Device Advanced

Examples of traffic destined for the private network are:

Decapsulated IPSec packets destined for the private network.

SNMP Get Responses being sent to a VPNmanager console residing on the private side of the VSU

Traps sent to a VPNmanager console residing on the private side of the VSU

Note:

It is important to remember that ARP often works in conjunction with the

Advanced Filter setting.

Device in parallel with firewall or router - For example, if you setup a VSU in parallel with a network device that provides firewall and routing services and you only want the VSU to:

send ARPs for addresses in its primary IP address space out the public interface and,

send ARPs for addresses in its private IP address space out the private interface,

you would then want to:

1.Set the above to “Bind one IP address to each port” and

2.Set the Advanced Filter to Deny all non-VPN traffic. The latter prevents a ARP from going out both interfaces.

Device in One-Arm Mode. - Suppose you have deployed the VSU in one-arm mode (which requires that only the private port be plugged into the network) and you have used the Bind one IP address to each port setting. This topology requires that the Advanced Filter setting be “Permit all non-VPN packets”. This allows ARPs for the VSU's primary IP address that come in the private port (remember it is the only port plugged in) to be resolved.

The “Bind Both Primary and Private IP Address to the Private Port” setting is available for legacy support. In particular, with this setting the VSU always ARPs out both ports independent of the Advanced Filter setting and it always uses the private port's MAC address for all packets originating from the VSU. Use this setting if you need a VSU running VPNOS 3.1.xx, or later, to support this legacy behavior.

Generally, only if the VSU firmware is earlier than 3.1, and the VSU is the only device between the internet and the private network (not in parallel with a firewall), is Bind both Primary and Private IP addresses to private port checked.

Path MTU Discovery

When a device communicates with another network device, it attempts to discover the largest packet it can transmit to the other network device. The largest packet the network can transmit is called maximum transmission unit (MTU).

Issue 4 May 2005 201

Page 200 Page 202
Page 201
Image 201
Avaya 3.7 manual Path MTU Discovery, You would then want to
Page 200 Page 202

3.7 specifications

Avaya 3.7 represents a significant evolution in unified communications technology, designed to enhance collaboration and streamline communication workflows for organizations of all sizes. As a cornerstone of Avaya's offerings, this version incorporates a range of features and improvements that cater to contemporary business needs, emphasizing flexibility, reliability, and seamless integration.

One of the most notable features of Avaya 3.7 is its robust call management capabilities. The platform allows users to manage calls effectively through a user-friendly interface, enabling intuitive functionalities such as drag-and-drop call handling, call forwarding, and conference calling. These features help employees stay connected, facilitating better communication and teamwork across departments.

In terms of mobility, Avaya 3.7 supports mobile applications that allow users to access the system remotely. This is particularly advantageous for businesses with a workforce that relies on remote or hybrid work models. The mobile integration ensures users can make and receive calls, check voicemail, and manage their schedules directly from their smartphones, maintaining productivity regardless of location.

The system also embraces advanced collaboration tools, such as video conferencing and instant messaging. These features promote a more dynamic interaction environment, fostering real-time communication among team members. Video conferencing capabilities allow for high-definition video quality and reliable connectivity, making virtual meetings more engaging and effective.

Security is another critical characteristic of Avaya 3.7. The platform includes enhanced encryption protocols to protect sensitive communications and ensure data integrity. With cybersecurity remaining a top concern for businesses, Avaya has prioritized the security of its communications solutions, safeguarding organizations' information against potential threats.

Furthermore, Avaya 3.7 benefits from the incorporation of AI and analytics. These technologies provide businesses with valuable insights into communication patterns and user behavior, enabling them to optimize their processes. The analytics can help identify areas for improvement and drive informed decision-making, thus enhancing overall efficiency.

Interoperability with existing systems is another hallmark of Avaya 3.7. The platform easily integrates with various applications and services, allowing businesses to leverage their current technology investments and create a cohesive communication ecosystem.

In summary, Avaya 3.7 stands out as a comprehensive communication solution that addresses the modern demands of the workplace. With its advanced call management features, mobility support, collaboration tools, strong security measures, and integration capabilities, Avaya 3.7 positions itself as a vital asset for organizations aiming to enhance their communication strategies and drive business success.
Top Page Image Contents