we using a network like this
lan ---> pix (doing pat) -----> internet(dsl) ----> vpn server
about 20-30 clients on the lan need to do vpn to server.
we r using safenet ipsec vpn client
pix is 506e
what ports needed to be opened to allow vpn? is it protocol 50,51 &udp
500can anyone give a sample command required to be added to to allow vpn connection
regards & thanks
you need to pass source and destination UDP ports 500 and 4500, unless you don't use TCP for IPSec...UDP is default. Also, esp and ah traffic must be passed trough.
B.R. Igor
I think that all you need is : isakmp nat-traversal
regards
jarcar
Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.