Hi, I'm preparing our VPN environment to switch from Cisco (Cisco VPN Client + Cisco VPN 3000) to Juniper (Network Connect + SA). In the existing client environment, we use the Cisco VPN Client together with the IBM ISS Proventia Desktop Firewall. This firewall is location-aware, so it recognizes the connection state of the client (connected to a corporate network, connected via cisco vpn or connected to unknown network). If connected to an unknown network, it shuts down all incomming network ports to protect the client from being attacked through the internet. If connected to corp network or vpn, it opens all ports to allow normal operation. Problem with this Firewall: It doesn't recognize a running Network Connect session as a vpn connection. It only supports Cisco for this feature. So we can't use this desktop firewall with NC. I'm looking for another personal firewall product that 1) is location-aware and 2) supports Network Connect. As far as i found out, Juniper doesn't offer such a software untill now (OAC seems inappropriate for my needs). Maybe someone is running another client strategy on the same goal (client-protection while not connected to vpn). Thanks for any suggestions!
... View more