• Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out


Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA 2006 Firewall] >> VPN >> VPN IPsec Page: [1]
Message << Older Topic   Newer Topic >>
VPN IPsec - 12.Jun.2013 7:12:04 AM   


Posts: 7
Joined: 17.Sep.2009
Status: offline

Looking to replace our VPN client protocol from PPTP to L2TP/IPsec but not sure what ports I need to enable on our on Sonicwall firewall.

I have found the following 4 possible ports, do they ALL need to be opened to allow L2Tp?

1701 UDP Layer 2 Forwarding Protocol (L2F) & Layer 2 Tunneling Protocol (L2TP)
500 UDP Internet Security Association and Key Management Protocol (ISAKMP)
4500 UDP IPSec NAT Traversal
50 TCP UDP Remote Mail Checking Protocol

Post #: 1
RE: VPN IPsec - 14.Jul.2013 2:14:06 PM   


Posts: 12830
Joined: 1.Jun.2001
From: Belgium
Status: offline
If you want troublefree L2TP/IPsec, make sure that

1. the ISA/TMG external interface (VPN endpoint) has a public IP address.

2. the SonicWall allows inbound UDP 500 (IKE), UDP 4500 (NAT-T) and IP protocol 50 (ESP).

Note: if all VPN clients are always behind a sharing/NAT device you don't need IP protocol 50 (ESP).


(in reply to Kelvin.uk)
Post #: 2

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA 2006 Firewall] >> VPN >> VPN IPsec Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts