Tom's Hardware > Forum > General Networking > Firewall > Sonicwall firewall blocking isakamp of competing product's..

Sonicwall firewall blocking isakamp of competing product's..

Forum General Networking : Firewall - Sonicwall firewall blocking isakamp of competing product's..

Tom's Hardware: Over 1.4 million members in 6 different countries available to answer all your high-tech questions. Sign up now! Its free!
Ask the community Add a reply
Word :    Username :           
 
Anonymous   06-10-2004 at 03:10:16 AM

Archived from groups: comp.security.firewalls (More info?)

 

Lots of our users can connect to our Astaro VPN gateway ("gateway" )
from workstations that are located behind firewalls that perform PAT.
We are using SSH's Sentinel VPN client, using isakamp/IPSEC.

There is one user who can successfully connect from her laptop when at
home where she has a consumer grade firewall. When she is at work,
however, where she is behind a SonicWall firewall, she cannot connect
to our gateway.

I looked at the traffic that arrives at the gateway when a VPN is
initiated, by running tcpdump on the Astaro VPN gateway, and found
that there is absolutely no traffic arriving at the gateway when she
tries to establish a VPN from behind the SonicWall firewall!

Is this a known problem ("feature" ) of the SonicWall?
Could it be that SonicWall filters out isakamp packets?

Thanks,
--Ulf

Add a reply
Sponsored Links
Register or log in to remove.
Anonymous   06-11-2004 at 09:59:12 AM
- 0 +

Archived from groups: comp.security.firewalls (More info?)

 

"arabub" <arabub@yahoo.com> wrote in message
news:a714a1f2.0406092010.72f8af67@posting.google.com...
> Lots of our users can connect to our Astaro VPN gateway ("gateway" )
> from workstations that are located behind firewalls that perform PAT.
> We are using SSH's Sentinel VPN client, using isakamp/IPSEC.
>
> There is one user who can successfully connect from her laptop when at
> home where she has a consumer grade firewall. When she is at work,
> however, where she is behind a SonicWall firewall, she cannot connect
> to our gateway.
>
> I looked at the traffic that arrives at the gateway when a VPN is
> initiated, by running tcpdump on the Astaro VPN gateway, and found
> that there is absolutely no traffic arriving at the gateway when she
> tries to establish a VPN from behind the SonicWall firewall!
>
> Is this a known problem ("feature" ) of the SonicWall?
> Could it be that SonicWall filters out isakamp packets?
>
> Thanks,
> --Ulf

I believe the SonicWALL firewall is configured (by default) to block UDP
port 500. To add it to the policy should be rather easy as it's
predefined as 'Key Exchange (IKE)'.

--
Best regards, from Don Kelloway of Commodon Communications
Visit http://www.commodon.com to learn about the "Threats to Your
Security on the Internet".

Reply to Anonymous
Ask the community Add a reply
Tom's Hardware > Forum > General Networking > Firewall > Sonicwall firewall blocking isakamp of competing product's..
Go to:

There are 1288 identified and unidentified users. To see the list of identified users, Click here.

Forum map
Bestofmedia Forum ©
2000-2009 Bestofmedia Group
Page generated in 0.647 seconds
Please mind

You are about to answer a thread that has been inactive for more than 6 months.
If you still wish to proceed, please ensure that your posting is original and does not duplicate or overlap any prior responses to this thread.

Add a reply Cancel
Sponsored links
  • Ask the community now
  • Publish
Ad
Related Topics
See all relatives topics
They won a badge
Join us in greeting them