Back to Help and Support
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
1

Ask

2

Reply

3

Solution

Port 500 required?

matt_hocker
2: Seeker
2: Seeker

‎24-11-2012 05:17 PM

I'm having trouble connecting my VSS 1st gen to my company-provided Cisco ASA. We have a static IPSec VPN in place between this ASA and our company VPN concentrator which uses port 500. I have no ability to change this.

 

I can set up a static IP address for the VSS and I can forward all the other ports to it, but I can't forward port 500 because that's in use by the VPN.

 

Will it work in this environment?

0 Thanks
2 REPLIES 2

bigsy
2: Seeker
2: Seeker

‎25-11-2012 06:39 PM

You could try adding 'inspect ipsec-pass-thru' to the ASA global policy-map. This works for me without the need to forward any ports on an ASA 5505 (running ASA v9.01, VSS third generation).

Jenny
Moderator (Retired)
Moderator (Retired)
In response to bigsy

‎27-11-2012 12:23 PM

 Hi matt_hocker,

 

Welcome to the eForum! :Smiling:

 

Have you tried bigsy’s suggestion above? Please give this a go and let us know how you get on.

 

Thanks,

 

Jenny

0 Thanks