Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
11574
Views
0
Helpful
2
Replies

VPN Client Ports

i.ennassiri
Level 1
Level 1

‎03-06-2009 01:20 AM

hello

I'm plaining to implement a Remote VPN architecture using Certificates. I need a list of ports to be opened in the Firewall to permit the communication between the VPN Client and the VPN Server (ASA).

I found this list:

UDP 500

UDP 4500

UDP 10000.

is there any other port?

Sincerely

Labels:
0 Helpful
2 Replies 2

JamesLuther
Level 3
Level 3

‎03-06-2009 01:40 AM

Hi,

The list should be

UDP 500

UDP 4500

TCP 10000

ESP (IP protocol 50)

Regards

0 Helpful

oabduo983
Level 1
Level 1

‎03-07-2009 02:42 PM

Hi,

In all cases you will need to open udp/500, however,

If you are using NAT-T, then you open UDP/4500 and no need for esp

and/or

if you are using IPSec over tcp 10000, then you open TCP/10000 (not udp/10000), and no need for esp

otherwise you will open only udp/500 and esp without any other protocol

please rate if this is helpful!

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents