outside ACL for watchguard VPN traffic

Unanswered Question
Jul 8th, 2008

Hi all,

I need advice to creat a outside ACL for watchguard VPN trafic on our ASA.

Below are a old ACL but no VPN watchguard trafic.

Any sugestion?

access-list acl_outside extended permit udp host -ip numbers removed- host -ip numbers removed- eq isakmp

access-list acl_outside extended permit gre host -ip numbers removed- host -ip numbers removed-

access-list acl_outside extended permit esp host -ip numbers removed- host -ip numbers removed-

access-list acl_outside extended permit ah host -ip numbers removed- host -ip numbers removed-

Regards Jan

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
a.alekseev Wed, 07/09/2008 - 01:08

udp 500, 4500

gre

esp

ah

udp 1701 (l2tp)

tcp 10000 (default port for IPSec over TCP)

ipip

Actions

This Discussion