Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
573
Views
0
Helpful
1
Replies

Advertising FQDN name through IPSEC VPN HUB & SPOKE

niterid3r
Level 1
Level 1

‎08-23-2010 10:33 PM - edited ‎02-21-2020 04:48 PM

Hello folks,

              Does anyone know how to setup a router to advertise FQDN over IPSEC tunnel and what protocol & ports needs to be opened in the VPN ACL.

Help would be really appreciated.

Thanks in advance.

Labels:
0 Helpful
1 Reply 1

gurdsing
Level 1
Level 1

‎09-01-2010 04:19 PM

Hi,

You can configure Easy VPN on the router that will work as hub and spoke, through which you can send domain value to the spoke router.

You need ESP (protocol 50) or UDP 4500 (NAT-T, if you are being a NAT device) and UDP 500 (isakmp) for VPN to work.

Thanks

Guru.

0 Helpful
Customers Also Viewed These Support Documents