This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Which ports does vpn use

Hello everybody,

i want to place one astaro appliance in the dmz at customer side. over this appliance i want to make a net to net connection over x.509 certificates through the customer firewall to the firewall of our company.

Which ports have to be open on the customer firewall?

Another port than udp 500?

Thanks for information

This thread was automatically locked due to age.

0 Gert Hansen over 17 years ago

Hi Toette,

the IPSec VPN protoll can be used in two modes
- Standard
- NAT-Traversal

The system always runs in Standard mode, it switches to NAT-Traversal mode only if:
- NAT-Traversal is enabled on the ASG
- both sides of the IPSec Tunnel support NAT-Traversal
- there is a NAT device between the two IPSec Gateways

In Standard mode, IPSec uses two connections:
- Authentication or IKE (udp/500)
- Data or IPSec connection (esp or ip/50) (this is not tcp/udp)

In Nat-Traversal mode vpn uses also two connections:
- start of connection (udp/500)
- switches to NAT-T port (udp/4500)

i hope that helps,

regards
Gert
Cancel
Vote Up 0 Vote Down

Cancel
0 toette over 17 years ago in reply to Gert Hansen

yes, a helpful answer.

thank you
toette
Cancel
Vote Up 0 Vote Down

Cancel