cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1127
Views
0
Helpful
6
Replies

What ports to open for VPN client though firewall?

whiteford
Level 1
Level 1

I have a user who users the VPN client (4.8) inside anther companies network, what ports need to be opened to allow this to work?

6 Replies 6

m.sir
Level 7
Level 7

UDP 500 for ISAKMP

and UDP 4500 for NAT traversal

M.

If I get the company to open these each way then he should be ok to connect to our company via his VPN client?

maybe add TCP 10,000 too.

Then yes, it should be ok, it would use NAT-Traversal.

In addition to the UDP ports being opened which are used for ISAKMP negotiation, it would also be necessary to be sure that the firewall permitted ESP for the IPSec encrypted packets.

HTH

Rick

HTH

Rick

Can you specify whether these are incoming ports or outgoing ports (or both) that should be opened?

Jim

These protocols need to function in both directions. But the specific ports that were mentioned need to be opened as destination ports inbound. They need to be open as source ports outbound but usually outbound traffic is not heavily filtered so it is usually not much of an issue.

ESP (and sometimes AH) protocols need to be open inbound and outbound (and do not have port numbers to configure).

HTH

Rick

HTH

Rick
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: