Avaya G250 Administration page 506
Media gateways
Hide thumbs
Also See for G250:
- Administration manual (840 pages) ,
- Reference (812 pages) ,
- Administration (620 pages)
Table of Contents
Advertisement
Configuring IPSec VPN
Table 65: Configuring VPN hub redundancy and load sharing topologies
Traffic
Direction
Ingress
Ingress
Ingress
Ingress
Egress
Egress
Egress
Egress
Configure dynamic routing (OSPF or RIP) to run over local data interfaces (data
●
VLANs) and on the GRE interfaces.
2. Configure the VPN Hubs (Main Offices) as follows:
The VPN policy portion for the branch is configured as a mirror image of the branch.
●
The ACL portion for the branch is a mirror image of the branch, with some minor
●
modifications.
The GRE tunnel interface is configured for the branch.
●
Dynamic routing (OSPF or RIP) is configured to run over the GRE interface to the
●
branch.
506 Administration for the Avaya G250 and Avaya G350 Media Gateways
ACL parameter
IKE (UDP/500) from
remote tunnel endpoint to
local tunnel endpoint
ESP/AH from remote
tunnel endpoint to local
tunnel endpoint
Allowed ICMP from any IP
address to local tunnel
endpoint
Default
IKE (UDP/500) from local
tunnel endpoint to remote
tunnel endpoint
All allowed services from
any local subnet to any IP
address
Allowed ICMP from local
tunnel endpoint to any IP
address
Default
ACL
Description
value
Permit
-
Permit
-
Permit
-
Deny
-
Permit
-
Permit
-
Permit
-
Deny
-
Advertisement
Table of Contents
