IPSec over TCP
Neil Watson
tlug-neil-8agRmHhQ+n2CxnSzwYWP7Q at public.gmane.org
Thu Dec 1 13:13:24 UTC 2005
On Wed, Nov 30, 2005 at 06:23:56PM -0500, Byron Sonne wrote:
>Hey Folks,
>
>Seems that 500/UDP is the main focus for IPSec. However, I need to be
>able to detect IPSec running over TCP, and of all the things I've played
>around with (gear at work running IPSec, swan, isakmpd, etc.) 500/TCP
>never seems to be open.
All my experienc with IPSec has involved
udp/500
protocols 50 and 51.
I believe that 50 and 51 must be active before UDP. I've never seen a
tcp/500 IPSec tunnel.
--
Neil Watson | Gentoo Linux
Network Administrator | Uptime 91 days
http://watson-wilson.ca | 2.6.11.4 AMD Athlon(tm) MP 2000+ x 2
--
The Toronto Linux Users Group. Meetings: http://tlug.ss.org
TLUG requests: Linux topics, No HTML, wrap text below 80 columns
How to UNSUBSCRIBE: http://tlug.ss.org/subscribe.shtml
More information about the Legacy
mailing list