Search:  

 
theme to white backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » Equipment Support » Hardware By Brand » Cisco » [Config] Richard
Uniqs:
60		 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Post a:
Post a:
Links: ·Submit a new forum topic ·Forum FAQ ·Submit a FAQ ·Docs Guidelines and Advisories ·EOS/EOL thread
[Info] Why is PPP necessary for "dedicated connection"? »
« [HELP] "A Network Cable Is Unplugged" BuBBLE  
savannah010

join:2003-12-17
South Africa

[Config] Richard

Hi.

I'm setting a VPN for the first time. We have an ISA box on a local LAN and are connecting with a 2501 to the ISP. We're NAT'ing over Serial0 to the ISP. In order for incoming connections to the ISA box I have to create a one to one translation (if I'm correct) but this is dangerous. Am I correct in saying that I would create an access list and attach it to that interface for inbound connections? There are also port (SMTP, WWW) translations already in place on that interface; will the one to one translation take preference over these translations?

Thanks in advance for any input.

Richard.
permalink · 2003-12-17 03:26:11 · Print · Reply to this

Covenant
Premium,MVM
join:2003-07-01
England

Re: [Config] Richard

Hi Richard,

said by savannah010 See Profile:

In order for incoming connections to the ISA box I have to create a one to one translation (if I'm correct) but this is dangerous. Am I correct in saying that I would create an access list and attach it to that interface for inbound connections?
It is not dangerous, so to speak but it leaves you wide open on that one to one translation. You are correct in saying that you have to create an ACL.

said by savannah010 See Profile:

There are also port (SMTP, WWW) translations already in place on that interface; will the one to one translation take preference over these translations?
Should not do. If you have port translations already configured, the one to one NAT to the ISA server should not take precedence over it.

said by savannah010 See Profile:

Thanks in advance for any input.

Richard.
Your welcome Richard.
permalink · 2003-12-17 14:42:59 · Print · Reply to this
Forums » Equipment Support » Hardware By Brand » Cisco[Info] Why is PPP necessary for "dedicated connection"? »
« [HELP] "A Network Cable Is Unplugged" BuBBLE  

Saturday, 05-Dec 16:28:33 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.
page compression OFF
Most commented news this week
· [163] Comcast Releasing Promised Usage Meter
· [147] Avast Antivirus Has Gone Mad
· [127] Comcast Makes NBC Universal Acquisition Official
· [104] Graduate Student Unveils Sprint's GPS Sharing With Feds
· [101] Google Invades ISP, OpenDNS Turf With Google Public DNS
· [99] The Bandwidth Hog Does Not Exist
· [85] FCC Ponders Moving From PSTN To IP Voice
· [81] Latest Consumer Reports Survey Not Kind To AT&T
· [80] New Bill Aims To Limit ETFs
· [74] Sprint Defuses GPS Privacy Media Bomb
Most people now reading
· Wife might have to work in.... Iowa for a few months!!! [General Questions]
· False positive in Avast! or is it real? [Security]
· First commercial tool to crack BitLocker arrives (Updated) [Security]
· DNS options, what are YOU using? [TekSavvy]
· [How to] Install Asterisk on an Asus WL-520GU router [VOIP Tech Chat]
· 3.x Feral Druid - Bear Tanking Guide [World of Warcraft]
· Connecting to Google Voice Via SIP [VOIP Tech Chat]
· Sun Releases Update 17 for Java SE 6 [Security]
· Windows 7 boot manager editing questions [Microsoft Help]
· Farewell [Bell Canada]