Re: What ports to open for VPN client though firewall?
These protocols need to function in both directions. But the specific ports that were mentioned need to be opened as destination ports inbound. They need to be open as source ports outbound but usually outbound traffic is not heavily filtered so it is usually not much of an issue.
ESP (and sometimes AH) protocols need to be open inbound and outbound (and do not have port numbers to configure).
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
[toc:faq]Introduction:This document describes details on how NAT-T
works.Background:ESP encrypts all critical information, encapsulating
the entire inner TCP/UDP datagram within an ESP header. ESP is an IP
protocol in the same sense that TCP and UDP are I...