Configuration Examples; Ipsec Remote Access User Group Method: Single Proposal, Pre-Shared Key Authentication - Avaya 1000 Series Configuration Manual

Configuration Examples

The following examples illustrate configurations for creating secure remote VPN access to:
• An individual SNMP user managing the gateway (user group method)
• The corporate LAN for multiple users (mode configuration method)
IPSec Remote Access User Group Method: Single Proposal,
Pre-shared Key Authentication
The following example demonstrates how to manage the Avaya gateway from a secure VPN
management host. An application would look like a host in a remote site is interested in
managing the Secure Router using SNMP. But the remote host is interested in doing securely.
The SNMP response that is generated in Secure Router for a request from the management
host is called self-generated traffic.
The Avaya gateway provides a map called Self for self-generated traffic. This map is created
automatically when the gateway comes up.
The security requirements for the management tunnel are:
• 3DES with SHA1,Pre-shared key authentication, XAuth
• IPSec ESP with AES128 and HMAC-SHA1
Avaya Secure Router 1000 Series Configuration Guide
Configuration Examples
December 2010 235