cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1922
Views
0
Helpful
6
Replies

How to configure Cisco easy VPN server on port 443

rcbandit111
Level 1
Level 1
Hi,
I need help about configuring Cisco Easy VPN server. How I can  configure the Easy VPN server to listen on port 443 instead the default  port 10000?

Regards
Peter
6 Replies 6

Herbert Baerten
Cisco Employee
Cisco Employee

on IOS:

     crypto ctcp port 443

on ASA 8.3 and earlier:

     crypto isakmp ipsec-over-tcp port 443

on ASA 8.4 and later:

     crypto ikev1 ipsec-over-tcp port 443

hth

Herbert

Hi,

  I tied the command

     crypto ctcp port 443

It dows not worked. I use IOS version c1841-advsecurityk9-mz.124-25b.bin. It seems that I need newer version.

Hi Peter,

yes that is correct, you need 12.4(9)T or later.

hth

Herbert

Is it true that if I configure ctcp to listen on port 443 all communication traffic will be on this port?

Correct, there will be no UDP500, no UDP4500, no ESP, only TCP443.

Of course, you need to configure the client to use this port, it does not "auto-discover" the port.

The problem is that one of the clients is behind firewall which filters most of the ports. I will try with more recent version of IOS. I hope that this will solve the problem.

If this don't work is there othere solution? Maybe SSL VPN?

Thank you!

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: