Well, that question has 2 answers, depending on what you mean by "VPN software". If you mean a remote client connecting to a firewalled network then you do not necessarily need a "hole" in the firewall so much as a rule to authenticate and then take a "decrypt" action for remote clients attempting to access internal resources. IF you mean a remote network (another firewalled network) connecting to your network then both networks must reside in the same encryption domain so that they can encrypt and decrypt appropriately. This assume that the VPN tunnel was establish as a part of configuration on install. There is typically no "keep alive" beacon of any type required for this as there often is in remote client software. Scott Davidson Central US Systems Engineer Nokia House - Dallas 6000 Connection Drive 1:319 Irving, Texas 75039 MOB 214.632.6191 OFC 972.894.6269 scott.davidson@iprg.nokia.com www.iprg.nokia.com support.iprg.nokia.com -----Original Message----- From: owner-ipsec@lists.tislabs.com [mailto:owner-ipsec@lists.tislabs.com]On Behalf Of Nishant Mishra Sent: Saturday, November 06, 1999 5:23 AM To: ipsec@lists.tislabs.com Subject: VPN<->Firewall Hello, Can any one elaborate what interaction is required between a VPN software and Firewall? Apart from keeping holes in Firewall for VPN channels are there any interaction required ? Thanks, Nishant Mishra ===== __________________________________________________ Do You Yahoo!? Bid and sell for free at http://auctions.yahoo.com
Attachment:
smime.p7s
Description: application/pkcs7-signature