Re: IPsec port

Sun, 01 Apr 2001 22:17:32 -0700 

The names and numbers are correct, but as someone else pointed out a few
posts back, it's not a port number, but a protocol number.

Protocols:
6    TCP
17    UDP
47    GRE (PPTP requirement)
50    ESP
51    AH

Just to delve a little further about security protocols, ISAKMP does use
TCP/500, and you'll need it too.

Bookmark 'em:
ftp://ftp.isc.org/pub/rfc/rfc1700.txt
http://www.isi.edu/in-notes/iana/assignments/port-numbers

--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
Cisco resources: http://r2cisco.artoo.net/


""Kane, Christopher A."" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Actually, you have it backwards. AH = port 51. ESP = port 50.
>
> Christopher A. Kane, CCNP
> Senior Network Control Tech
> Router Ops Center/Hilliard NOC
> UUNET
> (614)723-7877
>
>
>
> -----Original Message-----
> From: Rizzo Damian [mailto:[EMAIL PROTECTED]]
> Sent: Friday, March 30, 2001 12:19 PM
> To: 'Ruihai An'; [EMAIL PROTECTED]
> Subject: RE: IPsec port
>
>
> AH-port 50, ESP-port 51 and ISAKMP-port 500
>
>
>
> -----Original Message-----
> From: Ruihai An [mailto:[EMAIL PROTECTED]]
> Sent: Friday, March 30, 2001 12:05 PM
> To: [EMAIL PROTECTED]
> Subject: IPsec port
>
>
> I configured my PIX as the IPsec VPN terminator to support DES VPN client.
> I have an inbound access-list  on my perimeter router.  Does any one know
> the ports I need to open for IPsec VPN traffic on my perimeter router ?
>
> Ruihai
_________________________________
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Reply via email to