From rhorst at computrain.nl Fri Sep 2 07:02:06 2005 From: rhorst at computrain.nl (Raymond van der Horst) Date: Fri, 2 Sep 2005 13:02:06 +0200 Subject: [VPN] Netscreen with ISA2004 Message-ID: An HTML attachment was scrubbed... URL: http://lists.shmoo.com/pipermail/vpn/attachments/20050902/a1d3a5bb/attachment.htm From Mlittle at BHSI.com Thu Sep 8 14:14:13 2005 From: Mlittle at BHSI.com (Little, Mike (BHS)) Date: Thu, 8 Sep 2005 14:14:13 -0400 Subject: [VPN] General VPN support question. Message-ID: <4DE49D5A1D83D7119AA1000BCD4AD0462EF981DD@ntbhi10.bhi.bhsi.com> All, I enjoy all of the technical guidance that this group provides, however I have a vpn related question that falls in the area of general management that I am looking for some opinions on. I'm wondering at what point a company should assign someone to full vpn administrative duties. That is, I manage our VPN and RAS servers along with a myriad of other projects and day to day network administration. Needless to say, I'm not getting the time that I think needs to be given to properly manage remote access. We are a company of approximately 20,000 employees and 10,000 users. I have hundreds of vpn client accounts to manage along with 20 peer-to-peer connections. We are in the healthcare industry and remote access is critical and has to remain as secure as possible. I want to dedicate more time to it but I'm not being given that opportunity. I just keep getting other tasks and projects handed to me. I'm looking for opinions from others in similar situations and possible guidelines, if they exist, that I can use to convince my administration that this is important enough to require a full time administrator to manage properly. I'm wondering what other companies are doing and whether my gripes and concerns are justified. Any suggestions would be greatly appreciated. Thanks, Mike ----------------------------------------- This email, facsimile, or letter and any files or attachments transmitted with it contains information that is confidential and proprietary. This information is intended only for the use of the individual(s) and entity(ies) to whom it is addressed. If you are the intended recipient, further disclosures are prohibited without proper authorization. If you are not the intended recipient, any disclosure, copying, printing, or use of this information is strictly prohibited and possibly a violation of federal or state law. If you have received this information in error, please notify Baptist Healthcare System, Inc. immediately at 502-896-3020 or via email to the sender. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.shmoo.com/pipermail/vpn/attachments/20050908/32bb8de5/attachment.htm From alaadalghan at hotmail.com Wed Sep 14 16:38:37 2005 From: alaadalghan at hotmail.com (Alaa Dalghan) Date: Wed, 14 Sep 2005 20:38:37 +0000 Subject: [VPN] VPN server over windows XP Message-ID: hello everyone, I am trying to setup a windows xp machine as a vpn server that accepts multiple ipsec tunnels from other windows xp machines. My restrictions are the following: 1- I need to set the vpn server on windows XP (not windows 2000 server, nor 2003, nor ISA server, etc.) 2- I need to use tunnel mode ipsec 3- The vpn server should accept MULTIPLE vpn tunnels. The first problem I faced is that windows xp does not support ipsec tunnel mode between 2 xp machines. It only supports transport mode which is not what I want. To overcome this lack of IP tunneling I tried to use the built-in tunneling capabilities such as PPTP and L2TP/ipsec, and it worked. But the problem here is that a windows xp can not accept more than ONE SINGLE incoming connection at a time, and I need multiple connections. I think the solution could be one of the following: 1-Installing a third party FREE vpn server (or L2TP server) on windows XP. If you know one please tell me. 2-Importing some features from windows 2000 server or 2003 server (some executables or services or plugins that enable xp to run as a vpn server and accept multiple connections). If you know what to import please tell me. 3- Installing a pure IP tunneling solution on windows xp so that it can be combined with ipsec encryption to yield tunnel mode encryption. I appreciate any help, Alaadin _________________________________________________________________ Express yourself instantly with MSN Messenger! Download today - it's FREE! http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/