Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

IKE, IPSec negotiation

Hi all,

My question is whether during the IKE and IPSec initialization (phase one and two) other than UDP 500 (ISAKMP), IP 50 (IPSec ESP) and IP 51 (IPSec AH) ports are in use. It seems that if in access-list only these ports are permitted as incoming traffic and nothing else the peers don't negotiate anything.

Bye!

Gabor

1 REPLY
Community Member

Re: IKE, IPSec negotiation

Hi Gabor,

Protocol 17 should also be permitted.

"IPSec uses IP protocols 50 and 51, and IKE traffic passes on protocol 17, port 500 (UDP 500). Make sure these are permitted appropriately. "

Have a nice day,

Onur

237
Views
0
Helpful
1
Replies
CreatePlease to create content