Search This Blog

Thursday, October 01, 2009

firewall-wizards Digest, Vol 42, Issue 1

Send firewall-wizards mailing list submissions to
firewall-wizards@listserv.icsalabs.com

To subscribe or unsubscribe via the World Wide Web, visit
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
or, via email, send a message with subject or body 'help' to
firewall-wizards-request@listserv.icsalabs.com

You can reach the person managing the list at
firewall-wizards-owner@listserv.icsalabs.com

When replying, please edit your Subject line so it is more specific
than "Re: Contents of firewall-wizards digest..."


Today's Topics:

1. Cisco AnyConnect VPN Client SSL for linux; (R. DuFresne)
2. How to rename a CMA in Provider-1 (Trey Darley)
3. Re: Cisco AnyConnect VPN Client SSL for linux; (Josh Ward)
4. Re: Cisco AnyConnect VPN Client SSL for linux; (Harry Hoffman)
5. Re: Cisco AnyConnect VPN Client SSL for linux; (ArkanoiD)
6. Re: Cisco AnyConnect VPN Client SSL for linux; (Farrukh Haroon)


----------------------------------------------------------------------

Message: 1
Date: Tue, 29 Sep 2009 22:39:13 -0400 (EDT)
From: "R. DuFresne" <dufresne@sysinfo.com>
Subject: [fw-wiz] Cisco AnyConnect VPN Client SSL for linux;
To: Firewall Wizards Security Mailing List
<firewall-wizards@listserv.cybertrust.com>
Message-ID: <Pine.LNX.4.64.0909292238420.2675@darkstar.sysinfo.com>
Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


This might be slightly off topic, perhaps not.


Does anyone know of a linux client for the Cisco AnyConnect VPN Client SSL
tool? Prefer one not redhat specific, we use slackware.


Thanks,

Ron DuFresne
- --
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
admin & senior security consultant: sysinfo.com
http://sysinfo.com
Key fingerprint = 9401 4B13 B918 164C 647A E838 B2DF AFCC 94B0 6629

These things happened. They were glorious and they changed the world...,
and then we fucked up the endgame. --Charlie Wilson
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iD8DBQFKwsTUst+vzJSwZikRAv3GAJsGTCrYxcSzzgTSBNabiSVhGOfJSACeOg5T
qCIgew91ej1VTB6u4wV2LQ0=
=zpP2
-----END PGP SIGNATURE-----


------------------------------

Message: 2
Date: Thu, 17 Sep 2009 09:27:29 +0200 (CEST)
From: "Trey Darley" <trey@kingfisherops.com>
Subject: [fw-wiz] How to rename a CMA in Provider-1
To: "Firewall Wizards Security Mailing List"
<firewall-wizards@listserv.cybertrust.com>
Message-ID:
<e5e01ef834e5d09922b2062c2f92ef62.squirrel@kingfisherops.com>
Content-Type: text/plain;charset=iso-8859-1

Morning, all -

As my google-fu is seemingly weak today I put the question to you: is
there a way to rename a CMA (or at least change the display name) in Check
Point Provider-1?

Much obliged!
--Trey


------------------------------

Message: 3
Date: Wed, 30 Sep 2009 17:47:10 -0700
From: Josh Ward <jward@network-services.uoregon.edu>
Subject: Re: [fw-wiz] Cisco AnyConnect VPN Client SSL for linux;
To: Firewall Wizards Security Mailing List
<firewall-wizards@listserv.cybertrust.com>
Message-ID: <4AC3FC0E.8050908@network-services.uoregon.edu>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed

Hey Ron,

Cisco provides an AnyConnect client that works great under linux. You
have to upload the image to your ASA/Pix and set it up in the webvpn
configuration.

It works great under Ubuntu and Redhat. We haven't tested it under
Slackware but it should download and install just fine.

-Josh

R. DuFresne wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
>
>
>
> This might be slightly off topic, perhaps not.
>
>
> Does anyone know of a linux client for the Cisco AnyConnect VPN Client SSL
> tool? Prefer one not redhat specific, we use slackware.
>
>
> Thanks,
>
> Ron DuFresne
> - --
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> admin & senior security consultant: sysinfo.com
> http://sysinfo.com
> Key fingerprint = 9401 4B13 B918 164C 647A E838 B2DF AFCC 94B0 6629
>
> These things happened. They were glorious and they changed the world...,
> and then we fucked up the endgame. --Charlie Wilson
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.5 (GNU/Linux)
>
> iD8DBQFKwsTUst+vzJSwZikRAv3GAJsGTCrYxcSzzgTSBNabiSVhGOfJSACeOg5T
> qCIgew91ej1VTB6u4wV2LQ0=
> =zpP2
> -----END PGP SIGNATURE-----
> _______________________________________________
> firewall-wizards mailing list
> firewall-wizards@listserv.icsalabs.com
> https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
>


------------------------------

Message: 4
Date: Wed, 30 Sep 2009 21:16:02 -0400
From: Harry Hoffman <hhoffman@ip-solutions.net>
Subject: Re: [fw-wiz] Cisco AnyConnect VPN Client SSL for linux;
To: Firewall Wizards Security Mailing List
<firewall-wizards@listserv.icsalabs.com>
Cc: Firewall Wizards Security Mailing List
<firewall-wizards@listserv.cybertrust.com>
Message-ID: <4AC402D2.8050707@ip-solutions.net>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed

OpenConnect

R. DuFresne wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
>
>
>
> This might be slightly off topic, perhaps not.
>
>
> Does anyone know of a linux client for the Cisco AnyConnect VPN Client SSL
> tool? Prefer one not redhat specific, we use slackware.
>
>
> Thanks,
>
> Ron DuFresne
> - --
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> admin & senior security consultant: sysinfo.com
> http://sysinfo.com
> Key fingerprint = 9401 4B13 B918 164C 647A E838 B2DF AFCC 94B0 6629
>
> These things happened. They were glorious and they changed the world...,
> and then we fucked up the endgame. --Charlie Wilson
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.5 (GNU/Linux)
>
> iD8DBQFKwsTUst+vzJSwZikRAv3GAJsGTCrYxcSzzgTSBNabiSVhGOfJSACeOg5T
> qCIgew91ej1VTB6u4wV2LQ0=
> =zpP2
> -----END PGP SIGNATURE-----
> _______________________________________________
> firewall-wizards mailing list
> firewall-wizards@listserv.icsalabs.com
> https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
>


------------------------------

Message: 5
Date: Thu, 1 Oct 2009 06:18:49 +0400
From: ArkanoiD <ark@eltex.net>
Subject: Re: [fw-wiz] Cisco AnyConnect VPN Client SSL for linux;
To: Firewall Wizards Security Mailing List
<firewall-wizards@listserv.cybertrust.com>
Message-ID: <20091001021849.GA10992@eltex.net>
Content-Type: text/plain; charset=koi8-r

IIRC it is basically openvpn with several broken DTLS headers. There was a patch
that enables "cisco-compatible" mode in openvpn.

On Tue, Sep 29, 2009 at 10:39:13PM -0400, R. DuFresne wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
>
>
>
> This might be slightly off topic, perhaps not.
>
>
> Does anyone know of a linux client for the Cisco AnyConnect VPN Client SSL
> tool? Prefer one not redhat specific, we use slackware.
>
>
> Thanks,
>
> Ron DuFresne
> - --

------------------------------

Message: 6
Date: Thu, 1 Oct 2009 05:42:40 +0300
From: Farrukh Haroon <farrukhharoon@gmail.com>
Subject: Re: [fw-wiz] Cisco AnyConnect VPN Client SSL for linux;
To: Firewall Wizards Security Mailing List
<firewall-wizards@listserv.icsalabs.com>
Cc: Firewall Wizards Security Mailing List
<firewall-wizards@listserv.cybertrust.com>
Message-ID:
<eff3217d0909301942g5224022ah4206b62fa2e6dc00@mail.gmail.com>
Content-Type: text/plain; charset="iso-8859-1"

Slackware is officially supported, please have a look at the following
table:

http://www.cisco.com/en/US/docs/security/asa/compatibility/vpn-platforms-82.html#wp126681

Also have a look at the 'linux requirements' section in the release notes:

http://www.cisco.com/en/US/docs/security/vpn_client/anyconnect/anyconnect23/release/notes/anyconnect23rn.html#wp949967

This is the download page:

http://tools.cisco.com/support/downloads/go/Model.x?mdfid=281278373&mdfLevel=Software%20Version/Option&treeName=Security&modelName=Cisco%20AnyConnect%20VPN%20Client%20v2.x&treeMdfId=268438162

Regards

Farrukh Haroon
CCIE Security (#20184)

On Wed, Sep 30, 2009 at 5:39 AM, R. DuFresne <dufresne@sysinfo.com> wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
>
>
>
> This might be slightly off topic, perhaps not.
>
>
> Does anyone know of a linux client for the Cisco AnyConnect VPN Client SSL
> tool? Prefer one not redhat specific, we use slackware.
>
>
> Thanks,
>
> Ron DuFresne
> - --
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> admin & senior security consultant: sysinfo.com
> http://sysinfo.com
> Key fingerprint = 9401 4B13 B918 164C 647A E838 B2DF AFCC 94B0 6629
>
> These things happened. They were glorious and they changed the world...,
> and then we fucked up the endgame. --Charlie Wilson
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.5 (GNU/Linux)
>
> iD8DBQFKwsTUst+vzJSwZikRAv3GAJsGTCrYxcSzzgTSBNabiSVhGOfJSACeOg5T
> qCIgew91ej1VTB6u4wV2LQ0=
> =zpP2
> -----END PGP SIGNATURE-----
> _______________________________________________
> firewall-wizards mailing list
> firewall-wizards@listserv.icsalabs.com
> https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://listserv.icsalabs.com/pipermail/firewall-wizards/attachments/20091001/08c192fb/attachment-0001.html>

------------------------------

_______________________________________________
firewall-wizards mailing list
firewall-wizards@listserv.icsalabs.com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards


End of firewall-wizards Digest, Vol 42, Issue 1
***********************************************

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)