Firewall Wizards mailing list archives

Re: Decrypted VPN traffic and access lists on outside interface of PIX

From: "Patrick M. Hausen" <hausen () punkt de>
Date: Wed, 25 Aug 2004 17:00:34 +0200 (CEST)

Hello!

Is decrypted traffic from a site-to-site VPN sent back through an access 
list that is applied to the outside interface of a PIX?


If you don't have

        sysopt connection permit-ipsec

in place, yes.

HTH,

Patrick M. Hausen
Leiter Netzwerke und Sicherheit

+-----------------------------------+
|   EuroBSDCon 2004 in Karlsruhe!   |
|       29. - 31. 10. 2004          |
|   http://www.eurobsdcon2004.de/   |
+-----------------------------------+

-- 
punkt.de GmbH         Internet - Dienstleistungen - Beratung
Vorholzstr. 25        Tel. 0721 9109 -0 Fax: -100
76137 Karlsruhe       http://punkt.de
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

Decrypted VPN traffic and access lists on outside interface of PIX John Galt (Aug 25)
- Re: Decrypted VPN traffic and access lists on outside interface of PIX Patrick M. Hausen (Aug 26)
- Re: Decrypted VPN traffic and access lists on outside interface of PIX stephane nasdrovisky (Aug 26)
- <Possible follow-ups>
- RE: Decrypted VPN traffic and access lists on outside interface of PIX Melson, Paul (Aug 26)