Hi all, IPSec uses IP protocol 50. It operates at layer 3; there is no TCP or UDP involved. IKE (Internet Key Exchange) operates on UDP port 500. Most of the time, IKE is used as a secure way to negotiate the tunnels used by IPSec VPN traffic. UDP port 500 is also used for NAT traversal for IPSec packets that must travel through obsolete devices that drop IPSec.
Darrell Shandrow - Shandrow Communications! Technology consultant/instructor, network/systems administrator! A+, CCNA, Network+! Check out high quality telecommunications services at http://ld.net/?nu7i All the best to coalition forces carrying out Operation Iraqi Freedom! ----- Original Message ----- From: "John Tolmachoff (Lists)" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Monday, August 04, 2003 5:48 PM Subject: RE: [SonicWALL]- VPN Ports? > For some reason, I want to say IP Protocol 15, not UDP or TCP. I am not > sure. > > Any way, I have never seen communications blocked on site to site VPN using > manual key across any connections. > > Are you experiencing a problem, or just want to know? > > John Tolmachoff MCSE CSSA > Engineer/Consultant > eServices For You > www.eservicesforyou.com > > > > -----Original Message----- > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On > > Behalf Of Paul Mills > > Sent: Monday, August 04, 2003 5:30 PM > > To: [EMAIL PROTECTED] > > Subject: RE: [SonicWALL]- VPN Ports? > > > > Hey John, > > > > > When using manual keys, IPSec is not used. IPSec uses UDP port 500, > which > > > many cable companies block inbound. > > > > That's interesting. So what do manual keys use then? > > > > > > --- > > [This E-mail scanned for viruses by Declude/F-Prot AV] > > > > =============================================================== > > ==================================== > > To unsubscribe, send email to [EMAIL PROTECTED] In the body of the email > put > > the following: unsubscribe sonicwall your_name > > The archive of this list is at > http://www.mail-archive.com/sonicwall%40peake.com/ > > > > > --- > [This E-mail scanned for viruses by Declude/F-Prot AV] > > To unsubscribe, send email to [EMAIL PROTECTED] In the body of the email put the following: unsubscribe sonicwall your_name > The archive of this list is at http://www.mail-archive.com/sonicwall%40peake.com/ > --- [This E-mail scanned for viruses by Declude/F-Prot AV] =================================================================================================== To unsubscribe, send email to [EMAIL PROTECTED] In the body of the email put the following: unsubscribe sonicwall your_name The archive of this list is at http://www.mail-archive.com/sonicwall%40peake.com/
