Solved

Firebox VPN config--which method is most secure?

Posted on 2007-11-15
3
316 Views
Last Modified: 2013-11-16
hi

im setting up our watchguard firebox for VPN users.

which method should i use for the best security?

sha1-hmac
md5-hamc

also

aes-256bit
3des-cbc
des-cbc

thanks
0
Comment
Question by:phrea84
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 13

Expert Comment

by:hstiles
ID: 20294395
3DES-SHA1 would be the most secure.

I don't believe you can use aes from VPN clients to Firebox,it is only supported between Fireboxes running Fireware.

To be honest, the more important thing when configuring your VPN is to limit the access granted to your VPN users and don;t use the ANY rule unnecessarily.
0
 
LVL 2

Author Comment

by:phrea84
ID: 20315485
can anyone vouch for this?  agree?  disagree?
0
 
LVL 2

Accepted Solution

by:
phrea84 earned 0 total points
ID: 20379351
your answer is not right.  watchguard says its shae and aes 256.

your also wrong on the vpn clients.

MODS:  please close this ticket and refund points to me.

thanks
0

Featured Post

Is your NGFW recommended by NSS Labs?

Ours is! NSS Labs Next Generation Firewall Test gives the WatchGuard Firebox M4600 a "Recommended" rating! Curious where your NGFW landed on the  Security Value Map? See the map and download the full report today!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question