Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
478
Views
3
Helpful
2
Replies

General IPSEC question

rasoftware
Level 1
Level 1

‎03-03-2006 08:45 AM - edited ‎02-21-2020 02:17 PM

I know Cisco used 4500 UDP to capsulate ESP over a NAT device.

Checkpoint seem to use 2746. But later verison use 4500 same as Cisco/Juniper. Can anyone confirm IEFT port is the industry standard? I guess 4500.

Strange question but something I need to know..

Labels:
0 Helpful
2 Replies 2

m.sir
Level 7
Level 7

‎03-03-2006 11:30 AM

Yes u are right port port UDP encapsulation is 4500 its ietf rfc you can check it here....

http://www.ietf.org/rfc/rfc3948.txt

rasoftware
Level 1
Level 1
In response to m.sir

‎03-04-2006 05:04 AM

I guess checkpoint R55/56 using 2746 and then changing to 4500 in the R60 release would indicate a move to the industry standard.

I only ask because I have a client using old checkpoint over a CBAC/NAT 1800 and have all kinds of trouble. This doesnt appear to be the case with the later client which works more like the cisco using 4500.

0 Helpful
Customers Also Viewed These Support Documents