NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

zeppelinux's avatar
zeppelinux
Aspirant
Jun 21, 2017

Enable IPSec UDP ports for all hosts behind firewall

Hi All,   I'm trying to make the IPSec working in hybrid environment (home network/cloud), here is the original problem:     https://forums.rancher.com/t/hybrid-cloud-home-network/6646/3   I up...
Security
Solutions
Troubleshooting
zeppelinux's avatar
zeppelinux
Aspirant
Jun 26, 2017

Hi John,

 

Thanks for reply! I'm trying to use the Rancher for managing Docker containers running on my home network and in the cloud (Hubrid network). Rancher connects all the hosts (that supposed to run managed containers) by creating Network overlay (IPSec agent is deployed and running on each host). One of the requirements for this Network Overlay to be functional is to make sure all the 500 and 4500 UDP ports traffic is flowing between ALL participating hosts.

When there is no NAT - everything is working perfcetly and seems like NAT makes this use case invalid i.e. acoring to the response in the Rancher forum there is no way this can work :(

 

Cheers,

Dmitry 

 

JohnC_V's avatar
JohnC_V
NETGEAR Employee Retired
Jun 27, 2017

zeppelinux,

 

Please try to open a port from the firewall. Go to Security > Services - Create the specific UDP ports that needs to be opened. Then go to Security > Firewall > Inbound Services - ADD the service that you created and then point it to your LAN Server.

 

Kindly check the manual here(page 130).

 

Regards,

NETGEAR Academy

Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology! 

Join Us!

ProSupport for Business

Comprehensive support plans for maximum network uptime and business peace of mind.

 

Learn More