Ars Technica

Fortigate to CISCO IPSEC VPN

Thought I'd start a new thread rather than hijack the other one. We're switching to a new MPLS VPN provider with 4 sites and a central colocation facility which tails into the internet. Each of the ...
Network World

Cisco warns of hijack code for VPN gear

Cisco last week warned that hacker software now exists that allows attackers to break into a Cisco-based VPN by intercepting VPN logon/password data. The hacker code takes advantage of a previously ...
Ars Technica

[Leopard] Cisco VPN setup using built-in client

I'm trying to get VPN working using the default Leopard client instead of my usually scripts that call the command-line Cisco client. The new Leopard VPN configuration seems very nice, so I'm curious ...
Network World

Cisco finally releases 64bit IPSEC client

The Long awaited release of a Cisco IPSEC client for 64bit operating systems has finally come to pass. The new Cisco VPN client version 5.0.07 is ready for download. The new client supports Windows 7 ...
EDN

IPsec, a Tutorial–Part IX

For smaller networks on which keys can be manually defined, IKE preshared keys (PSKs) can be used. PSKs are manually defined in the IKE policy of each crypto endpoint. Once crypto and ISAKMP policies ...
Threat Post

Researchers Break IPsec VPN Connections with 20-Year-Old Protocol Flaw

The attack targets IKE’s handshake implementation used for IPsec-based VPN connections, opening the door for MiTM attacks or for bad actors to access data carried in VPN sessions. A new Bleichenbacher ...
EDN

IPsec, a Tutorial–Part V

As discussed above, IPsec delivers data confidentiality services by executing a transform on plain text data. Common ciphers used in the IPsec transform are DES, 3DES, and AES. All of these transforms ...