topic ISAKMP on UDP Port 500 in Firewall and Security Management

ISAKMP on UDP Port 500

SecuRemote — Wed, 19 Aug 2020 03:35:00 GMT

Hi,

One of our clients vulnerability scan results shows that the ISAKMP on UDP port 500 that is using on IPSec Tunnels are open and can be the point of attack. Is there any documentation of Checkpoint response on the said port number and possible vulnerability attack? Upon checking on the support center I cannot find any.

Thank you.

Re: ISAKMP on UDP Port 500

PhoneBoy — Wed, 19 Aug 2020 04:06:46 GMT

IKE is generally allowed via implied rules.
If you have no VPNs configured and VPN/Mobile Access Blades are disabled there should be no risk.
Even if you have VPNs configured, there has, to my knowledge, been no demonstrated vulnerability here.

Re: ISAKMP on UDP Port 500

SecuRemote — Thu, 20 Aug 2020 05:41:33 GMT

Hi PhoneBoy

This is a big help, thank you