SA 540 real firewall ports and pass-thru

Unanswered Question
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
William Childs Thu, 04/29/2010 - 02:07
User Badges:
  • Bronze, 100 points or more


The SA series doe not do protocol forwarding. It will only do protocol binding and port forwarding. Neither of which will help you accomplish your goal. You should look into using the multisite manager feature of the UC to build your tunnel and if you need assistance the SBSC is a good resource in such a situation.


nmanglik Tue, 05/04/2010 - 22:49
User Badges:

Hi Bob,

To perform a VPN pass through on SA500 to connect to UC540, please apply these 2 rules on the firewall on SA500.

1. From WAN to LAN, under Service -> IKE, Action -> Allow

2. From WAN to LAN, under Service -> IPSec-UDP-ENCAP, Action -> Allow


nmanglik Wed, 05/05/2010 - 15:03
User Badges:

Hi Bob,

To do IPSec over TCP, you will need to add the TCP port as a custom port. On SA500, go to Firewall -> Service and add the rule for the tcp port.



This Discussion