On Tue, 8 Oct 2002, Luca Berra wrote: > On Mon, Oct 07, 2002 at 02:32:14PM -0700, Brian Bettger wrote: > >He has, in the past enjoyed a strictly IPX/SPX network knowing that this > >decreases his risk of exposing his servers. Is there a firewall product > >out there we can use that allows a VPN connection to utilize IPX/SPX for > >several and eventually tens of clients to map a drive to the Novell > >server(s)? > > Dunno about a specific product, but since ipx is running on top of ppp > it should reasonably possible to make it run over pptp as well. > I don't know of any firewall that can do packet filtering or content > inspection on IPX, but maybe you can get some packet filtering with > cisco IOS (i have not used the ipx feature set for eons). > Of course, in considering pptp, one has t make sure all systems are upto date and current on all available M$ patches, there was a issue recently with pptp in I believe all M$ variants. I have not kept current enough on that to note if there has been a fix released from M$. The previous posters suggestions about borderware, and either two NDS trees or getting their backend up to current ipx/spx configurations might be easier to maintain. Thanks, Ron DuFresne -- ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ admin & senior security consultant: sysinfo.com http://sysinfo.com "Cutting the space budget really restores my faith in humanity. It eliminates dreams, goals, and ideals and lets us get straight to the business of hate, debauchery, and self-annihilation." -- Johnny Hart testing, only testing, and damn good at it too! _______________________________________________ firewall-wizards mailing list firewall-wizardsat_private http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
This archive was generated by hypermail 2b30 : Tue Oct 08 2002 - 10:00:15 PDT