My question is whether during the IKE and IPSec initialization (phase one and two) other than UDP 500 (ISAKMP), IP 50 (IPSec ESP) and IP 51 (IPSec AH) ports are in use. It seems that if in access-list only these ports are permitted as incoming traffic and nothing else the peers don't negotiate anything.
"IPSec uses IP protocols 50 and 51, and IKE traffic passes on protocol 17, port 500 (UDP 500). Make sure these are permitted appropriately. "
Have a nice day,
Onur
Getting Started
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:
