Topic: Cisco VPN 3005 and E-smith firewall

[Larry Prikockis]

Has anyone successfully connected to a Cisco 3005 based VPN (ipsec) using the Cisco client on a Windows machine behind E-smith?

As I understand it, I need to permit protocols 50 & 51 through in both directions, as well as having ports 500 and 10000 open.   My experience with ipchains is pretty limited though so perhaps I'm missing something.    Or perhaps there's something else about the E-smith configuration that inherently prevents the Cisco solution from operating thru it?

any pointers would be appreciated...

thanks-
Larry Prikockis

[Larry Prikockis]

ok-- apparently, I've answered my own question.  After a bit of further digging in the archives here, I came upon the following message:

http://forums.contribs.org/index.php?topic=1855.msg6169#msg6169

This describes how to enable ipsec connections thru the e-smith firewall.  Turns out it's all that's needed to allow the Cisco VPN client to work from behind the firewall.  I'm able to connect to my Cisco 3005 at work with no problems!