322 Avaya VPNmanager Configuration Guide Release 3 .7
Index
IPSec engine status . . . . . . . . . . . . . . . .284
IPSec Proposals. . . . . . . . . . . . . . . . . .145
ISAKMP. . . . . . . . . . . . . . . . . . . . . . 135
Issuer Certificates, about. . . . . . . . . . . . . .238
KKeep alive
detailed description . . . . . . . . . . . . . . .232
Keep State . . . . . . . . . . . . . . . . . . . .188
key management protocols. . . . . . . . . . . . . 135
keying algorithm (modulus) in an IKE VPN. . . . . .154
LLDAP Authentication. . . . . . . . . . . . . 11 0, 313
LDAP directory context field . . . . . . . . . . . . 51
license, upgrade. . . . . . . . . . . . . . . . . .290
lifetime . . . . . . . . . . . . . . . . . . . . . . 143
lifetime (IPSEC) . . . . . . . . . . . . . . . . . .147
Lifetime options (IPSec), rekeying. . . . . . . . . .15 5
Lifetime options, key . . . . . . . . . . . . . . . .153
limitation
NAT (Network Address Translation) . . . . . . . 90
Local Authentication . . . . . . . . . . . . . . . . 110
local DHCP Server. . . . . . . . . . . . . . . . . 71
Log Group, parameters. . . . . . . . . . . . . . .252
LRQ, learn request. . . . . . . . . . . . . . . . . 177
LZS. . . . . . . . . . . . . . . . . . . . . . . . 145
LZS drop-down list. . . . . . . . . . . . . . . . .153
Mmanagement zone. . . . . . . . . . . . . . . . . 69
marking packets, about. . . . . . . . . . . . . . .192
MD5 authentication (SKIP), selecting . . . . . . . . 151
MD5 authentication, selecting. . . . . . . . . . . .153
Members-IP Groups tab . . . . . . . . . . . . . . 152
Members-IP Groups tab (SKIP VPN Object) . . . . . 151
Members-Users tab . . . . . . . . . . . . . . . . 152
Members-Users tab (SKIP VPN Object) . . . . . . . 151
Memo tab (for User Objects) . . . . . . . . . . . .11 8
Memo tab (SKIP VPN Object) . . . . . . . . . . . 150
Memo tab (VPN Object) . . . . . . . . . . . . . . 152
MIBS, SNMP . . . . . . . . . . . . . . . . . . . 17
mode
Certificate . . . . . . . . . . . . . . . . . . . 134
New PIN . . . . . . . . . . . . . . . . . . . . 106
Next Token. . . . . . . . . . . . . . . . . . . 106
Preshared Secret . . . . . . . . . . . . . . . . 134
Transport . . . . . . . . . . . . . . . . . . .133
Tunnel . . . . . . . . . . . . . . . . . . . . .13 3
Modify Secret button . . . . . . . . . . . . . . . .153
modulus in IKE VPNs, keying algorithm . . . . . . .154
Monitor
Monitor Wizard . . . . . . . . . . . . . . . . 250
Monitoring Groups . . . . . . . . . . . . . . . . 25 1
MTU
Drop all IP Fragments check box. . . . . . . . 192
path discovery, configuring. . . . . . . . . . . 202
Nnaming
VPNs. . . . . . . . . . . . . . . . . . . . . . 55
NAT
about NAT services . . . . . . . . . . . . . . . 85
and Packet Filtering . . . . . . . . . . . . . . 185
configuring . . . . . . . . . . . . . . . . . . . 86
port. . . . . . . . . . . . . . . . . . . . . 29, 85
port redirection . . . . . . . . . . . . . . . 29, 85
static . . . . . . . . . . . . . . . . . . . . 29, 85
translation types. . . . . . . . . . . . . . . . . 95
NAT (Network Address Translation)
address mapping rules. . . . . . . . . . . . . . 89
applications. . . . . . . . . . . . . . . . . . . 88
configuring . . . . . . . . . . . . . . . . . . . 94
dynamic mapping . . . . . . . . . . . . . . . . 88
limitation . . . . . . . . . . . . . . . . . . . . 90
port mapping . . . . . . . . . . . . . . . . . . 88
private addresses . . . . . . . . . . . . . . . . 88
static mapping . . . . . . . . . . . . . . . . . 88
tunnel . . . . . . . . . . . . . . . . . . . . . 95
use existing groups . . . . . . . . . . . . . . . 94
NAT, consideration for setting up with firewall rules. 16 7
network inteterface, to change. . . . . . . . . . . . 73
network zones . . . . . . . . . . . . . . . . . . . 67
network zones table by security gateway. . . . . 25, 67
New PIN mode . . . . . . . . . . . . . . . . . . 106
New VPN dialog box . . . . . . 55, 97, 115 , 129, 136
Next Token mode. . . . . . . . . . . . . . . . . 106
Non VPN traffic, filtering out all . . . . . . . . . . 192
Non-IP traffic, filtering out all . . . . . . . . . . . 192
PPacket Filtering
Access Control List (ACL), using the . . . . . . 190
Denying all Non VPN Traffic . . . . . . . . . . 192
Denying all Non-IP Traffic . . . . . . . . . . . 192
detailed explanation . . . . . . . . . . . . . . 184
Drop all IP Fragments option. . . . . . . . . . 192
Filter Statistics . . . . . . . . . . . . . . . . 192
Managing the ACL. . . . . . . . . . . . . . . 190
Packet Filtering Policy Wizard, running the . . . 189
Permitting all Non VPN Traffic . . . . . . . . . 192
Policy Manager for Packet Filtering, running the. 190
Short IP Packets . . . . . . . . . . . . . . . 192
Packet Filtering/QOS . . . . . . . . . . . . . . . 186