Assuming your clients are trying to connect to Contivity box outside the firewall, you probably need to map global ip to local ip for whomever trying to connect as well as allowing inbound ESP.
Henry -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Tuesday, August 12, 2003 8:28 PM To: [EMAIL PROTECTED] Subject: Nortel Contivity VPN and Firewalls Hello, Anyone has setup firewall policy to allow Nortel Contivity VPN clients through ? What would be the additional ports other than the standard IP Protocol 50 and UDP 50 Thank you Regards, Leonard --------------------------------------------------------------------------- ---------------------------------------------------------------------------- --------------------------------------------------------------------------- ----------------------------------------------------------------------------