Welcome to ISAserver.org
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
UDP encapsulation
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
UDP encapsulation - 20.Apr.2005 7:08:00 PM
|
|
|
gietrp
Posts: 1
Joined: 20.Apr.2005
Status: offline
|
Hello,
According documentation, when firewall client 2004 is enabled, all outbound connections for all Winsock TCP and UDP protocols should be encapsulated.
I've noticed, that some UDP IKE(UDP:500) trafficc was not encapsulated. Then I made test, with nmap scaner, and noticed, that all TCP connections was encapsulated, but all UDP - not. Howerer UDP from nslookup (UDP:53) was encapsulated.
Anyone can comment this behaviour?
|
|
|
|
|
RE: UDP encapsulation - 26.Apr.2005 2:04:00 AM
|
|
|
tshinder
Posts: 47659
Joined: 10.Jan.2001
From: Texas
Status: offline
|
Hi G,
For IPSec VPN, disable the Firewall client.
HTH,
Tom
|
|
|
|
|
RE: UDP encapsulation - 26.Apr.2005 3:08:00 AM
|
|
|
ClintD
Posts: 1833
Joined: 26.Jan.2001
From: Keller, TX
Status: offline
|
quote:
According documentation, when firewall client 2004 is enabled, all outbound connections for all Winsock TCP and UDP protocols should be encapsulated.
I'll just append to that "except when the Firewall Client configuration explicitly exempts the process initiating traffic.
IPSec uses either SVCHOST or LSASS (can't recall for sure) to initiate it's communications and these 2 processes are listed in the Firewall Client config as "Disable=1".
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
