cancel
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 
cancel
5023
Views
0
Helpful
17
Replies

Permit Ipsec protocol in ISP

cisconell
Level 1
Level 1

Hi Guys,

I am trying to estabish a site to site ipsec tunnel . I have requesed the ISP to permit ip protocl between site Aand site  B.

I would like to know if ISP open Ip protocol will it pass all the protocol requried for ipsec tunnel and do I need to ask them to open specifical the below protocols

50 - Encapsulation Header (ESP)

51 - Authentication Header (AH)

500/udp - Internet Key Exchange (IKE)

4500/udp - NAT traversal

Thanks in advance

17 Replies 17

Please extend your crypto-definition to include the internal networks instead of only the ASA-inside ip and test it from an internal PC.

-- 
Don't stop after you've improved your network! Improve the world by lending money to the working poor:
http://www.kiva.org/invitedby/karsteni

Thank Karsten, I wil test this and let u know .

But with the current configuration can i estabish a tunnel between ASA inside ips

  ASA 1 # ping inside (ASA2 inside ip ) will this work ?

Thanks guys for all your inputs.

Thanks karsten.iwen. The tunnel is up and working fine, with ISP just permitting "ip" protocol.

I had internal routing problem

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: