VPN

[FireMike84]

Hello,
I work for a resort where we offer High Speed Internet in our guest rooms along with High Speed Internet in out conference rooms. A vast majority of our clients are business related and need to connect back to there work through VPN for email, notes, etc. so we get a wide varitiy of different VPN type programs comming through. We have a Cisco 2600 series router that has an ACL in place and that ACL will not let VPN traffic out. My question: is there anything I can add to the ACL the would encompass multiple VPN programs, such as allowing a port or is this something that is not possibly and is based strictly on vendor.

Thanks

Mike Walton
Network+

 

[lgarner]

If you allow IPSEC, PPTP and SSL, you should be pretty well covered. Some VPNs have issues with NAT, if you're using that. Cisco has an option on the VPN endpoint to overcome this, PPTP can be a problem.

IPSEC - protocols 50 & 51, udp port 500
PPTP - protocol 47, tcp port 1723

 

[FireMike84]

Thanks,

I will give those a try. We are using dynamic NAT with a computer that is specifically mean't for resorty and it is suppose to do all the dynamic NATing for VPN for us. I will try your suggestions and keep you posted thanks.

Mike Walton
Network+