of Relative Networks Pty Ltd and has the relevant authority to do so. -----Original Message----- From: Maxime Rapaille [mailto:[EMAIL PROTECTED]] Sent: Friday, 8 March 2002 4:03 PM To: 'Security-Basics (E-mail)' Subject: VPN and Cisco +IIOP question Dear listmembers, 2 questions on this great list : (And I already made search on google.. Hopefully on the right way.) first one, Do you have any experience with VPN client (Software) compatible with the Cisco IPsec VPN? I already found the Cisco client itself, but we would like to have a panel of product, in order to make a better choice. I found Also the PGP VPN client, but not 100% sure he is compatible. Is the Windows 2000 IPsec compatible ? Any experience, link, feed-back, products info is really appreciated. Second question is concerning the IIOP protocol. Does some of you know a firewall/proxy, capable of handling this protocol ? I know Firewall just know it, but does not proxy nor analyse it (like he does for HTTP, SMTP, FTP). I read about Gauntlet Firewall, but was no more able to find a paper or precise Doc about it. Any other idea? Proposal, Links...? Thanks a lot for all positive feed-back. Have a great week-end all. Regards, Max. Maxime Rapaille Data Security Management National Bank of Belgium Mail : [EMAIL PROTECTED] Visit our website! http://www.nbb.be "DISCLAIMER: The content of this e-mail message does not constitute a commitment of the National Bank of Belgium (NBB) except where provided for in a written agreement between you and the NBB or where confirmed with a written form approved according to the internal regulations of the NBB. Besides, the statements and opinions expressed in this e-mail message are those of the author of the message and do not necessarily represent those of the NBB. The e-mail message contains proprietary information intended for the intended recipient only. If an addressing or transmission error has misdirected this e-mail, please notify the author. If you are not the intended recipient you must not use, disclose, distribute, copy, print or rely on any part of this e-mail message."
