IPSEC Messages information
Hi,
When i am connecting to a Cisco VPN server from my LAN PC through a ASA Firewall , I have the connection status from my PC to VPN server ,it shows athe following messages
"
SEZ-ODC5-Firewall# sh conn address 172.18.140.79
783 in use, 2924 most used
GRE outside 164.77.210.178:36096 inside 172.18.140.79:1723, idle 0:00:00, bytes
4173, flags E
TCP outside 164.77.210.178:1723 inside 172.18.140.79:53703, idle 0:00:00, bytes
560, flags UIO
UDP outside 164.77.210.178:500 inside 172.18.140.79:500, idle 0:01:38, bytes 158
4, flags -
GRE outside 164.77.210.178:1723 inside 172.18.140.79:25138, idle 0:00:00, bytes
2285, flags E
"
Waht are the Meaning of Source Ports to destination and how can i confirm is that system is connected to VPN server .
Ex: In the Following message take the First line :
GRE outside 164.77.210.178:36096 inside 172.18.140.79:1723, idle 0:00:00, bytes
4173, flags E
What is the line means from Source port 1723 to destintion port 36096.. What is the connection means
Regards
Ramu
When i am connecting to a Cisco VPN server from my LAN PC through a ASA Firewall , I have the connection status from my PC to VPN server ,it shows athe following messages
"
SEZ-ODC5-Firewall# sh conn address 172.18.140.79
783 in use, 2924 most used
GRE outside 164.77.210.178:36096 inside 172.18.140.79:1723, idle 0:00:00, bytes
4173, flags E
TCP outside 164.77.210.178:1723 inside 172.18.140.79:53703, idle 0:00:00, bytes
560, flags UIO
UDP outside 164.77.210.178:500 inside 172.18.140.79:500, idle 0:01:38, bytes 158
4, flags -
GRE outside 164.77.210.178:1723 inside 172.18.140.79:25138, idle 0:00:00, bytes
2285, flags E
"
Waht are the Meaning of Source Ports to destination and how can i confirm is that system is connected to VPN server .
Ex: In the Following message take the First line :
GRE outside 164.77.210.178:36096 inside 172.18.140.79:1723, idle 0:00:00, bytes
4173, flags E
What is the line means from Source port 1723 to destintion port 36096.. What is the connection means
Regards
Ramu
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks
ASKER
1) What is the meaning of the following message :
TCP outside 164.77.210.178:1723 inside 172.18.140.79:53703, idle 0:00:00, bytes
560, flags UIO
2) What is the meaning og the following message :
GRE outside 164.77.210.178:1723 inside 172.18.140.79:25138, idle 0:00:00, bytes
2285, flags E
In the First message from Source to destination TCP connection has formed with 1723(PPTP)
In the Second Message from Source to destination GRE connection has formed with 1723(PPTP).
here 164.77.210.178 is VPN server (PPTP server)
What is the difference between above two and what does it means.
3) What is the meaning og the following message :
UDP outside 164.77.210.178:500 inside 172.18.140.79:500, idle 0:01:38, bytes 158
4, flags -
From the above message Is IKE has establsihed or negotiating?
IS IKE traffic is a UDP traffic ? means a Phase-1 traffic
What are the meaning of the Flags :
UIO
E
-
Regards
ramu