Supported VPN Gateway Devices
When requesting a VPN Gateway connection to the ESChat Cloud Services the Customer must provide the following information in the request:
Item |
How Used |
Comments |
The type of customer gateway (for example, Cisco ASA, Juniper J-Series, Juniper SSG, Yamaha) |
Specifies how to format the returned information that you use to configure the customer gateway. |
|
Internet-routable IP address (static) of the customer gateway's external interface. |
Used to create and configure your customer gateway |
The IP address value must be static and may be behind a device performing network address translation (NAT). To ensure that NAT traversal (NAT-T) can function, you must adjust your firewall rules to unblock UDP port 4500. |
(Optional) Border Gateway Protocol (BGP) Autonomous System Number (ASN) of the customer gateway, if you are creating a dynamically routed VPN connection. |
Used to create and configure your customer gateway By default we automatically use 65000 as the ASN. |
You can use an existing ASN assigned to your network. If you don't have one, you can use a private ASN (in the 64512–65534 range). We support 2-byte ASN numbers. |
Internal network IP ranges that you want advertised over the VPN connection to the VPC. |
Used to specify static routes. |
VPN connections are supported on the following hardware: | Statically rounded VPN Connections |
Cisco ASA 5500 Series version 8.2 or newer software | |
Cisco ISR running Cisco iOS 12.4 or newer software | |
Dell SonicWALL Next Generation Firewalls (TZ, NSA, SuperMassive Series) running SonicOS 5.8 or newer | |
Juniper J-Series Service Router running JuneOS 9.5 or newer software | |
Juniper SSG running ScreenOS 6.1, 6.2 or newer software | |
Juniper ISG running ScreenOS 6.1, 6.2 or newer software | |
Microsoft Windows Server 2008 R2 or newer software | |
Yamaha RTX1200 router |
Dynamically-routed VPN connections (required BGP): | Astaro Security Gateway running version 8.3 or newer |
Astaro Security Gateway Essential Firewall Edition running version 8.3 or newer | |
Cisco ISR running Cisco iOS 12.4 or newer software | |
Dell SonicWALL Next Generation Firewalls (TZ, NSA, Supermassive Series) running SonicOS 5.9 or newer | |
Fortinet Fortigate 40+ Series running FortiOS 4.0 or newer software | |
Juniper J-Series Service Router running JunOS 9.5 or newer software | |
Juniper SRX-Series Services Gateway running JunOS 9.5 or newer software | |
Juniper SSG running ScreenOS 6.1, or 6.2 or newer software | |
Juniper ISG running ScreenOS 6.1, or 6.2 or newer software | |
Palo Alto Networks PA Series running PANOS 4.1.2 or newer software | |
Vyatta Network OS 6.5 or newer software | |
Yamaha RTX1200 router |