Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Firewall Wizards: Re: Pass-through VPN

Re: Pass-through VPN

From: Josh Welch <jwelch_at_buffalowildwings.com>
Date: Wed, 06 Oct 2004 22:24:52 -0500

Melson, Paul wrote:
>
>>-----Original Message-----
>>I think that you are referring to something like:
>>
>>sysopt connection permit-ipsec
>>
>>Which automatically allows all traffic through VPN tunnels. However,
>
> if
>
>>I understand correctly this does then limit your ability to
>>apply ACLs to VPN traffic.
>
>
> This option only affects IPSec traffic that is decrypted by the PIX, not
> traveling through it. And then, yes, it bypasses any access-list that
> would otherwise apply to said IPSec traffic.
>
> PaulM

Yeah, I misunderstood the original post.
Mea Culpa :)

Josh
_______________________________________________
firewall-wizards mailing list
firewall-wizards_at_honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Received on Oct 11 2004

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos