Prev: Beginner VOIP Question
Next: VLAN on 3750
From: rg on 16 Apr 2008 17:26
What client protocol/ports outbound/inbound should be open for ipsec vpn
client to make successfull connection?

Thanks in advance

From: News Reader on 16 Apr 2008 17:48
rg wrote:
> What client protocol/ports outbound/inbound should be open for ipsec vpn
> client to make successfull connection?
>
> Thanks in advance
>

ISAKMP is udp port 500. You can use keyword "isakmp" in your ACLs.

If you use the client from behind a NAT firewall using UDP encapsulation
(port 4500), use can use keyword "non500-isakmp" in your ACLs.

If you are connecting to a PIX, I think you have the option of using TCP
encapsulation through NAT (port 10000?, configurable?).

ESP is IP protocol 50. Use keyword "esp" in your ACLs instead of "ip".

Best Regards,
News Reader
From: CK on 17 Apr 2008 03:19
Ports Needed for PPTP VPN
- TCP Port 1723
- UDP Port 500

Ports Needed for L2TP VPN
- TCP Port 1701
- UDP Port 500

Ports Needed for IPSec/ESP
- UDP Port 500
-50 for Encapsulation Header (ESP)
-port 51 for Authentication Header (AH).

From: News Reader on 17 Apr 2008 10:40
CK wrote:
> Ports Needed for PPTP VPN
> - TCP Port 1723
> - UDP Port 500
>
> Ports Needed for L2TP VPN
> - TCP Port 1701
> - UDP Port 500
>
> Ports Needed for IPSec/ESP
> - UDP Port 500
> -50 for Encapsulation Header (ESP)

Not port, "ip protocol" 50

> -port 51 for Authentication Header (AH).
>

not port 51, "ip protocol" 51

Best Regards,
News Reader
From: artie lange on 17 Apr 2008 11:06
News Reader wrote:
> CK wrote:
>> Ports Needed for PPTP VPN
>> - TCP Port 1723
>> - UDP Port 500

PPTP uses TCP/1723 and IP 47

http://compnetworking.about.com/od/vpn/l/bl012101a11.htm
 | 
Pages: 1
Prev: Beginner VOIP Question
Next: VLAN on 3750