What ports should I use to get the VPN RA worked?
Hello
I have a few tunnels l2l. I don't use "vpn sysopt connection permit" command. I prefer to activate the required ports for specific source IP. So they can establish the VPN tunnel with me.
Recently, I have configured remote access vpn. It is work very well... But only when I activate "vpn sysopt connection permit.
Question:
1. what ports need to be activated to get RA VPN work? (without vpn sysopt connection permit)
2. How can I restrict the access of remote when clients they connected to my private network?
Thank you
Leo
Hi Leo,
When you are not using 'connection sysopt... '. ", you must explicitly permit udp 500 and udp 4500, traffic esp on the outdoor access list.
Let's say that public intf outside ip address is x.x.x.x and pool customer, we use y.y.y.0 and you want to allow 'only' traffic for port 80 through the tunnel.
In the ACL on the outside, you need the following instructions:
access-list 101 permit udp any host x.x.x.x eq 500
access-list 101 permit udp any host x.x.x.x eq 4500
access-list 101 permit esp any host x.x.x.x
access-list 101 permit tcp y.y.y.0 255.255.255.0 eq 80
access-list 101 deny ip 255.255.255.0 y.y.y.0
* Please indicate the post if it helps.
-Kanishka
Tags: Cisco Security
Similar Questions
-
Order WMI - what command can I use to get the temperature of the GPU?
Which command can I use to get the temperature of the GPU in WMI?
Hi Daniel_99,
· Do you use some kind of scripts?
Your Windows XP question is more complex than what is generally answered in the Microsoft Answers forums. It is better suited for the IT Pro TechNet public. Please post your question in the TechNet Windows XP forum.
http://social.technet.Microsoft.com/forums/en-us/category/windowsxpitpro
I hope this helps.
-
What open firmware source for my valet M20 more should I use to get the internet to an xbox 360?
I have a Valet more M20 I want to use to connect my xbox 360 to the internet. I want to use it instead of getting a wireless adapter for my xbox 360.
Should I use Freifunk, openwrt or something else. DD - WRT seems to be updated more so I don't want that one, and I don't think it's compatible anyway.
Thank you for your time.
Hello
Please ask your question in the Xbox forum.
-
NB305 - what settings should I use to get 11 hours of battery life?
Hello
looking for help with my new NB305-10F. I just bought the netbook and drained the battery before recharging. I disabled the netbook for recharging. This morning when I turned on the computer it says 8 hours - it was me running with option power saver - with the brightness of the screen to a minimum.
So, my question is, what should I do for gt 11 hours of battery life as told when I bought the netbook? I hope that someone will be able to answer my question!
Thanks in advance.
Hi willbar,.
I think you should charege/charging the battery up to 5 - 10 times to get the maximum battery life and only 1 or 2 times it charges s not enough.
Also the battery life expectancy is depending on the applications that you are running. 11 hours, you won't get that if you don't do anything on the netbook, until it turn off by itself, but if you navigate in Internet, write emails and watch videos, 8 hours is really good and you can be satisfied with this :)
-
Hi, I love to type in English and Japanese. The Japanese Bar already has an English option it contains. So my questions are:
-Can I do Japanese - Romaji (English in the Japanese bar) my default-How can I switch the Japanese typing styles without clicking every time I need to change IE: shortcut keys-If the above are not possible there are at least the keys that toggle between English and Japanese in the language bar?Thanks in advance!Hello Lioaj88,
Please check these Japanese IME keyboard shortcuts.
To switch between English and Japanese:
SHIFT - ALT: toggle between English and Japanese fashionKeyboard shortcuts
ALT-~ (tilde): Cycles between kana and direct entry mode
ALT - SHIFT: Travels of available languages
ALT-CAPS_LOCK: Past in katakana input mode
CTRL-CAPS_LOCK: Past in hiragana input mode
Control - ~: Switches between the current entry mode and the English mode within the Japanese IME.
TIP: It is tedious to switch between input mode Hiragana and direct entry through the language bar. Instead, you can switch by pressing Alt + Tilde (key below ESC on your keyboard). So, if you need to type Japanese, press Alt + Tilde and start typing. When you are done press Alt + Tilde again to revert to English. To get the same result in Japanese mode, press Control - ~.
I hope this helps.
Thank you
-
What process can be used to transfer the Bill of costs to the Oracle projects?
Hello
What process should I use to transfer the charge for invoice (AP) Oracle projects?
Thank you
Veronica
Check the PRC: Interface Provider costs
Kind regards
CV
-
What should I do to get the rundll error load it says this c:\windows\system32\swwagui.dll, but when I search it he says that it excist doesint
yeremis,
You don't need to download the help file. So just follow the steps described in this article, that it will guide you through performing a clean boot. The boot will start Windows without other programs startup. This should stop any program that tries to use swwagui.dll. Then you can go back and turn on startup one items at a time to determine which type of program is causing the problem.If the error persists while in a clean boot state then you should try a restore of the system forward when the problem started. Mike - Engineer Support Microsoft Answers
Visit our Microsoft answers feedback Forum and let us know what you think. -
My laptop stopped recognizing wireless function. What drop-down list function should I use to get it to recognize wireless again?
Hello
What is the brand and model of your laptop?
Follow the suggestions and check out them.
Method 1
You can follow the procedure in the article.
Enable or disable a network adapter
http://Windows.Microsoft.com/en-us/Windows-Vista/enable-or-disable-a-network-adapter
Method 2
Windows wireless and wired network connection problems
See also:
Network adapter problems
http://Windows.Microsoft.com/en-us/Windows-Vista/troubleshoot-network-adapter-problems
-
I bought an image and the download is in a format that I can't open. #77602421. What should I do to get the photo in jpeg.
Thank you
You will need to use Illustrator to convert it to JPG. Or ask someone with Illustrator or compatible app to convert it for you. You can try to import into Photoshop for editing, but you will not be able to increase the size without loss of quality.
-
My photoshop elements 13 installation has been interrupted, I can't seem to get restarted, so I restarted my computer and I am still unable to restart the download. What should I do to get the download restarted?
Available downloadable Setup files:
- Suites and programs: CC 2014 | CC | CS6 | CS5.5 | CS5 | CS4, CS4 Web Standard | CS3
- Acrobat: XI, X | 9,8 | 9 standard
- First Elements: 13 | 12 | 11, 10 | 9, 8, 7 win | 8 mac | 7 mac
- Photoshop Elements: 13 | 12 | 11, 10 | 9,8,7 win | 8 mac | 7 mac
- Lightroom: 5.7.1. 5 | 4 | 3
- Captivate: 8 | 7 | 6 | 5.5, 5
- Contribute: CS5 | CS4, CS3
Download and installation help links Adobe
Help download and installation to Prodesigntools links can be found on the most linked pages. They are essential; especially steps 1, 2 and 3. If you click on a link that does not have these listed steps, open a second window by using the link to Lightroom 3 to see these "important Instructions".
-
Convert to PDF from word, the fonts are not included, the word doc record embedded fonts, but conversion does not incorporate fonts? What should I do to get the embedded fonts?
I used times new roman in word 2013. New file. Apparently the version of adobe that I use will not incorporate. I use the version line. I was told that I have to upgrade to Adobe Pro. I'm dealing with a patent application, so I can't share the document. The patent office cannot accept that documents with embedded fonts. My drawings that have been scanned and then converted are a problem too because I get an error based on the size of the page (23.6 "x 32.4") and I am unable to reduce this size in files from Adobe.com.
Unfortunately I signed up for this product that get these two converted documents and uploaded only to discover that the conversions will not download.
-
I have been using Photoshop CS5 for some time for photos products (jewelry). What are my best options to get the last Photoshop.
Hi michaelb.
You can subscribe to Plan photography for $9.99 a month, which will give the latest version of Photoshop CC 2015, CC 2015 Lightroom and Adobe Bridge.
Lightroom and Photoshop | Plan of cloud of Adobe's creative photography
Kind regards
Mohit
-
Hi, I have CC on my desktop computer. Yesterday I connected my laptop and tried to download PremierePro on it. I had only 30 months trial version. What should I do to get the CC version?
Hello
Please see the below help documents:
Applications creative Cloud back in test mode after an update until 2015 for CC
Kind regards
Sheena
-
I have questions on the use of the commercial license... Which forum should I use to get answers or how I can get in direct contact with adobe?
I have my answers! The chat feature did not work well... But I had contact, so everything is good now!
Thanks again!
-
I have Photoshop elements 11 (full version with serial number) for windows; now I have more to a windows PC. Can change my serial number of windows in a MAC/OS serial number? What should I do to get the items 11 (download) for OS, one a serial number for 11 elements?
You can download PES 11 via the following linked web page:
PES 10: 11 - http://helpx.adobe.com/photoshop-elements/kb/photoshop-elements-10-11-downloads.html
Maybe you are looking for
-
How can I turn off ctrl + left click?
HelloI don't need ctrl + click to do anything its just BOTHERING me so I want to disable itI couldn't find any extension to do Help, please
-
Apps print does not print with eStation C510a. Draws thin line at the top of the page.
My C510a eStation printer does not print using printing applications. Only, it prints a thin line at the top of page. Everything works fine until I feel. All other functions seem to work. It prints computer via WiFi. It prints when I send an emai
-
My laptop is not put into hibernation
I get the message Alp your pointing device prevents the system to Hibernate. If the problem reoccur, so far the pilot.I try to update, but there is not available so far.I had the same problem on my previous Satellite.Any suggestion?
-
Hi team, I have a question where adding a network printer is successful. I can see the printer in the Device Manager and I can print as well. However, it does not immediately appear under devices and printers and takes a long time to appear. Can some
-
How can I remove a trial account
How can I remove a test account. * E-mail address is removed from the privacy *