Learn how to a build a cloud-first strategyRegister Now


Need to disable ISA 2000 VPN  capabilities.

Posted on 2005-05-02
Medium Priority
Last Modified: 2013-11-16

I am not a network admin, but I need an easy way to disable VPN capabilities.
I work at a small company who had network guy experimenting with VPN capabilities but they are no longer with the company.
We just want to make sure no one has access to the network anymore.

I did a little reading on how to set up a vpn but the documentation is pretty vast.
Can I just disable some protocols/rules like IPSEC.

I don't want to mess anything else that is setup on the firewall, so I was hoping there might be an easy sure fire way to turn off VPN capabilities only.


Question by:slowjoe34

Assisted Solution

Tsuro_Hata earned 200 total points
ID: 13914015
Disabling the IPSEC protocol will effectively stop a VPN from functioning. So yes it is a good idea if you are not using the protocol for any other purpose. Other common ports used for VPN include UDP 500, L2TP, AH and ESP protocols. If there are any rules including those descriptions they should be only used for VPN.

You can also look in the Protocol Rules section with ISA Management to see if there are any rules defined for VPN access. Hopefully whoever was trying to setup ISA for VPN access included some comments (as all good admins should ;-) )

The other area to check is the publishing area to see if the person setup a particular server for termination or for remote control.

Hope this helps.... TJ

Author Comment

ID: 13944783

Thanks for the reply.

I have not had the chance to tinker with the ISA server yet.

I'll look through the protocol rules to see if we have any defined rules for VPN access like you siad. I am not sure if I am going to disable the IPSEC service just yet. Since I am not sure if it is being used for anything else. Like I said I am not a network guy and I am kind of learning on the fly.

I'll let you know how it goes.

Accepted Solution

ntpro earned 300 total points
ID: 13945373
go to >programs >administrative tools >RRAS (Routing and Remote Access)
Right click and get properties on the server name
uncheck the box allow remote connections via dial-up and ethernet
stop and restart the RRAS services

Featured Post

 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you are like regular user of computer nowadays, a good bet that your home computer is on right now, all exposed to world of Internet to be exploited by somebody you do not know and you never will. Internet security issues has been getting worse d…
To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
Look below the covers at a subform control , and the form that is inside it. Explore properties and see how easy it is to aggregate, get statistics, and synchronize results for your data. A Microsoft Access subform is used to show relevant calcul…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Suggested Courses
Course of the Month20 days, 22 hours left to enroll

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question