Re: iptables and Free S/Wan working together
Date: Wed, 17 Sep 2003 23:26:36 +0200
Mairhtin O'Feannag <firstname.lastname@example.org> wrote:
> I recently read an article in Linux Journal that stated, essentially,
> that IPTABLES and Free S/Wan will not work together, in that the
> implementation of IPSec that occurs in Free S/Wan "breaks" the packet
> filtering that
> occurs at the kernel level. Is this true?
Not sure what they mean by this.
> Is there a way to have one machine be both my firewall and my VPN
> "server" ???
Yes, this is possible. It is even often advisable to do it
this way especially with NAT-routers because then there is
no need to forward VPN traffic over the NAT-router to the
VPN gateway. Since this can sometimes be hairy depending
on the used VPN technology.
> Also, are there any Windows VPN clients that work with Free S/Wan???
»When pings go wrong (It hurts me too)« E.Clapton/E.James/P.Tscharn
- Re: how to secure VPN to a SQL server?
... talking about is done post VPN after decryption by the VPN server on the IP ... addresses that your RRAS assigns to them via DHCP or pool and Remote Access ... only configure the default Remote Access Policy with the filtering you want ...
- Re: UTM that inspects VPN traffic for viruses?
... devices that can inspect VPN traffic that you know of? ... If a device can decrypt the traffic on the way between the 2 ... So content filtering can only take place after decryption by one ... filter behind the gateway or sometimes integrated into the gateway. ...
- Re: Security over VPN
... If you are using the W2K server as the vpn server, ... kerberos machine authentication in the forest or ipsec filtering to limit access to ...
- Re: How to restrict clients on VPN
... traffic from a "public" ip address while remote access policy ip filtering ... > firewall/packet filtering rule to control access to your vpn server. ... > similar in rras via remote access policies where you could edit the ...
- RE: Remote Desktop thru VPN and Network Security
... If you are using IPSec VPN, virtually all resources will be available unless ... additional security measures are put in place e.g. perimeter firewall ... access, IPSec filtering, etc. ... > security reasons we currently allow our notebook users access through VPN. ...