[fw-wiz] sysopt connection permit-ipsec a n d acl's?

From: Meindert Uitman (meindert.uitman_at_avic.nl)
Date: 05/19/03

Next message: Steve Lunn: "RE: [fw-wiz] Custom Unix server installations -- to harden extens ively ?"

Previous message: Noonan, Wesley: "RE: [fw-wiz] PIX FW 515 (6.3) VPN w/ Nortel Contivity 2700"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: <firewall-wizards@honor.icsalabs.com>
Date: Mon, 19 May 2003 11:32:31 +0200

Hello,
I'm connecting vpn client 3.5 to a pix 515. all seems to run ok, but to be
able to ping inside hostst, i must include icmp permit rule. i thought that
'sysopt connection permit-ipsec' implicitly permitted all ipsec traffic? (of
course there is an acl to ommit nat)
It seems that TS application does work.

Regards, meindert.

_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Next message: Steve Lunn: "RE: [fw-wiz] Custom Unix server installations -- to harden extens ively ?"

Previous message: Noonan, Wesley: "RE: [fw-wiz] PIX FW 515 (6.3) VPN w/ Nortel Contivity 2700"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

www.derkeiler.com > Mailing-Lists > Firewall-Wizards > 2003-05