[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] Linksys & VPN-1
Yes. It uses udp 2946 and tcp or udp 500. This is not valid for site to site vpn's, only client vpn's (securemote/secureclient). Lars > -----Original Message----- > From: Andrea Coppini [mailto:[email protected]] > Sent: Tuesday, August 27, 2002 11:45 > To: [email protected] > Subject: Re: [FW-1] Linksys & VPN-1 > > > I would also like to know this. > > -----Original Message----- > From: Rob Patrick [mailto:[email protected]] > Sent: 27 August 2002 12:45 AM > To: [email protected] > Subject: Re: [FW-1] Linksys & VPN-1 > > > Some VPN solutions allow tunneling the IPSEC packets across > UDP or TCP. > > Cisco VPN, as one example, allows the user to tunnel IPSEC > through either > UDP or TCP packets - just set the gateway appliance with a given port > (default is 10000) and you're running with a VPN solution > that traverses > most firewalls (especially when using TCP) and carriers like > Comcast can't > block (you could tunnel out port 80 or whatever is known open). > > Does VPN-1 provide any capability to transparently tunnel IPSEC across > either TCP or UDP? > > ----- Original Message ----- > From: "Scott Friedman" <[email protected]> > To: <[email protected]> > Sent: Monday, August 26, 2002 3:31 PM > Subject: Re: [FW-1] Linksys & VPN-1 > > > > Also find out what kind of broadband connection he has. I called > > Comcast and they informed me that they are blocking VPN's on their > > cable networks for Home users (the NON-Pro version). > > > > If they are, he will be able to get the topology of the > site but won't > > be able to Key Exchange when it tries to encrypt. > > > > -----Original Message----- > > From: John Chalifoux [mailto:[email protected]] > > Sent: Monday, August 26, 2002 11:36 AM > > To: [email protected] > > Subject: Re: [FW-1] Linksys & VPN-1 > > > > > > Have your user setup his PC in a DMZ on the Linksys router and than > > try it again. I think he might be getting a port blocked by > the router > > and if he moves it to the DMZ and it works than you will > have to find > > the port > number > > being blocked and setup forwarding on the router. > > > > John > > > > -----Original Message----- > > From: Mailing list for discussion of Firewall-1 > > [mailto:[email protected]]On Behalf Of > > Stephan Dubeau > > Sent: Monday, August 26, 2002 10:00 AM > > To: [email protected] > > Subject: [FW-1] Linksys & VPN-1 > > > > HI all > > > > I got a user trying to access the office from is home. He's behind a > Linksys > > router, the router gets is valid IP from is cable > modem(ISP). The user > > computers behind the Linksys use 192.x.x.x address from the device > > DHCP. > > > > The home user also use SecureRemote to connect to the office > > FW-1/VPN-1 Firewall 4.1 SP5. The authentification process > goes find, I > > look at the > log, > > the user is log into FW...OK. User then try to browes thru different > > share on the internal network, try to start VNC to connect to is > > office > computer, > > but nothing work, no respond from the office internal network. > > > > The internal network base address is 10.1.x.x. > > > > Is there something I have to do on the FW-1 to give access to this > > user to our office internal ressource or does he need to configure > > something on is Linksys? > > > > > > Thanks > > Stephan Dubeau > > ================================================= > To set vacation, Out Of Office, or away messages, > send an email to [email protected] > in the BODY of the email add: > set fw-1-mailinglist nomail > ================================================= > To unsubscribe from this mailing list, > please see the instructions at > http://www.checkpoint.com/services/mailing.html > ================================================= > If you have any questions on how to change your > subscription options, email > [email protected] > ================================================= > > ================================================= > To set vacation, Out Of Office, or away messages, > send an email to [email protected] > in the BODY of the email add: > set fw-1-mailinglist nomail > ================================================= > To unsubscribe from this mailing list, > please see the instructions at > http://www.checkpoint.com/services/mailing.html > ================================================= > If you have any questions on how to change your > subscription options, email > [email protected] > ================================================= > ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
|