RE: Cisco VPN Client - Stateful Firewall

From: Rosenhan, David (David.Rosenhan_at_swiftbrands.com)
Date: 02/24/04

  • Next message: Fralick, Alan: "Re: Why Security testing is required" 
    Date: Tue, 24 Feb 2004 14:44:53 -0700
To: "Omar Khawaja" <omarkhawaja@yahoo.com>, <security-basics@securityfocus.com>

    Omar,

    I used to work for Cisco on the VPN team and when the VPN client
    stateful firewall was checked it only allowed outgoing connections for
    ESP and ISAKMP traffic, basically it blocked everything but VPN traffic
    incoming and outgoing. It is a very basic firewall, mostly used for
    users that are not doing any split-tunneling and if you can't afford a
    3rd party firewall solution.

    I would suggest enabling it and then run a program called LanGuard
    against the IP address of the computer. LanGaurd has a 30 day trial
    version out there you can download, you will probably need to google it.
    From here you should be able to tell what is left open when it is
    enabled.

    Thanks!

    David Rosenhan, CCNP
    Information Technology

    -----Original Message-----
    From: Omar Khawaja [mailto:omarkhawaja@yahoo.com]
    Sent: Monday, February 23, 2004 9:01 AM
    To: security-basics@securityfocus.com
    Subject: Cisco VPN Client - Stateful Firewall

    Does anyone have any thoughts on how secure the "Stateful Firewall",
    that is
    integrated with the Cisco VPN Client, is? I was hoping someone may have
    done
    some penetration testing targeted at this particular feature of the
    product.
    ___
    Omar Khawaja

    ------------------------------------------------------------------------ 

    ---
Free trial: Astaro Security Linux -- firewall with Spam/Virus Protection
Protect your network with the comprehensive security solution that
integrates six applications for ease of use and lower TCO.
Firewall - Virus protection - Spam protection - URL blocking - VPN
- Wireless security.
Download 30-day evaluation at:
http://www.securityfocus.com/sponsor/Astaro_security-basics_040219
------------------------------------------------------------------------
----
---------------------------------------------------------------------------
----------------------------------------------------------------------------
  • Next message: Fralick, Alan: "Re: Why Security testing is required"

    Relevant Pages

    • RE: Cisco VPN Client - Stateful Firewall
      ... have the VPN client installed, when I check the statefull firewall I ... The stateful firewall feature functions independently of an IPSEC ... DHCP, which sends requests to the DHCP server out one port but receives ... Release Notes for Cisco VPN Client for Windows. ...
      (Security-Basics)
    • Found It. Cisco VPN Stateful firewall
      ... Cisco VPN client has a firewall built in. ... I had to disable the stateful firewall ) and everything worked fine. ... The homebuilt cannot see the Compaq and pings ...
      (microsoft.public.windowsxp.network_web)
    • RE: Cisco VPN Client - Stateful Firewall
      ... The stateful firewall feature functions independently of an IPSEC tunnel. ... The VPN Client includes an integrated stateful firewall that provides ...
      (Security-Basics)
    • Re: Computer does not respond to ping on network
      ... the stateful firewall seemed to ... the Cisco VPN client is installed. ... I will try uninstalling the ...
      (microsoft.public.windowsxp.network_web)
    • Re: Cisco VPN
      ... I had also found a setting called 'Stateful Firewall (Always ... When I unchecked this option I was able to gain access as well. ... > opens, go to the Transport tab and check Allow Local LAN Access. ... >> My company uses the Cisco VPN client for access to corporate information ...
      (microsoft.public.pocketpc)