Stateful Firewall- Windows XP Firewall vs. Cisco VPN client Stateful Firewall
Posted on 2006-06-14
Is the Windows Firewall a sufficient replacement for the Cisco VPN v4.6x Stateful Firewall (Always On) feature?
For our WinXP clients, in the past, we enabled the Cisco VPN Stateful Firewall whenever the client came up not connected to our internal network (a utility we created checked to see if it was on the inside at Windows Startup).
With WinXP SP2 and its firewall, is there any reason to maintain this Cisco VPN client’s Stateful Firewall enabled? Note that the Cisco SF enabled packet filtering whether or not the client is connected through VPN – so if they were at home, but not VPN’d into our network it still did its thing.
I read that the Windows XP firewall also does Stateful Packet filtering. Is this true? Can we safely turn off our Cisco SF?