Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
633
Views
0
Helpful
2
Replies

IPSEC over TCP/50,000 on PIX 5xx...

abatson
Level 1
Level 1

‎05-29-2008 07:56 AM - edited ‎02-21-2020 03:44 PM

I have a 3000-series concentrator where I already have IPSEC set up on port TCP/50,000, but I wonder if this is possible on a PIX 501 running 6.3(3).

I ask, because I want to be able to VPN into my PIX from broadband connections at hotels, who might not allow ESP (IP_Prot 50, 51) for instance. If I use a TCP port for the IPSEC, I'll likely overcome that.

Labels:
0 Helpful
2 Replies 2

aghaznavi
Level 5
Level 5

‎06-04-2008 08:57 AM

I think IPsec over TCP is supported only on the public interface of VPN Concentrators.

0 Helpful

arbensy
Level 1
Level 1

‎06-04-2008 12:09 PM

Hi

That is not possible with IOS 6.x.

IOS version 6.x does not support IPsec over TCP.

PIX 501 does not support IOS version 7.x.

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a0080645722.shtml

visit this link.

This document describes how to configure remote access VPN sessions between a PIX Firewall and VPN Hardware Clients. This sample configuration demonstrates a configuration for IPsec over TCP on any port. This feature is introduced in PIX version 7.x.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents