I-BLOG

Got a question on this one in my comments page and hence thought of putting it together. Say there is a PPTP server residing on the trust side of your NS firewall (applicable to all/most of the NS firewalls running Screen OS). For simplicity, assuming that the device is in ... Continue Reading

  Our team just started working on technology involving MPLS and stuff, so we were talking about MPLS networks, then came a question as to why do we always see loopback addresses in examples and is it like a strict requirement? We couldn’t find a solid answer or answers, ... Continue Reading

    It is advisable to use the Netscreen-Remote that comes as the vpn client, however if one has to use XP client for connecting to a Juniper Firewall, here is how to do; This example talks about L2TP over IPSEC { GO } ... Continue Reading

  Found out today that Cisco has a configuration guide for VPN between PIX firewall to a Juniper Netscreen Firewall {Click to Go} ... Continue Reading

Its been quite some time I'm wanting to post such a configuration. I helped with one such question in Experts-Exchange and sought permission from the author to post the working configuration once the VPN was up and running. Below would be the configuration of working SSG-PIX VPN with the consent ... Continue Reading

There have been so many questions about how to configure split-tunneling on PIX. So right to the point; Internal Network :: 10.0.4.0/24 VPN Pool :: 10.1.4.0/24 Config goes here; access-list nonat permit ip 10.0.4.0 255.255.255.0 10.1.4.0 255.255.255.00 access-list split permit ip 10.0.4.0 255.255.255.0 10.1.4.0 255.255.255.0 nat(inside) 0 access-list nonat vpngroup ... Continue Reading

One of the amazing functionality of Juniper firewalls are the CLI easiness of creating and maintaining configurations, one such impressive example is VPN Configuration; Say, we have 2 working Juniper firewalls and if we want to configure site to site vpn tunnels, then it would be as simple as 3 ... Continue Reading

In the VPN configuration this seems to be a host discussion; so here we go There are 2 options of internet traffic for the VPN users; Split-Tunneling enabled :: This means all the corporate traffic goes through the vpn tunnel and all the internet (local browsing etc) goes through ... Continue Reading

To allow split-tunnel feature while connected through Windows VPN, you can enable or disable to have all the internet traffic go through VPN. Security measures is your choice. How to do it ? Onthe client machine go : control panel | network connections | right click on the VPN/virtual adapter and choose properties ... Continue Reading

I thought I will put this info on this here, so that everytime I answer a question, don't have to type it all and just link to here; Basically one of the biggest problems encountered with ExchangeServer and Outlook client when they are connected over a IPSec VPN, it doesn't work ... Continue Reading