I'm trying to allow the Cisco vpn client 3.5 access out through our Watchguard firewall. I get authenticated but I don't see any bytes coming in. Does anybody know what ports need to be opened for the vpn client to work? Thank you in advance for any help on this.
Make sure you are allowing the ESP protocol in and out - ipsec negotiation generally uses isakmp, which works on upd 500. once that is done, IPSec tunnels get created, almost always by using the ESP protocol. ESP is IP protocol 50.
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
