Securing Remote Access Using Ipsec Vpn - Avaya 1000 Series Configuration Manual

IPSec EXAMPLES
To install the advanced VPN license and use all the security features available in this release,
enter:
/configure> system licenses advance_vpn
Enter Security Upgrade License key: 024f3bc296b4ea7265

Securing Remote Access Using IPSec VPN

The IPSec VPN features allow administrators to form a security tunnel to join two private
networks over the Internet. The following examples show how to set up an end-to-end tunnel
with a single proposal and pre-shared key authentication, with multiple proposals and pre-
shared key authentication, and with an SA Bundle, and pre-shared key authentication.
The corporate network no longer has a clearly defined perimeter inside secure building and
locked equipment closets. Increasingly, companies have a need to provide remote access to
their corporate resources for the employees on the move.
Traditionally, remote users could access the corporate LAN through dial-up and ISDN lines
which were terminated in the corporate remote access servers. However, these point-to-
point connection technologies do not scale well to the growing number of remote users and
the corresponding increase in the infrastructure investments and maintenance costs.
A solution to meeting the needs of increasing numbers of remote users and for controlling
access costs is to provide remote access through the Internet using firewalls and a Virtual
Private Network (VPN). Internet Protocol Security (IPSec) keeps the connection safe from
unauthorized users.
In a typical IPSec remote access scenario, the mobile user has connectivity to Internet and an
IPSec VPN client loaded on their PC. The remote user connects to the Internet through their
134 Avaya Secure Router 1000 Series Configuration Guide December 2010