Buy or Renew
Buy or Renew
NOTICE: You can now engage in the community. Learn about the great new Cisco Umbrella content.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
284
Views
0
Helpful
1
Replies

Match IPSec packets

carlosv
Level 1
Level 1

‎12-07-2004 07:27 AM - edited ‎02-21-2020 01:29 PM

Hi,

I need to mark IPSec packets coming from our Firewalls (Checkpoint). We are doing IPSec VPN's between the Firewalls NOT THE ROUTERS in a topology like this:

LAN1--FW1--Router1----WAN-----Router2-FW2--LAN2

Since encryption is already done, how do I match this packets using access-list on the routers? Would match protocol 500 be enough?

Thanks in advance

Carlos

Labels:
0 Helpful
1 Reply 1

Richard Burts
Hall of Fame
Hall of Fame

‎12-07-2004 12:40 PM

You have also posted exactly the same question on the forum for Service Providers/VPN Service Architecture. See my answer to your question in that forum.

HTH

Rick

HTH

Rick
0 Helpful
Customers Also Viewed These Support Documents