IKE, IPSec negotiation

Unanswered Question
Nov 4th, 2002
User Badges:

Hi all,

My question is whether during the IKE and IPSec initialization (phase one and two) other than UDP 500 (ISAKMP), IP 50 (IPSec ESP) and IP 51 (IPSec AH) ports are in use. It seems that if in access-list only these ports are permitted as incoming traffic and nothing else the peers don't negotiate anything.

Bye!

Gabor

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
hucuncu Mon, 11/04/2002 - 04:32
User Badges:

Hi Gabor,

Protocol 17 should also be permitted.

"IPSec uses IP protocols 50 and 51, and IKE traffic passes on protocol 17, port 500 (UDP 500). Make sure these are permitted appropriately. "

Have a nice day,

Onur


Actions

This Discussion