Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
272
Views
0
Helpful
1
Replies

blocking outbound IPSEC

kbrookov
Level 1
Level 1

‎07-02-2003 07:18 AM - edited ‎02-21-2020 12:38 PM

How do I block outbound IPSEC over (transparent tunneling/NAT-T) TCP/UDP outbound. We do not want users to be able to create tunnles to unkown networks without our prior consent. Any input is appreciated...

Thanks

Labels:
0 Helpful
1 Reply 1

mostiguy
Level 6
Level 6

‎07-02-2003 11:55 AM

You would have to block everything outbound, or have a product in the mix that can inspect packets very deeply. Although there is a standard port number for nat transversal, I don't think there is any reason why someone couldn't cook up a solution that runs it on a non standard port. Also, there are lots of proprietary solutions out there, that do thinks differently

0 Helpful
Customers Also Viewed These Support Documents