Cisco ASA

[/usr/home]

Can anyone confirm this? Can I use the VPN features of an ASA by having it behind a firewall and just forwarding port 443 to it? It wouldn't be doing any routing features apart from the VPN routing and stuff.

 

[k1pp3r]

As long as the firewall infront of the ASA is not blocking anything vpn will pass fine. I have not tried this with a more secure firewall, however Anyconnect does use 443 for SSL VPN,

 

[Fint]

TCP/443 is for the AnyConnect (SSL-based) VPN; the more traditional VPN is IPSec-based, which doesn't use TCP/443.

I would think it would work, assuming whatever device is in front of the ASA isn't munging the packets.

 

[dashpuppy]

Can anyone confirm this? Can I use the VPN features of an ASA by having it behind a firewall and just forwarding port 443 to it? It wouldn't be doing any routing features apart from the VPN routing and stuff.

You should buy a sonicwall

 

[/usr/home]

You should buy a sonicwall

Yeah.... no... I'll stay away from shitwall and stick with Cisco

 

[dashpuppy]

Yeah.... no... I'll stay away from shitwall and stick with Cisco

/usr/home/nolike/sonicwall -rm

 

[/usr/home]

/usr/home/nolike/sonicwall -rm

Actually I've only ever used on once before and that was a few years ago. I'm doing my CCNA so I'm a little biased to cisco right now

 

[SpaceHonkey]

Can anyone confirm this? Can I use the VPN features of an ASA by having it behind a firewall and just forwarding port 443 to it? It wouldn't be doing any routing features apart from the VPN routing and stuff.

Yes.

 

[infamus]

you need to allow UDP 500

 

[SpaceHonkey]

you need to allow UDP 500

Not for SSL vpn.