4. Help with IPSEC

Help with IPSEC

  • K

    Hoping someone can help me with IPSEC. We have a pfsense device working without issue, there are 2 wan interfaces and 1 lan interface. The two wans are connected to 2 different gateway routers using a /30 ip range each and  the lan has a /25. Can anyone tell me what ports I need to forward through a CIsco 1720 to get IPSEC working? Im confident that the pfsense is OK as if i set the client to the WAN IP of the pfsense it works OK but if I try and connect to the public IP of the wan gateway routers the connection fails

    0
  • A

    Here you go:

    Internet Protocol Security (IPSec) uses IP protocol 50 for Encapsulated Security Protocol (ESP), IP protocol 51 for Authentication Header (AH), and UDP port 500 for IKE Phase 1 negotiation and Phase 2 negotiations. UDP ports 500 and 4500 are used, if NAT-T is used for IKE Phase 1 negotiation and Phase 2 negotiations

    but I'd recommend you remove those ciscos and use pfsense as the gateway,

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy