IPsec

From Protocolinfo

IPsec is a protocol for transferring data securely over a network through encryption. It is used by many VPN clients to connect to remote networks.

Contents 1 Identification 1.1 Ports 1.2 l7-filter 2 See also

[edit] Identification

[edit] Ports

Nortel Contivity VPN client (others may as well) uses IPsec protocol over UDP port 500. Nortel Contivity VPN client also reportedly uses variable ports starting at 10000 and incrementing by one for each open connection. (i.e. 10000, 10001, 10002...) Nortel Contivity VPN client also reportedly uses ESP 50.

[edit] l7-filter

May not be possible if the full IPsec packet is encrypted?

[edit] See also

• Wikipedia's IPsec article