08-10-2004 12:19 AM
Right now, I have got the following equipment:
- VPN 3030
- Firewalls x 2
- Cisco ACS server (hold users profile)
- ACE server (user authentication)
The connection of those equipment will look like:
Internet - FW - VPN 3030 - FW - ACS & ACE servers
I'd like to know the protocols/ports used for each of the following interactions:
VPN client <-> VPN 3030
VPN 3030 <-> ACS server
ACS server <-> ACE server
I can hardly locate those information from the web. Please kindly help.
Thanks in advance.
08-10-2004 05:20 AM
Hi,
You can connect VPN3030 and RSA/ACE server directly via SDI interface (TCP 5500), you wouldn't really need the ACS.
If you use ACS inbetween VPN3030 & ACE, you connect VPN3030 with RADIUS (UDP 1645) to ACS and ACS with SDI (configure "External Databases" in ACS) to ACE server.
Phil
08-11-2004 10:44 PM
hi!
The Below mentioned link will give you some picture .
www.nasd.com/pdf_text/trace_vpn.pdf
If you want to connect VPN3030 to ACS you have to allow (TCP 49 and UDP 49). If Radius ( UDP 1645 ) for authentication and (UDP 1646) for accounting.
HTH.
Rdgs
Vimal
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide