Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

MX68 allowing UDP 500 from internet

bszweda
New here
‎Nov 28 2023 1:22 PM
‎Nov 28 2023 1:22 PM

MX68 allowing UDP 500 from internet

Hi All,

 

I was checking my firewall logs on a MX68 and found one accepted connection over 500 UDP from an unauthorized IP address. This device does have an IPSEC site to site tunnel configured. ( Meraki to AWS) I just want to confirm this normal behavior due to using IPSEC site to site tunnels.  I do see "All networks"  is selected for availability.  Has anyone else encountered this before? 

 

Thanks

 

Labels:
0 Kudos
Subscribe
1 Reply 1
Obrez
Here to help
‎Nov 28 2023 1:32 PM
‎Nov 28 2023 1:32 PM

UDP 500 is used for ISAKMP phase 1 for tunnel encryption.  It is normal.

 

Cheers!

Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.