Re: BEFSX41 VPN
From: Walter Roberson (roberson_at_ibd.nrc-cnrc.gc.ca)
Date: 05/10/05
- Next message: Buffalo: "Comcast Security Manager"
- Previous message: neilSanner: "Re: Is a cheap router secure enough for small business"
- In reply to: Walter Roberson: "Re: BEFSX41 VPN"
- Next in thread: Leythos: "Re: BEFSX41 VPN"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 10 May 2005 15:57:59 GMT
In article <d5ou0t$c5r$1@canopus.cc.umanitoba.ca>,
Walter Roberson <roberson@ibd.nrc-cnrc.gc.ca> wrote:
:I've been hearing some murmers that the BEFSX41 has firmware issues
:that aren't getting resolved
:My own experience is that a BEFSX41 link will freeze a TCP connection
:once to twice a day...
:IMHO, spend the extra money and get the BEFVP41 -- faster, 70 tunnels
:instead of 2, and hasn't dropped a single connection on me yet.
It figures. Within a day of writing that, my BEFVP41 froze two
connections within a few minutes of each other [leaving
the other connections alone.]
I see from my PIX [VPN endpoint] logs that the SA
(Security Association) just suddenly gets deleted with no reason given;
the BEFVP41 end point might not be completely aware of it as it
sends a couple of packets that the PIX rejects has having the old
[no longer valid] SPI. That happens in the same one second interval
as the teardown, so I could be projecting too much into those stray
packets.
With the evidence I have now, it is not certain as to whether the
BEF{SX,VP}41 are at fault or the PIX. I never saw such a problem
when I was using a PIX 501 from the same location, but there's
always bit-rot to consider.
-- I was very young in those days, but I was also rather dim. -- Christopher Priest
- Next message: Buffalo: "Comcast Security Manager"
- Previous message: neilSanner: "Re: Is a cheap router secure enough for small business"
- In reply to: Walter Roberson: "Re: BEFSX41 VPN"
- Next in thread: Leythos: "Re: BEFSX41 VPN"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
