Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

outside ACL for watchguard VPN traffic

Hi all,

I need advice to creat a outside ACL for watchguard VPN trafic on our ASA.

Below are a old ACL but no VPN watchguard trafic.

Any sugestion?

access-list acl_outside extended permit udp host -ip numbers removed- host -ip numbers removed- eq isakmp

access-list acl_outside extended permit gre host -ip numbers removed- host -ip numbers removed-

access-list acl_outside extended permit esp host -ip numbers removed- host -ip numbers removed-

access-list acl_outside extended permit ah host -ip numbers removed- host -ip numbers removed-

Regards Jan

1 REPLY

Re: outside ACL for watchguard VPN traffic

udp 500, 4500

gre

esp

ah

udp 1701 (l2tp)

tcp 10000 (default port for IPSec over TCP)

ipip

346
Views
0
Helpful
1
Replies