UDP port 500 is a protocol for doing key exchanges for IPSec (and maybe others) VPN connections. I have not heard of any ISAKMP attacks (either tryiing to steal keys or DOS'ing the server), but there may be.
Tom Arseneault System Admin. GNAC Inc. On Fri, 18 Jan 2002, David Vogler wrote: > Hi all, > > I'm noticing an increasing number of denies in my log on port 500. The IANA > port list identifies this port as belonging to ISAKMP - I'll admit that I really > don't know what that is, even after I did a search on it. > Any idea why these packets are flying around the net? Any particular security > issues here? > > Thanks, > > Dave > > _______________________________________________ > Firewalls mailing list > [EMAIL PROTECTED] > http://lists.gnac.net/mailman/listinfo/firewalls > _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
