VIP Enterprise Gateway Outbound UDP Port Range
search cancel

VIP Enterprise Gateway Outbound UDP Port Range


Article ID: 170902


Updated On:


VIP Service


RADIUS Validation server tests from the VIP Enterprise Gateway may return a successful login using vsradiusclient_test.exe, but may fail from the RADIUS client/NAS. 


UDP high ports closed on the firewall


The RADIUS client may choose a random UDP port to communicate to the VIP RADIUS Server on a specific port. The RADIUS request may originate from a high port on the client to the VIP Enterprise Gateway server port, for example, 1815. The VIP Enterprise Gateway server (RADIUS) response will be sent from port 1815 to the client on the same originating port.

VIP RADIUS traffic is internal. Hence, allowing all outbound UDP traffic from the Enterprise Gateway to the originating client(s) is recommended. 

Inress/egress Wireshark sample showing client using port 54658 to VIP RADIUS server port 1814: