[vpn] vpn question
Chris_Barker at westlb-systems.co.jp
Chris_Barker at westlb-systems.co.jp
Wed Jan 23 19:39:38 EST 2002
Hi,
I've been working with PIX's IPSec VPN functions for a year or so. While I'm
generally very happy with the PIX as a firewall and VPN gateway I would say that
some folks who are new to VPN & firewalls may be a bit intimidated by the
command line interface. The GUI manager (PDM) does not support VPN functions as
far as I know. OTOH if you are already comfortable with Cisco IOS on routers,
learning the PIX is not hard at all and Cisco's website has lots of usefull tips
and configuration examples which can be adapted to almost any situation.
Chris Barker
APAC Regional IT Security Officer
WestLB Systems, Tokyo Branch
|---------->
| |
|---------->
>-------------------------------------------------------------------->
| |
| |
|"Qian, Roger" <roger.qian at sholodge.com> |
| |
| |
| |
| |
|01/24/2002 08:08 AM |
| |
| |
| |
| |
| |
>-------------------------------------------------------------------->
>---------------------------------|
| |
| |
| |
| |
| |
| |
| |
| |
>---------------------------------|
To: Tina Bird <tbird at precision-guesswork.com>, sam <scure at redbulltech.com>
cc: Markwat at aol.com, vpn at securityfocus.com, (bcc: Chris
Barker/TKY/WestLB-Systems/WLB)
Subject: RE: [vpn] vpn question
Has someone used CISCO PIX firewall built-in VPN function?
Thanks.
Roger
-----Original Message-----
From: Tina Bird [mailto:tbird at precision-guesswork.com]
Sent: Wednesday, January 23, 2002 8:40 AM
To: sam
Cc: Markwat at aol.com; vpn at securityfocus.com
Subject: RE: [vpn] vpn question
I feel obliged to point out that the totally
rockin' InfoExpress solution runs on a variety
of UNIX boxes, not just Windows systems. The
server, that is; clients are available for
various Win flavors, Linux, Solaris, and sometimes
Machintoshes.
The main win in my book for their product is that
it's >not< IPsec -- which is often a problematic
set of protocols for remote access VPN users. It's
TCP-based and really easy to use inside a firewalled
or NAT'ted environment.
tbird
"I was being patient, but it took too long." -
Anya, "Buffy the Vampire Slayer"
Log Analysis: http://www.counterpane.com/log-analysis.html
VPN: http://kubarb.phsx.ukans.edu/~tbird/vpn.html
On Wed, 23 Jan 2002, sam wrote:
> Here are some thoughts...
>
> For software solution:
> InfoExpress (http://www.infoexpress.com/products/vpn/index.html) has
> software solution that sits on a dedicated Windows box and supports
> practically everything.
>
> For Hardware solution:
> I recommend the Nokia CryptoCluster series for site to site, client to
site,
> and site to 3rd party unmanaged site for its bandwidth, policy management,
> and pricing.
>
> Hope this helps. Feel free to contact me for any more information.
>
> -----Original Message-----
> From: Markwat at aol.com [mailto:Markwat at aol.com]
> Sent: Tuesday, January 22, 2002 9:07 PM
> To: vpn at securityfocus.com
> Subject: [vpn] vpn question
>
>
> I have a 5 branch company with 50 pc's throughout. Headquarters has 34,
and
> there are 4 in each of the others. We are on a Windows NT network, and our
> locations are connected by frame relay at 64 Kbps. We utilize VoIP.
>
> To save money, and give me the ability to get higher bandwidth, I would
> like to get rid of the frame relay, and switch to a VPN. I have done a lot
> of
> research, but am still confused as to whether I can simply implement
Windows
> NT (or Windows 2000) software VPN, or if I need to implement a hardware
> based
> VPN. I also am considering the possiblity of outsourcing. Can you offer me
> some advice?
>
>
> VPN is sponsored by SecurityFocus.com
>
> ---
> Incoming mail is certified Virus Free.
> Checked by AVG anti-virus system (http://www.grisoft.com).
> Version: 6.0.314 / Virus Database: 175 - Release Date: 1/11/2002
>
> ---
> Outgoing mail is certified Virus Free.
> Checked by AVG anti-virus system (http://www.grisoft.com).
> Version: 6.0.314 / Virus Database: 175 - Release Date: 1/11/2002
>
>
>
>
> VPN is sponsored by SecurityFocus.com
>
VPN is sponsored by SecurityFocus.com
VPN is sponsored by SecurityFocus.com
Diese Nachricht ist vertraulich. Sie ist ausschliesslich fuer
den im Adressfeld ausgewiesenen Adressaten bestimmt.
Sollten Sie nicht der vorgesehene Empfaenger sein, so bitten
wir um eine kurze Nachricht. Jede unbefugte Weiterleitung
oder Fertigung einer Kopie ist unzulaessig. Da wir nicht die
Echtheit oder Vollstaendigkeit der in dieser Nachricht
enthaltenen Informationen garantieren koennen, schliessen wir
die rechtliche Verbindlichkeit der vorstehenden Erklaerungen
und Aeusserungen aus. Wir verweisen in diesem Zusammenhang
auch auf die fuer die Bank geltenden Regelungen ueber die
Verbindlichkeit von Willenserklaerungen mit verpflichtendem
Inhalt, die in den bankueblichen Unterschriftenverzeichnissen
bekannt gemacht werden.
This message is confidential and may be privileged. It is
intended solely for the named addressee. If you are not the
intended recipient please inform us. Any unauthorised
dissemination, distribution or copying hereof is prohibited.
As we cannot guarantee the genuineness or completeness of
the information contained in this message, the statements
set forth above are not legally binding. In connection
therewith, we also refer to the governing regulations of
WestLB concerning signatory authority published in the
standard bank signature lists with regard to the legally
binding effect of statements made with the intent to
obligate WestLB.
VPN is sponsored by SecurityFocus.com
More information about the VPN
mailing list