Meraki

FishMan · ‎Nov 22 2023

i have a juniper VPN need to install, a testing tool to test for

1. Port UDP/IKE 500: OK

2. Port UDP/NAT-T 4500: OK

3. Port ESP IP protocol 50: FAILED

can someone help why port ESP IP protocol 50: FAILED and how to fixed

Regards

KarstenI · ‎Nov 23 2023

Is your VPN gateway behind a NAT or PAT gateway? Then you don't need IP/50. And with PAT it typically can't be forwarded as there are no ports to translate.

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.

FishMan · ‎Nov 23 2023

Thanks Karstenl

currently i use port forwarding

but they need to make sure that all testing ok with no failed, how could I get this done

Regards

KarstenI · ‎Nov 24 2023

Then you probably have to configure a 1:1 NAT with a free IP and forward all traffic.

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.

FishMan · ‎Nov 25 2023

Hi Karsrenl

can you guide how to do 1:1NAT

Regards

KarstenI · ‎Nov 25 2023

it's well described in the documentation:

https://documentation.meraki.com/MX/NAT_and_Port_Forwarding/Port_Forwarding_and_NAT_Rules_on_the_MX

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.

FishMan · ‎Nov 26 2023

i am looking forward on how to allow /16 range to one private ip address using 1:1NAT

Regards

KarstenI · ‎Nov 26 2023

Where does this /16 come from? If you have one VPN gateway you need one IP address.

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.

Meraki

Community

Port ESP IP protocol 50 test failed

Port ESP IP protocol 50 test failed