All about VPN ports Rumi, January 26, 2017 1) If RRAS based VPN server is behind a firewall (i.e. a firewall is placed between Internet and RRAS server), then following ports need to be opened (bidirectional) on this firewall to allow VPN traffic to pass through: – For PPTP: IP Protocol=TCP, TCP Port number=1723 <- Used by PPTP control path IP Protocol=GRE (value 47) <- Used by PPTP data path For L2TP: IP Protocol Type=UDP, UDP Port Number=500 <- Used by IKEv1 (IPSec control path) IP Protocol Type=UDP, UDP Port Number=4500 <- Used by IKEv1 (IPSec control path) IP Protocol Type=ESP (value 50) <- Used by IPSec data path For SSTP: IP Protocol=TCP, TCP Port number=443 <- Used by SSTP control and data path For IKEv2: IP Protocol Type=UDP, UDP Port Number=500 <- Used by IKEv2 (IPSec control path) IP Protocol Type=UDP, UDP Port Number=4500 <- Used by IKEv2 (IPSec control path) IP Protocol Type=ESP (value 50) <- Used by IPSec data path 2) If RRAS server is directly connected to Internet, then you need to protect RRAS server from the Internet side (i.e. only allow access to the services on the public interface that isaccessible from the Internet side). For PPTP: IP Protocol=TCP, TCP Port number=1723 <- Used by PPTP control path IP Protocol=GRE (value 47) <- Used by PPTP data path For L2TP: IP Protocol Type=UDP, UDP Port Number=500 <- Used by IKEv1 (IPSec control path) IP Protocol Type=UDP, UDP Port Number=4500 <- Used by IKEv1 (IPSec control path) IP Protocol Type=UDP, UDP Port Number=1701 <- Used by L2TP control/data path IP Protocol Type=50 <- Used by data path (ESP) For SSTP: IP Protocol=TCP, TCP Port number=443 <- Used by SSTP control and data path For IKEv2: IP Protocol Type=UDP, UDP Port Number=500 <- Used by IKEv2 (IPSec control path) IP Protocol Type=UDP, UDP Port Number=4500 <- Used by IKEv2 (IPSec control path) IP Protocol Type=UDP, UDP Port Number=1701 <- Used by L2TP control/data path IP Protocol Type=50 <- Used by data path (ESP) Related Administrations vpn
Softether on VPS Using Local Bridge April 4, 2020 Problem on SecureNAT SecureNAT is a fairly simple way to setup Softether. You don’t need a lot of sysadmin skill and network understanding in order to get Softether up and running. The problem is SecureNAT is a bit SLOW. I will show a comparison at the end of this article. We… Read More
Install Ubuntu 8.04.2 (32 bit) Server June 28, 2009 It is recommended to use a clean (fresh) Ubuntu 8.04 LTS install where you selected no additional packages or servers during setup. : 1) Prepare your OS ******************************************************************************* Become root user by executing: ___ sudo su ___ and entering the password of the user that you created during setup. Edit… Read More
Install Discourse on Ubuntu 22.04 November 22, 2023 Prerequisites A server with Ubuntu 22.04 as OS Valid domain pointed to the servers IP address User privileges: root or non-root user with sudo privileges Step 1. Update the System Update the packages to their latest versions available after a fresh install of Ubuntu 22.04 sudo apt-get update -y &&… Read More