Its generally a good idea only to open ports that necesarry (eg. 80 for http, 21 for ftp, etc..). Opening up unnecesarry ports and/or running unnecesarry services just opens your server up to security vulnerabilities. In your case I don't really understand what you're trying to do. For a web server using SSL you only have to allow inbound traffic to port 443, you don't need port 80 open unless it also serves up unencrypted pages. If you want/need to use IPSEC you will need to allow inbound traffic on the UDP port 500 and allow IP protocols 50 and 51(not ports 50 and 51).
HTH, Don Nguyen Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=42334&t=42333 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]