Security

Reply
d.p
Contributor I
Posts: 29
Registered: ‎08-29-2011

Allow IPSEC vpn client connectivity via wireless

Hello


We are running into an issue where ipsec vpn connecitvity isn't working on our guest wireless.  SSL VPN works as its 443 but anything ispec is blocked.  Do I need to allow that network service or is there an easier way?

 

Thanks

Aruba
Posts: 1,644
Registered: ‎04-13-2009

Re: Allow IPSEC vpn client connectivity via wireless

There is a predefined "vpnlogon" policy that permits all standard VPN protocols.    You could apply that to your guest role, or selectively add what you need.  

 

The following summarizes the ACL:

 

ip access-list session vpnlogon
user any svc-ike permit
user any svc-esp permit
any any svc-l2tp permit
any any svc-pptp permit
any any svc-gre permit
user any svc-natt permit

 

 

------------------------------------------------
Systems Engineer, Northeast USA
ACCX | ACDX | ACMX

Search Airheads
Showing results for 
Search instead for 
Did you mean: