[VPN] Appliances that support VPN passthru?
Scott Nursten
scottn at s2s.ltd.uk
Wed Jun 25 05:59:09 EDT 2003
Hi all,
Yeah, PIXes do this fine. They also support NAT traversal on the server
side, which allows you to terminate multiple clients behind firewalls. This
is often helpful if your PIX terminates peer tunnels but you need to
initiate a client->server tunnel to a disparate location.
Regards,
Scott
On 24/6/03 20:15, "support at tradescan.cc" wrote:
> Not all will allow that. We had a WatchGuard SOHO in the office that would
> only allow 1 VPN client to passthru, we would have had to buy a license pack
> to allow more than one.
>
> John Guynn
>
> ----- Original Message -----
> From: "Chris Flory" <c.flory at attbi.com>
> To: <support at tradescan.cc>
> Sent: Tuesday, June 24, 2003 2:13 PM
> Subject: Re: [VPN] Appliances that support VPN passthru?
>
>
>> Any firewall should allow you to do that, you will just need to open up
> UDP
>> port 500 (IKE) and protocol 50 (ESP). Now if it is a PAT firewall (which
> is
>> most likely the case, unless you are doing statics), you may want to
>> consider a client that can do NAT transparency and use either TCP or UDP
> to
>> encapsulate the IPSec packets (protocol 50) or whichever protocol you
>> choose.
>
>
> _______________________________________________
> VPN mailing list
> VPN at lists.shmoo.com
> http://lists.shmoo.com/mailman/listinfo/vpn
More information about the VPN
mailing list