Configuring VPN objects

IKE VPNs

Note:

IKE VPNs are supported in VPNremote Client 3.0 and later.

An IKE VPN can run in certificate or preshared secret authentication mode. Also, IKE VPNs always operate in tunnel mode, which means the entire original packet (header and payload) is encrypted and inserted in the payload of an IPSec packet before it goes out to the public networks.

Certificate mode involves the exchange of X.509 public-key certificates between endpoints of a VPN tunnel to authenticate VPN tunnel end points. A certificate belonging to a specific endpoint is authenticated by a third party certificate called an issuer’s certificate. Certificates can be obtained from a third party Public Key Infrastructure (PKI). See for more information about using a PKI. Certificate based VPNs cannot be manually rekeyed.

Preshared Secret mode involves the Diffie-Hellman algorithm for creating a shared secret key that is used for authenticating VPN traffic. Large prime numbers and modular arithmetic equations are exchanged between endpoints. Each endpoint uses the equations and numbers to calculate the same shared secret key. The tunnel endpoints then use the shared secret key to authenticate each other’s traffic. Even if the prime numbers and equations become publicly known, the protocol still protects the shared secret key. As an added security measure, preshared secret can be manually rekeyed at any time.

VPN packet processing modes

There are two ways to process packets when forming VPNs: transport mode and tunnel mode.

In transport mode, IP packets sent between VPN members are secured by applying VPN services to the IP packet payload, leaving the original addressing header unchanged.

Original IP Packet

Source Dest. Address Address

Payload

Source Dest. Address Address

IPSec/SKIP Overhead

Payload with Applied VPN Services

Transport Mode

Secured VPN IP Packet

134 Avaya VPNmanager Configuration Guide Release 3.7

Page 133 Page 135
Page 134
Image 134
Avaya 3.7 manual IKE VPNs, VPN packet processing modes
Page 133 Page 135

3.7 specifications

Avaya 3.7 represents a significant evolution in unified communications technology, designed to enhance collaboration and streamline communication workflows for organizations of all sizes. As a cornerstone of Avaya's offerings, this version incorporates a range of features and improvements that cater to contemporary business needs, emphasizing flexibility, reliability, and seamless integration.

One of the most notable features of Avaya 3.7 is its robust call management capabilities. The platform allows users to manage calls effectively through a user-friendly interface, enabling intuitive functionalities such as drag-and-drop call handling, call forwarding, and conference calling. These features help employees stay connected, facilitating better communication and teamwork across departments.

In terms of mobility, Avaya 3.7 supports mobile applications that allow users to access the system remotely. This is particularly advantageous for businesses with a workforce that relies on remote or hybrid work models. The mobile integration ensures users can make and receive calls, check voicemail, and manage their schedules directly from their smartphones, maintaining productivity regardless of location.

The system also embraces advanced collaboration tools, such as video conferencing and instant messaging. These features promote a more dynamic interaction environment, fostering real-time communication among team members. Video conferencing capabilities allow for high-definition video quality and reliable connectivity, making virtual meetings more engaging and effective.

Security is another critical characteristic of Avaya 3.7. The platform includes enhanced encryption protocols to protect sensitive communications and ensure data integrity. With cybersecurity remaining a top concern for businesses, Avaya has prioritized the security of its communications solutions, safeguarding organizations' information against potential threats.

Furthermore, Avaya 3.7 benefits from the incorporation of AI and analytics. These technologies provide businesses with valuable insights into communication patterns and user behavior, enabling them to optimize their processes. The analytics can help identify areas for improvement and drive informed decision-making, thus enhancing overall efficiency.

Interoperability with existing systems is another hallmark of Avaya 3.7. The platform easily integrates with various applications and services, allowing businesses to leverage their current technology investments and create a cohesive communication ecosystem.

In summary, Avaya 3.7 stands out as a comprehensive communication solution that addresses the modern demands of the workplace. With its advanced call management features, mobility support, collaboration tools, strong security measures, and integration capabilities, Avaya 3.7 positions itself as a vital asset for organizations aiming to enhance their communication strategies and drive business success.
Top Page Image Contents