Firewall Wizards mailing list archives

RE: ISA to PIX VPN connection

From: "Noonan, Wesley" <Wesley_Noonan () bmc com>
Date: Wed, 12 Feb 2003 23:42:03 -0600

That is what we are doing for the time being, passing PPTP through the PIX
(they were doing this pre-firewall anyway, yes I know it is bad). I found
out they have 24/7 support on the PIX so I went ahead and opened a TAC case
for it. I'm going to check the ICSA website and will post whatever Cisco
gives me when I get it (assuming I can).

Thanks for the help.

Wes Noonan, MCSE/CCNA/CCDA/NNCSS/Security+
Senior QA Rep.
BMC Software, Inc.
(713) 918-2412
wnoonan () bmc com
http://www.bmc.com

-----Original Message-----
From: H. Morrow Long [mailto:morrow.long () yale edu]
Sent: Wednesday, February 12, 2003 19:28
To: Hoang, Binh P,,DMDCWEST
Cc: 'Noonan, Wesley'; firewall-wizards () honor icsalabs com
Subject: Re: [fw-wiz] ISA to PIX VPN connection

Hoang, Binh P,,DMDCWEST wrote:

If you can get the Cisco PIX to do L2TP over IPSec for site-to-site

traffic,

then yes. Otherwise, no.


Note that the CISCO PIX can do PPTP as well,
although that would normally be used for remote
node PC to PIX configurations rather than
Firewall to Firewall (e.g. LAN to LAN) tunnelling.

Morrow

What PIX model do you have? Check PIX documentation for L2TP over IPSec
support.
Regards,
Binh

-----Original Message-----
From: Noonan, Wesley [mailto:Wesley_Noonan () bmc com]
Sent: Tuesday, February 11, 2003 7:01 PM
To: firewall-wizards () honor icsalabs com
Subject: [fw-wiz] ISA to PIX VPN connection


Does anyone have any references for configuring a site-to-site VPN

between

Microsoft ISA server and a Cisco PIX firewall? I have looked at Cisco's
website, but it doesn't have a good, definitive reference. I also

checked

Microsoft and... well... yeah.

I have seen the stuff about configuring IPSEC between "Microsoft" and a

PIX,

but I just don't think it is that simple with ISA in the mix.

Any help would be appreciated. Thanks.

Wes Noonan, MCSE/CCNA/CCDA/NNCSS/Security+
Senior QA Rep.
BMC Software, Inc.
(713) 918-2412
wnoonan () bmc com
http://www.bmc.com <http://www.bmc.com/>


_______________________________________________
firewall-wizards mailing list firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards


_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

ISA to PIX VPN connection Noonan, Wesley (Feb 12)
- <Possible follow-ups>
- RE: ISA to PIX VPN connection Hoang, Binh P,,DMDCWEST (Feb 12)
  - Re: ISA to PIX VPN connection H. Morrow Long (Feb 12)
- RE: ISA to PIX VPN connection Noonan, Wesley (Feb 12)
- RE: ISA to PIX VPN connection Debes, Robert L (Feb 12)
- RE: ISA to PIX VPN connection Noonan, Wesley (Feb 13)
- RE: ISA to PIX VPN connection Claussen, Ken (Feb 13)