• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Help with IPSEC

Scheduled Pinned Locked Moved IPsec
2 Posts 2 Posters 760 Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • K
    kevinwincott
    last edited by Jul 24, 2014, 2:12 PM

    Hoping someone can help me with IPSEC. We have a pfsense device working without issue, there are 2 wan interfaces and 1 lan interface. The two wans are connected to 2 different gateway routers using a /30 ip range each and  the lan has a /25. Can anyone tell me what ports I need to forward through a CIsco 1720 to get IPSEC working? Im confident that the pfsense is OK as if i set the client to the WAN IP of the pfsense it works OK but if I try and connect to the public IP of the wan gateway routers the connection fails

    1 Reply Last reply Reply Quote 0
    • A
      abidkhanhk
      last edited by Jul 31, 2014, 2:33 AM

      Here you go:

      Internet Protocol Security (IPSec) uses IP protocol 50 for Encapsulated Security Protocol (ESP), IP protocol 51 for Authentication Header (AH), and UDP port 500 for IKE Phase 1 negotiation and Phase 2 negotiations. UDP ports 500 and 4500 are used, if NAT-T is used for IKE Phase 1 negotiation and Phase 2 negotiations

      but I'd recommend you remove those ciscos and use pfsense as the gateway,

      1 Reply Last reply Reply Quote 0
      1 out of 2
      • First post
        1/2
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
        This community forum collects and processes your personal information.
        consent.not_received