I dont do much security work so I am very weak on the PIX. Is there anyone out there with a cut and paste config for using the vpn client to connect to a 501 pix with 3des ?? I want the outside interface to get a dhcp address, and I want the client to be handed a local address from a pool on the local lan of the pix. I have read the doc's and cannot make the jump from IOS to PIX :) Any help would be greatly appreciated.
If the outside interface of the PIX gets a DHCP address, how is your client going to know which address to connect to? You'll need to talk with your ISP and make sure they always give you the same address.
Thanks I will look over the paper. Even with a dhcp address it is very easy to work around. There is a service running on a server inside the firewall that updates a dynamic DNS database on the internet so each site can get there own domain or sub-domain, and then you just register it with a dynamic dns database, works great and saves paying for the static IP which is not available in all areas, depending on ISP.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...