Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
480
Views
0
Helpful
1
Replies

VPN IPSec client with always on CIC

henry.barrion
Level 1
Level 1

‎05-06-2008 01:24 PM - edited ‎02-21-2020 03:42 PM

Currently other IPSec VPN client has a secure way of protecting the host machine by doing basic FW.

Basically, the VPN client has intelligence if user is on corp network, VPN or home network (RFC 1918). It knows when to turn the FW ON or OFF.

Cisco has same kind of intelligence on the client but only when the tunnel is UP, CPP on CIC.

I would like to have the same kind of protection even when tunnel is down and have the client understand if it is on corp (tunnel is down but know it is a trusted network), VPN (tunnel is up and getting corp trusted IP) or home network (RFC 1918 - CPP/CIC in effect but tunnel is down, non-trusted network).

As much as possible I would like to see this FW functionality integrated on the VPN client or integrated CSA on VPN IPSec client with policy centrally configurable in ASA or PIX or Security Appliance.

Does Cisco have this client available instead of using a 3rd party FW client (FW, Zone Alarm, BlackICE, etc).

Thanks for reading my post and your feedback.

Labels:
0 Helpful
1 Reply 1

henry.barrion
Level 1
Level 1

‎05-06-2008 02:23 PM

Additional INFO:

This question is for CPP (Centralized Protection Policy) for CIC (Cisco Integrated Client) on ASA or PIX.

0 Helpful
Customers Also Viewed These Support Documents