12-10-2003 12:36 PM
Question of convenience: is it fairly safe to permit outbound ports 500, 50 and 10000 to any outside address for VPN connections without compromising security?
Tired of setting up inside-to-outside statics on my firewall for every VPN session that requires ESP and GRE in our NAT environment.
12-21-2003 10:17 PM
I guess this is not safe;
01-12-2004 08:44 AM
Interesting question with no simple answer. What is deemed "safe" or "not safe" is directly dependant on your company's security policy.
Mike
01-12-2004 09:25 AM
I would definitly say no ... Having someone on your internal network that has VPN access (that you may or maynot know of) to anywhere on the internet that you have no control of what traffic they are passing is in no way "secure" IMHO
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide