Cisco VPN Client behind firewall
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-31-2006 07:46 AM - edited 02-21-2020 02:36 PM
I have a cisco 2621 running IOS ver 12.1 with the firewall feature set and I'm having trouble connecting to a VPN endpoint outside the firewall. I have UPD port 500 along with ESP, and AHP opened for both inbound and outbound traffic. The only thing I've been able to find on the internet says I should use NAT-T, but its doesn't appear to be support until IOS ver 12.2(13). Does anyone know a a way to make this work without upgrading the IOS? If not, will an IOS upgrade solve the porblem?
Thanks
- Labels:
-
Other VPN Topics
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
09-05-2006 04:12 AM
You need to make sure you open the following ports :
udp 500
udp 4500
IP 50
IP 51...
if you are doing PAT to connect to the concentrator, u need to enable nat-transparency.. this is mandatory.... upgrade the IOS and enable this feature..
hope this helps.. all the best... rate replies if found useful...
Raj
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
09-05-2006 06:27 AM
I have udp 500, IP 50 and IP 51 open for 'any any' in the access list and using NAT overload and it appears to be working. What's port 4500 for?
Thanks
