Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
530
Views
0
Helpful
1
Replies

Opening up IPSec port/s on perimeter router

Go to solution
vincent-n
Level 3
Level 3

‎01-24-2005 04:45 PM - edited ‎02-21-2020 01:33 PM

I currently have a PIX515E sitting behind a perimeter. This perimeter is connected to the Internet. It has security ACLs configured it. What I would like to do is use the PIX as a VPN termination point and hence need to open up certain port numbers on the perimeter router to reach the PIX. I'd like to use IPSec running mainly between CPN clients and the PIX but have no idea what should I do with the ACL on the router. That is should I say "permit ip any PIX-fw" or should I say "permit tcp <ipsec> PIX-fw". Can someone help out with the port number is possible. Thanks.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
thisisshanky
Level 11
Level 11

‎01-24-2005 06:27 PM

You need to enable the following ports.

ISAKMP - UDP 500

IPSEC - ESP (protocol)

access-list 101 permit udp any host eq 500

access-list 101 permit esp any host

Sankar Nair
UC Solutions Architect
Pacific Northwest | CDW
CCIE Collaboration #17135 Emeritus

View solution in original post

0 Helpful
1 Reply 1

Go to solution
thisisshanky
Level 11
Level 11

‎01-24-2005 06:27 PM

You need to enable the following ports.

ISAKMP - UDP 500

IPSEC - ESP (protocol)

access-list 101 permit udp any host eq 500

access-list 101 permit esp any host

Sankar Nair
UC Solutions Architect
Pacific Northwest | CDW
CCIE Collaboration #17135 Emeritus
0 Helpful
Customers Also Viewed These Support Documents