Pix firewall for IPSEC VPN BEHIND a NAT router, which ports to pass?

I have a network inside of a network which is connected to the internet via a NAT firewall. I don't want to pass ALL ports (DMZ) to the inside pix firewall, so if I want to use Cisco's IPSEC client, which ports do I need to pass in order to make it work? Thanks.

500 points for a quick answer!
Who is Participating?
stressedout2004Connect With a Mentor Commented:
You need the following ports:

UDP 500
UDP 4500
Protocol ESP
it2gostlAuthor Commented:
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.