CG-REDI Protocols and Ports

Document created by mathaker on Aug 22, 2014
Version 1Show Document
  • View in full screen mode

The following protocols and ports need to be opened in the partner premises gateway for CGR's communication with CG-REDI:

Outbound direction:

1. For IKEv2:

Source IP : <Global (CG-OS)/Inside Global Corporate (IOS) IPv4 address assigned to the router interface>

Source UDP Port: 500, 4500

Destination Subnet: 173.36.209.64 255.255.255.192

Destination UDP Port: 500, 4500

2. For IPSec Data traffic:

Source IP: <Global (CG-OS)/Inside Global Corporate (IOS) IPv4 address assigned to the router interface>

Destination Subnet: 173.36.209.64 255.255.255.192

IP Protocol Type: ESP (50)

3. SSH:

All TCP traffic with source port of 22 from Global IPv4 address of CGR (CG-OS) or Inside Global Corporate Address (IOS)

 

Inbound direction:

1. For IKEv2:

Source Subnet: 173.36.209.64 255.255.255.192

Source UDP Port: 500, 4500

Destination IP : <Global (CG-OS)/Inside Global Corporate (IOS) IPv4 address assigned to the router interface>

Destination UDP Port: 500, 4500

2. For IPSec Data traffic:

Source Subnet: 173.36.209.64 255.255.255.192

Destination IP : <Global (CG-OS)/Inside Global Corporate (IOS) IPv4 address assigned to the router interface>

IP Protocol Type: ESP (50)

3. SSH:

All TCP traffic to Global IPv4 address of CGR (CG-OS) or Inside Global Corporate Address (IOS) with destination port of 22.

Attachments

    Outcomes