Improve company productivity with a Business Account.Sign Up

x
?
Solved

Firebox VPN config--which method is most secure?

Posted on 2007-11-15
3
Medium Priority
?
322 Views
Last Modified: 2013-11-16
hi

im setting up our watchguard firebox for VPN users.

which method should i use for the best security?

sha1-hmac
md5-hamc

also

aes-256bit
3des-cbc
des-cbc

thanks
0
Comment
Question by:phrea84
  • 2
3 Comments
 
LVL 13

Expert Comment

by:hstiles
ID: 20294395
3DES-SHA1 would be the most secure.

I don't believe you can use aes from VPN clients to Firebox,it is only supported between Fireboxes running Fireware.

To be honest, the more important thing when configuring your VPN is to limit the access granted to your VPN users and don;t use the ANY rule unnecessarily.
0
 
LVL 2

Author Comment

by:phrea84
ID: 20315485
can anyone vouch for this?  agree?  disagree?
0
 
LVL 2

Accepted Solution

by:
phrea84 earned 0 total points
ID: 20379351
your answer is not right.  watchguard says its shae and aes 256.

your also wrong on the vpn clients.

MODS:  please close this ticket and refund points to me.

thanks
0

Featured Post

NEW Internet Security Report Now Available!

WatchGuard’s Threat Lab is a group of dedicated threat researchers committed to helping you stay ahead of the bad guys by providing in-depth analysis of the top security threats to your network.  Check out this quarters report on the threats that shook the industry in Q4 2017.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Wikipedia defines 'Script Kiddies' in this informal way: "In hacker culture, a script kiddie, occasionally script bunny, skiddie, script kitty, script-running juvenile (SRJ), or similar, is a derogatory term used to describe those who use scripts or…
To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Watch the video to know how one can repair corrupt Exchange OST file effortlessly and convert OST emails to MS Outlook PST file format by using Kernel for OST to PST converter tool. It can convert OST to MSG, MBOX, EML to access them. It can migrate…

588 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question