All about VPN ports Rumi, January 26, 2017 1) If RRAS based VPN server is behind a firewall (i.e. a firewall is placed between Internet and RRAS server), then following ports need to be opened (bidirectional) on this firewall to allow VPN traffic to pass through: – For PPTP: IP Protocol=TCP, TCP Port number=1723 <- Used by PPTP control path IP Protocol=GRE (value 47) <- Used by PPTP data path For L2TP: IP Protocol Type=UDP, UDP Port Number=500 <- Used by IKEv1 (IPSec control path) IP Protocol Type=UDP, UDP Port Number=4500 <- Used by IKEv1 (IPSec control path) IP Protocol Type=ESP (value 50) <- Used by IPSec data path For SSTP: IP Protocol=TCP, TCP Port number=443 <- Used by SSTP control and data path For IKEv2: IP Protocol Type=UDP, UDP Port Number=500 <- Used by IKEv2 (IPSec control path) IP Protocol Type=UDP, UDP Port Number=4500 <- Used by IKEv2 (IPSec control path) IP Protocol Type=ESP (value 50) <- Used by IPSec data path 2) If RRAS server is directly connected to Internet, then you need to protect RRAS server from the Internet side (i.e. only allow access to the services on the public interface that isaccessible from the Internet side). For PPTP: IP Protocol=TCP, TCP Port number=1723 <- Used by PPTP control path IP Protocol=GRE (value 47) <- Used by PPTP data path For L2TP: IP Protocol Type=UDP, UDP Port Number=500 <- Used by IKEv1 (IPSec control path) IP Protocol Type=UDP, UDP Port Number=4500 <- Used by IKEv1 (IPSec control path) IP Protocol Type=UDP, UDP Port Number=1701 <- Used by L2TP control/data path IP Protocol Type=50 <- Used by data path (ESP) For SSTP: IP Protocol=TCP, TCP Port number=443 <- Used by SSTP control and data path For IKEv2: IP Protocol Type=UDP, UDP Port Number=500 <- Used by IKEv2 (IPSec control path) IP Protocol Type=UDP, UDP Port Number=4500 <- Used by IKEv2 (IPSec control path) IP Protocol Type=UDP, UDP Port Number=1701 <- Used by L2TP control/data path IP Protocol Type=50 <- Used by data path (ESP) Related Administrations vpn
osTicket Automated Install Script December 13, 2021 osTicket is one of the leading open source ticketing systems. Here’s an easy way to spin up an instance on Ubuntu. Note: This script is purely intended for use in short-lived demo systems. The passwords are obvious (password !?) and there is no hardening applied to any of this system…. Read More
Convert .ova and import it on Proxmox KVM virtualization January 8, 2018 Let’s start uploading the exported ova file to the proxmox server. Extract the OVA file: tar -xvf *.ova This should output a couple of files from the OVA container, it should include an OVF file, which is the VM Defenition file, and a VMDK file, which is the actual hard… Read More
How to Install and Configure GitLab on Ubuntu 16.04 October 23, 2019 GitLab is an open source GIT repository manager based on Rails and developed by GitLab Inc. It is a web-based GIT repository manager that allows your team to work on code, track bugs and feature requests and to test and deploy applications. GitLab provides features like a wiki, issue tracking, code… Read More