From: Andreas Steffen (andreas.steffen_at_strongsec.net)
Date: Wed Oct 16 2002 - 13:20:49 CEST
You must open the UDP port 500 in order to let through
the IKE (Internet Key Exchange) negotiation protocol plus
IP protocol number 50 for the encrypted ESP (Encapsulating
Security Payload) packets.
Regards
Andreas
coUnt3r_at_gmx.net wrote:
> hi all,
>
> my little question:
>
> which ports on a firewall must be open for vpn with x.509?
>
> my szenario:
>
>
>
>
> roadwariors(dyn.ip e.g. from a hotel)==>
> ==>personal_firewall on the laptop==>
>
> ==>internet==>
>
> ==>corporate firwewall (static ip)==>
> ==>vpn gateway(static ip)==>
>
> ==>LAN(private ip)
>
>
>
> and the same way back to the roadwarrior...
>
> That's quite enough open the few ports (which ports are that?),
> or we must make another necessary adjustments?
>
>
> TIA
> Toby
>
>
>
>
>
>
>
>
-- ====================================================================== Andreas Steffen e-mail: andreas.steffen_at_strongsec.com strongSec GmbH phone: +41 76 340 25 56 Alter Zürichweg 20 home: http://www.strongsec.com CH-8952 Schlieren (Switzerland) ==========================================[strong internet security]== _______________________________________________ Users mailing list Users_at_lists.freeswan.org http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.5 : Thu Oct 17 2002 - 05:20:27 CEST