Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Not applicable

IPSec Port 4500 needed?

Hi there, i' ve a serious problem with a IPSec-VPN Site to Site connection. At one site i do not have port udp 4500 open and the connection fails. Is there a possibility to change the remote port for IPSec-VPN? Thanks for your help.
3 REPLIES 3
doshbass
New Contributor III

IPSEC does not use udp port 4500, IPSEC is an IP protocol and teh suite uses port 500 for IKE negotiation in Phase 1. Perhaps the remote end is setup to tunnel IPSEC over udp port 4500.
Still learning to type " the"
Still learning to type " the"
Not applicable

Can I change the remote port? Everytime I close the 4500 an open another port for that i get an error. The firewall between logs that always port 4500 is tried by the remote firewall.
abelio

IPsec usually encapsulates within 4500/UDP to traverse ' NATters' devices (rfc3948) Check both peers playing with NAT traversal settings

regards




/ Abel

regards / Abel
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors