RE: Using MS XP SP2 Firewall and a Cisco VPN Client

From: DJ Ho Train (DJHoTrain_at_discussions.microsoft.com)
Date: 09/16/04 

Date: Wed, 15 Sep 2004 22:11:07 -0700

Are you sure that the blocking of your local network isn't part of your VPN
solution? We use Cisco vpn clients at my work and when I use it at home, it
blocks all local network access. If you think about it, it makes sense. The
whole purpose of VPN is to provide a secure channel between your pc and your
works private network. How private of a network would it be if you were able
to vpn in, and all the while have your pc, as well as your local network,
have access to your works private network. Does disabling the Windows
firewall fix your problem? I can't imagine the firewall being the issue
because you are initiatinog the connection from your PC. Also, the Cisco vpn
client has a Stateful firewall option under the advanced mode menu. Disable
that.

"PortSaintJoe" wrote:

> I would like to explore using the Windows XP Firewall while I have a vpn
> connection established (using Cisco's VPN Client [v3.6/4.1]) to my place of
> work.
>
> While the Windows firewall is active I am able to establish the vpn
> connection however I cannot access any resources on my private network (my
> intranet at work). I do not even get dns resolution. My solution now is to
> disable the Microsoft firewall while my vpn connection to work is active.
>
> Surely this is nothing out of the ordinary. Is there a simple solution?

Relevant Pages

  • Re: Travelling laptops over VPN
    ... >>> on the user's machine within the properties of the VPN Dialup Connectiod. ... >> network administrators would want to do that to prevent the users from enabling ... when the user connects to the VPN using the Cisco ... the firewall shuts off because it sees the domain. ...
    (microsoft.public.windowsxp.work_remotely)
  • Re: Travelling laptops over VPN
    ... >>> on the user's machine within the properties of the VPN Dialup Connectiod. ... >> network administrators would want to do that to prevent the users from enabling ... when the user connects to the VPN using the Cisco ... the firewall shuts off because it sees the domain. ...
    (microsoft.public.windowsxp.security_admin)
  • Re: Using a Linksys router, should I also use Zonealarm?
    ... public internet to access corporate network. ... In the "old days" when people used to use Dial-In instead of VPN you ware ... protected by corporate Firewall -- since there was no public Internet ...
    (microsoft.public.security)
  • Re: [Full-disclosure] Remote Desktop Command Fixation Attacks
    ... This set of steps is redundant in many places, and it's also enormously expensive, since you're using no less than three different expensive bits of networking hardware (AP, PIX, VPN Concentrator), in addition to a bunch of x86 server hardware, windows server licenses, and at least one ISA license. ... Your computers necessarily don't have full access to your network infrastructure when they aren't logged on, so GPOs, software updates, etc can't be applied at the times you want them to be applied. ... Turning on, enabling, and implementing every possible security setting and device you think of is not defence in depth, and will probably only have two effects - your users won't use your wireless network, and you'll burn so much cash you won't have any left to spend on *useful* security measures. ...
    (Full-Disclosure)
  • Re: Cannot access network share
    ... the firewall locks those down by default. ... Robert Brown ... Networking, Internet, Routing, VPN Troubleshooting onhttp://www.ChicagoTech.net ... How to Setup Windows, Network, VPN & Remote Access ...
    (microsoft.public.windows.server.networking)
Quantcast