Hi,
Standard solution usually requires the following ports to be opened:
udp/500 - ISAKMP
udp/4500 - NAT-T, in case you have NAT somewhere in the path
esp (IP protocol 50)
HTH,
--
Piotr Matusiak
CCIE #19860 (R&S, Security)
Technical Instructor
website: www.MicronicsTraining.com
�If you can't explain it simply, you don't understand it well enough� -
Albert Einstein
2010/1/24 GULAM KAREEMUDDIN KHAN <gkareemk_at_gmail.com>
> Dear Experts,
>
> I have configured IOS-to-VPN Client (easy-vpn) and able to access server
> successfully from the client, I need to apply the access-list for VPN
> clients to allow only particular ports to be accessed from the client.
>
> Thanking you.
>
> BR
> Gulm Kareem
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
Blogs and organic groups at http://www.ccie.net
Received on Sun Jan 24 2010 - 14:53:19 ART