port security
DePriest, Jason R.
jrdepriest at FTB.COM
Wed Jul 26 13:58:22 EDT 2000
I imagine it depends on the VPN product being used.
For PowerVPN, I was given the following requirements for ports that had to
be open:
TCP Port 420 (SMTP?)
UPD Port 500 (ISAKMP - Internet Security Association and Key Management
Protocol)
IP protocol 94 (IPIP - IP Encapsulation within IP)
IP protocol 50 (ESP - Encapsulated Security Payload)
IP protocol 51 (AH - Authentication Header)
I hope this at least gives you a place to start.
Thank you!
Jason R DePriest, Network and Systems Administrator
First Tennessee National Corporation
InterActive Services Department
ph: 901/523-5777, fax: 901/523-5527
email: jrdepriest at ftb.com
Disclaimer:
The views expressed in this message, while not necessarily the views of
First Tennessee, are none-the-less confidential and not to be freely
distributed to external sources without explicit permission from the sender
of this message or from First Tennessee National Corporation.
"I have never let my schooling interfere with my education."
- Mark Twain
=> -----Original Message-----
=> From: David Croxford [mailto:dcroxford at TICKETS.COM]
=> Sent: Wednesday, July 26, 2000 11:24 AM
=> To: VPN at SECURITYFOCUS.COM
=> Subject: port security
=>
=>
=> our office is temporarily without a system administrator,
=> and since I'm the
=> closest thing to one that we have...I've been elected to
=> take care of things
=> for the time being. anyways, a question about VPN and port
=> security. When
=> someone sets up a vpn client at home and is using a firewall
=> there, is there
=> a specific port that VPN runs on with windows 98 that needs
=> to be opened up?
=> The problem is, one of our support people has a cable modem
=> and is trying to
=> connect, he initiates the connection and it times out.
=> Since I can connect
=> from home the same way, I'm assuming its something with his
=> firewall..being
=> able to get out of his firewall, but nothing getting back in. So, if
=> there's a specific port that VPN runs on...then he could
=> just open his
=> firewall for that port and our VPN IP address. any help would be
=> appreciated!!
=>
=> David Croxford
=> Prologue Quality Assurance
=> QA Analyst - Tickets.com
=> 608-236-1017
=> dcroxford at tickets.com
=>
=> VPN is sponsored by SecurityFocus.COM
=>
VPN is sponsored by SecurityFocus.COM
More information about the VPN
mailing list