Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

IPSec from router to 3030

Do i have a option to modity IPSec related ports on router IOS ???

As i do on a Concentrator 3030 ?

What if i would like the IPSec tunnel to establish over non-standard ports !!??

1 REPLY
Cisco Employee

Re: IPSec from router to 3030

If we're talking about a LAN-to-LAN tunnel here, then you can't change these on the router or on the 3030. The IPSec over UDP/TCP feature that I think you're referring to on the 3030 is for client connections only. The router doesn't support this feature.

However, both the 3030 (3.6 and up) and the router (12.2(13)T and up) support NAT-T which is an IETF standard for IPSec through NAT. Both ends will automatically detect during tunnel negotiation that there's a NAT device in between hem, and will encapsulate the IPSec packets inot UDP port 4500 packets that can be NAT'd correctly. This port cannot be changed on either side though.

90
Views
0
Helpful
1
Replies
CreatePlease to create content