I'm trying to allow the Cisco vpn client 3.5 access out through our Watchguard firewall. I get authenticated but I don't see any bytes coming in. Does anybody know what ports need to be opened for the vpn client to work? Thank you in advance for any help on this.
Make sure you are allowing the ESP protocol in and out - ipsec negotiation generally uses isakmp, which works on upd 500. once that is done, IPSec tunnels get created, almost always by using the ESP protocol. ESP is IP protocol 50.
Getting Started
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: