Port that must be opened by the juniper firewall for ipsec vpn

Source: Internet
Author: User

Firewalls are often deployed on the edge of our network environment to isolate the network and protect the security of the Intranet and Internet. For example, in the edge network, MIP a public IP address to a VPN device on the Intranet, for the sake of security, EDGE networks need to have selective open ports or Protocols. MIP is as follows: 650) this. width = 650; "border =" 0 "alt =" "src =" http://www.bkjia.com/uploads/allimg/131227/0FP912P-0.jpg "/>

If IKE must be enabled during ipsec vpn, the corresponding port number UDP: 500, and sometimes port UDP: 4500 should be enabled to penetrate the NAT device, the information found on the internet is generally to open these two ports, so that we can do it through the ipsec vpn, but the VPN does not work, the tunnel cannot be established, refer to the relevant information prompts to activate the esp protocol, esp uses the protocol numbers 50 and 51. The activation protocol numbers under juniper are as follows:

650) this. width = 650; "border =" 0 "alt =" "src =" http://www.bkjia.com/uploads/allimg/131227/0FP9D25-1.jpg "/>

Finally, I open the untrust-trust Service custom ipsec vpn:

650) this. width = 650; "border =" 0 "alt =" "src =" http://www.bkjia.com/uploads/allimg/131227/0FP92T4-2.jpg "/>

In addition, open UDP: 1701 for l2tp vpn

Pptp vpn must open TCP: 1723

Related Article

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.