Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

VPN Client Ports

hello

I'm plaining to implement a Remote VPN architecture using Certificates. I need a list of ports to be opened in the Firewall to permit the communication between the VPN Client and the VPN Server (ASA).

I found this list:

UDP 500

UDP 4500

UDP 10000.

is there any other port?

Sincerely

2 REPLIES
Bronze

Re: VPN Client Ports

Hi,

The list should be

UDP 500

UDP 4500

TCP 10000

ESP (IP protocol 50)

Regards

Bronze

Re: VPN Client Ports

Hi,

In all cases you will need to open udp/500, however,

If you are using NAT-T, then you open UDP/4500 and no need for esp

and/or

if you are using IPSec over tcp 10000, then you open TCP/10000 (not udp/10000), and no need for esp

otherwise you will open only udp/500 and esp without any other protocol

please rate if this is helpful!

376
Views
0
Helpful
2
Replies
CreatePlease to create content