Jump to content
Sadikhov IT Certification forums
Sign in to follow this  
Pr0jecT

Modify IKE phase 1 & 2 ports of negotiation

Recommended Posts

Dear Members,

 

 

I was wondering, is it possible to change the port number of IKE phase 1 & IKE phase 2 to establish a vpn tunnel.

The tunnel would be formed between 1841 router & PIX515E.

The issue for this is that the local ISP closed all the ports related for VPN establishment, a work around would be assigning different ports to avoid their security, OR if there is any other workaround it would be perfect.

 

the configuration needed would be:

 

 

Policy:

pre-shared key

encryption 3des

hash md5

group 2

 

ip access-list extended ACCESS_LIST

permit x.x.x.x y.y.y.y host z.z.z.z

 

crypto isakmp key blabla address x.x.x.x

 

crypto ipsec transform-set BIG esp-3des esp-md5-hmac

 

crypto map Whatever 10 ipsec-isakmp

set peer x.x.x.x

set transofrm set BIG

match address ACCESS_LIST

 

Thank You

Share this post


Link to post
Share on other sites

I doubt it is possible; simply talk to your ISP, no ISP should filter VPN ports :lol:

Share this post


Link to post
Share on other sites

Dear Laf,

 

well thats the case with the ISP :D and they are refusing to open it. DO u think there might be a work around?

Share this post


Link to post
Share on other sites

Dear Laf,

 

well thats the case with the ISP :D and they are refusing to open it. DO u think there might be a work around?

 

Not for IPSEC at least, I know of no equipment able to modify the "negotiation ports". All I can think is other way of VPN: PPTP, open VPN, SSL VPN.

Share this post


Link to post
Share on other sites

Dear Laf,

 

thanks a lot for the help, i will be searching for what you've mentioned and try them.

 

 

Regards

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

Sign in to follow this  

×