Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Firebox VPN config--which method is most secure?

Posted on 2007-11-15
3
Medium Priority
?
319 Views
Last Modified: 2013-11-16
hi

im setting up our watchguard firebox for VPN users.

which method should i use for the best security?

sha1-hmac
md5-hamc

also

aes-256bit
3des-cbc
des-cbc

thanks
0
Comment
Question by:phrea84
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 13

Expert Comment

by:hstiles
ID: 20294395
3DES-SHA1 would be the most secure.

I don't believe you can use aes from VPN clients to Firebox,it is only supported between Fireboxes running Fireware.

To be honest, the more important thing when configuring your VPN is to limit the access granted to your VPN users and don;t use the ANY rule unnecessarily.
0
 
LVL 2

Author Comment

by:phrea84
ID: 20315485
can anyone vouch for this?  agree?  disagree?
0
 
LVL 2

Accepted Solution

by:
phrea84 earned 0 total points
ID: 20379351
your answer is not right.  watchguard says its shae and aes 256.

your also wrong on the vpn clients.

MODS:  please close this ticket and refund points to me.

thanks
0

Featured Post

When ransomware hits your clients, what do you do?

MSPs: Endpoint security isn’t enough to prevent ransomware.
As the impact and severity of crypto ransomware attacks has grown, Webroot has fought back, not just by building a next-gen endpoint solution capable of preventing ransomware attacks but also by being a thought leader.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you are like regular user of computer nowadays, a good bet that your home computer is on right now, all exposed to world of Internet to be exploited by somebody you do not know and you never will. Internet security issues has been getting worse d…
Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
In this video, Percona Solutions Engineer Barrett Chambers discusses some of the basic syntax differences between MySQL and MongoDB. To learn more check out our webinar on MongoDB administration for MySQL DBA: https://www.percona.com/resources/we…
Is your data getting by on basic protection measures? In today’s climate of debilitating malware and ransomware—like WannaCry—that may not be enough. You need to establish more than basics, like a recovery plan that protects both data and endpoints.…
Suggested Courses

618 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question