< Home

ipsec nat-traversal source-port

Function

The ipsec nat-traversal source-port command configures a UDP port number for IPSec NAT traversal.

The undo ipsec nat-traversal source-port command restores the default UDP port number for IPSec NAT traversal.

By default, the UDP port number for IPSec NAT traversal is 4500.

The virtual system does not support this command.

Format

ipsec nat-traversal source-port port-number [ port-number2 ]

undo ipsec nat-traversal source-port

Parameters

Parameter Description Value
port-number Specifies the UDP port number for IPSec NAT traversal. The value is an integer that ranges from 4501 to 49151.
port-number2 Specifies the end UDP port number for IPSec NAT traversal. The value is an integer that ranges from 4501 to 49151.

Views

System view

Default Level

2: Configuration level

Usage Guidelines

By default, IPSec NAT traversal uses UDP port 4500. If you want to use another UDP port for IPSec NAT traversal, run the ipsec nat-traversal source-port command.

If multiple UDP port numbers are configured, the device matches the port number from the smallest value after receiving an IPSec negotiation packet, until a value matches.

Example

# Set a UDP port number for IPSec NAT traversal.

<sysname> system-view
[sysname] ipsec nat-traversal source-port 4510
Parent Topic: IPSec Configuration Commands
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >