[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] Bypassing SecureClient security policy.
Hmm, well I tried it myself and am having issues. It seems like the VPN tunnel first gets set up with the SecureClient NIC, then almost immediately gets "undone" and set up with the other NIC, despite SecureClient not being bound to it. I see "deauthorizations" in the logs when this happens. Then, since the VPN traffic leaves the machine out the SecureClient NIC, the firewall blocks them. Did you do anything special to get this to work? --- David Phillips CISSP <[email protected]> wrote: > James > Just for kicks I tried this scenario, in fact I was > able to circumvent the > policy. > > Regards > > David Phillips CISSP MCSE > Ft Worth, TX 76112 >> http://www.shadowbiz.net > > > -----Original Message----- > From: Mailing list for discussion of Firewall-1 > [mailto:[email protected]]On > Behalf Of James > Kilton > Sent: Monday, January 28, 2002 10:25 PM > To: [email protected] > Subject: [FW-1] Bypassing SecureClient security > policy. > > > Is it possible for one to get around a SecureClient > security policy by having 2 NIC's in the machine? > For > example, if one has 2 NIC's in their machine at home > can they bind SecureClient to only one of them, > thereby preventing the security policy from being > enforced on the second? > > Thank you. > > __________________________________________________ > Do You Yahoo!? > Great stuff seeking new owners in Yahoo! Auctions! > http://auctions.yahoo.com > > ================================================= > To set vacation, Out Of Office, or away messages, > send an email to [email protected] > in the BODY of the email add: > set fw-1-mailinglist nomail > ================================================= > To unsubscribe from this mailing list, > please see the instructions at > http://www.checkpoint.com/services/mailing.html > ================================================= > If you have any questions on how to change your > subscription options, email > [email protected] > ================================================= > > ================================================= > To set vacation, Out Of Office, or away messages, > send an email to [email protected] > in the BODY of the email add: > set fw-1-mailinglist nomail > ================================================= > To unsubscribe from this mailing list, > please see the instructions at > http://www.checkpoint.com/services/mailing.html > ================================================= > If you have any questions on how to change your > subscription options, email > [email protected] > ================================================= __________________________________________________ Do You Yahoo!? Great stuff seeking new owners in Yahoo! Auctions! http://auctions.yahoo.com ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
|