Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
hi forum,I'm using pair of Juniper SSG550 to form a site-to-site IPSEC tunnel.both SSGs are behind Cisco 2801 routers,acting as a main ISP gateways for the Juniper boxes.now, during recent penetration tests I found that both Cisco gear is vulnerable ...
well.I did the lab and found that CBAC won't stop IPSEC, it will pass it without any problems, but found that CBAC won't prevent againstSYN flood at all my small test lab was pair of 2801,running IOS 12.4 [adventerprisek9], one juniper ns50 and juni...
hi,thanks for the reply. in fact, I'm not looking into IPSEC inspection at all.my concern is just whether the CBAC - with no inbound/outbound ACLs - will transparently allow IPSEC originating on the Juniper boxes and willpass them thru to create the ...
