How to create a custom F-Secure PSB Computer Protection profile to allow VPN traffic through the firewall? Which ports to open?

Issue:

  • After installing Computer Protection, VPN connection is blocked by the firewall feature. How to create a custom PSB Computer Protection profile to allow the VPN connection?
  • Which ports need to be opened to allow PPTP and L2TP through firewall?

Resolution:

In this case you have to create a custom profile and set a specific firewall rule.

Creating a custom profile.
  1. Log in to the F-Secure Protection Service for Business Portal.
  2. Chose Profiles.
  3. Select Computer Protection.
  4. Select the circular symbol with three dots in the middle next to the profile you want to clone.
  5. Press on clone profile.
  6. Enter a name and label of the new custom profile.
Creating a new VPN firewall rule.
  1. Select the profile you want to use.
  2. Select Firewall.
  3. Go to Firewall rules and select add rule.
  4. Enter a name and description of the rule, e.g Allow VPN.
  5. Under Action and direction, select Allow / Out
  • To allow PPTP tunnel maintenance traffic, open outbound TCP Port 1723.
  • To allow PPTP tunneled data to pass through router, open outbound Protocol 47 (GRE)
  • To allow Internet Key Exchange (IKE), open UDP Port 500.
  • To allow IPSec Network Address Translation (NAT-T) open UDP Port 5500.
  • To allow L2TP traffic, open UDP 1701 and Protocol ID 115
Assigning a profile.
  1. Select Devices.
  2. Choose device to which you want to assign a profile.
  3. Press on assign profile.
Note: Depending on the internet connection, the activation time of the rules may vary.

Article no: 000002583

Pricing & Product Info

For product info and pricing please go to the F-Secure product page

Version history
Revision #:
1 of 1
Last update:
4 weeks ago
Updated by: