Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
233
Views
0
Helpful
1
Replies

VPN Cleint 4.X

kuldeep.kaur
Level 1
Level 1

‎10-18-2009 03:42 PM - edited ‎03-11-2019 09:27 AM

Hi Guys,

I have a pc which has cisco vpn client 4.x installed on it and it is behind the company's pix firewall.

What ports are required to be open on the firewall so that it will allow outbound vpn connection from the pc. Is it UDP 500 or anything else?

Tks

Labels:
0 Helpful
1 Reply 1

JORGE RODRIGUEZ
Level 10
Level 10

‎10-18-2009 07:58 PM

if running code 7.x or above add ipsec pass-thru to global polciy for IPsec pass trhough

http://www.cisco.com/en/US/docs/security/asa/asa82/command/reference/i2.html#wp1740887

pix-asa(config)# policy-map global_policy

pix-asa(config-pmap)# class inspection_default

pix-asa(config-pmap-c)# inspect ipsec-pass-thru

pix-asa(config-pmap-c)#exit

If PIX code 6.x you need to allow udp 500 (isakmp) , udp 4500 (nat-t) and esp protocol 50

Jorge Rodriguez
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card