|
|
Den mandag 2.jan kl. 14:18 skrev John A. Sullivan III:
Hello, all. I was fascinated to see a reference to using NMAP in the
client scripts. It sounds like we have the opportunity to do some
sort
of end point security check before allowing connections. That
would be
a powerful alternative to some of the proprietary SSL solutions.
However, I can also see all sorts of shortcomings. For example, if we
check for open ports and the client is behind a NAT firewall which
also
protects public servers on a DMZ, I would imagine we would show false
positives.
Why not just check both the outside of the tunnel and the inside, and
then
compare the results?
JonB
____________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users
|