You should take a look at the VPNet VPN Security advisory from last December at http://www.fatelabs.com/f8-120500-vpnet.txt for a nice scare on implementing a VPN in your network. This problem does not appear to be vendor specific after all. My advice to you: don't put all your eggs in one basket. Do NOT make the mistake of putting your whole network security in the hands of some vendor's VPN device who is just trying to make a profit. VPN Encryption seems strong enough, but be careful with VPN tunneling. Be careful, and watch www.securityfocus.com's Bugtraq, we should be releasing something big soon. Good luck.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...