Skip navigation
McAfee Secure sites help keep you safe from identity theft, credit card fraud, spyware, spam, viruses and online scams
1044 Views 2 Replies Latest reply: Nov 12, 2012 11:15 AM by mtuma RSS
Travler The Place at McAfee Member 255 posts since
Mar 28, 2008
Currently Being Moderated

Nov 9, 2012 11:23 AM

Determining ports for Cisco VPN client

I'm trying to create a policy to allow specific workstations to connect through a Cisco VPN client to one of our partner businesses.  The client is:

Cisco Systems VPN Client Version 4.8.01.0300

It is using "Enable Transparent Tunneling" by "IPSec over UDP ( NAT / PAT )"

 

My problem is determing exactly which UDP ports this uses.  Based on info from our partner site, I've attempted the following UDP ports to no avail:

22

500

513

2000-2017

4000

 

However, if I set the policy to allow ALL UDP ports (1-65535) then the connection is successful. 

 

Is there an easy way of discovering which ports are actually being used?

 

TIA


ePO 4.6.6 (Build: 176)
MA 4.8.0.1500

VSE 8.8.0.975, 5400 Engine (2600+ systems)
EE Agent 7.0.3.413
EEPC 7.0.3.413
Intrushield 5.1.17.7
I-2700 Sensor 5.1.5.217

MWG 7.3.2.8.0 (17286)
MWR 5.2 (Build: 1086)
MFE 8.3.2 Patch2
  • mtuma McAfee SME 314 posts since
    Nov 3, 2009
    Currently Being Moderated
    2. Nov 12, 2012 11:15 AM (in response to Travler)
    Re: Determining ports for Cisco VPN client

    Sorry about not responding earlier, it appears that you are good to go.

     

    I just wanted to mention that the audit viewing would be good in this situation as well. You could see what port(s) the firewall was blocking.

     

    -Matt

More Like This

  • Retrieving data ...

Bookmarked By (0)

Legend

  • Correct Answers - 5 points
  • Helpful Answers - 3 points