VPN's (fwd)

Neil Ratzlaff neil.ratzlaff at UCOP.EDU
Tue Feb 22 17:03:09 EST 2000


You can't evaluate encrypted packets.  A common solution is to put the VPN
endpoint on a DMZ (or the firewall itself) so that the firewall can see the
decrypted packets.  If you are really careful, then you re-encrypt them and
send them on.
Neil

At 15:30 02/22/00 -0500, MARC A KURTZ wrote:
>Has anyone ever come up with a solution for this problem ( in particular
>from windows to linux )?
>
>i.e. How can we authenticate that the data going over the encrypted tunnel
>is legitimate?

VPN is sponsored by SecurityFocus.COM




More information about the VPN mailing list