3-party VPN client connecting to ASA

Answered Question
Apr 7th, 2010

Hi All,

There are some users allowed to connect via VPN using the Cisco VPN client.

We've seen some users connecting with different clients for example:  http://www.shrew.net/download/vpn

I just tried it myself.

Just download the client, import the PCF and connect to the ASA.

The question is...

The only way to prevent the VPN users from connecting with any client besides the Cisco VPN client is by setting the client-type allowed for VPN on the ASA?

The fact that anybody with a VPN profile can use another client to connect does not impose any security risks?

Federico.

Correct Answer by Jennifer Halim about 6 years 10 months ago

Shouldn't be a problem as it will use the same IPSEC protocols to encrypt/decrypt the packet. One possiblity is if it doesn't comply 100% with the standard, it can could potentially cause adverse behaviour on the ASA.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Federico Coto F... Thu, 04/08/2010 - 06:54

Thank you, I can do that...

Do you think there's any security risk involved in using another VPN client (besides the Cisco client) to connect to the ASA?

It uses the same IPsec protocols, but it's an open source VPN program.

Federico.

Correct Answer
Jennifer Halim Thu, 04/08/2010 - 20:28

Shouldn't be a problem as it will use the same IPSEC protocols to encrypt/decrypt the packet. One possiblity is if it doesn't comply 100% with the standard, it can could potentially cause adverse behaviour on the ASA.

Actions

This Discussion