> From: LASDSDN @
com (LASD DSB)
> we would still have the firewall but we would let RAS handle the
> encryption. Does anybody have any knowledge or experience of how RAS
I don't know about RAS but couldn't you place the RAS server or
"decrypting" server between the firewall and Internal router?
The encrypted message should be in an IP envelope so if you use something
like plug-gw to force it the decryption server you con't have to have it
on the firewall. I'm assuming the encrypted packets are on a specific
port number. Of course I hope the user who has encryption keys is trusted
by the firewall....
Please keep me posted on replies, I'm working on an identical setup.