Setting up the network

When the SF_VSU receives the reply packet through the tunnel, the tunnel NAT rule changes the packet’s destination address from 172.16.0.17 to 10.1.1.17 and the private interface NAT rule changes the packet’s source address from 172.16.1.20 to 10.0.88.20 before the packet is sent out to the SF_Sales_Group client through the private interface.

The NAT rule applied to the public interface on each of the VSUs allows clients on the private networks to access the Internet by mapping their private addresses to public address as described in the previous section Accessing the Internet from private networks.

Using NAT to support multiple gateway configurations

Figure 30 shows an example of using NAT to ensure that all replies to packets entering the network through a security gateway exit the network through the same security gateway. The NAT rule applied to the security gateway-B private interface dynamically maps the source IP address of packets sent out the private interface of the security gateway-B to one of 16 addresses assigned to the security gateway-B address pool. Note that the IP address 0.0.0.0/0 matches any packet entering or leaving the security gateway through the designated interface.

When a packet is initially sent from Host A to Host B through the VPN tunnel, security gateway-B dynamically maps the packet source address (X1.X2.X3.11) to an IP address selected from the address pool (Y1.Y2.Y3.X) before sending the packet out the private interface. As a result, reply packets destined for Host A are sent to Y1.Y2.Y3.X. security gateway-B proxy ARPs for Y1.Y2.Y3.X by sending its own MAC address in response to an ARP request from Host B. When security gateway-B receives a reply packet on the private interface, it changes the packet’s destination address (Y1.Y2.Y3.X) back to the original address (X1.X2.X3.11) before sending the reply to Host A through the VPN tunnel.

A possible alternative to configuring a NAT rule on the private interface of security gateway-B shown in Using NAT to Support Multiple Gateways is to add a static route to the default router which sends packets destined for the X1.X2.X3.0/24 network through security gateway-B.

92 Avaya VPNmanager Configuration Guide Release 3.7

Page 91 Page 93
Page 92
Image 92
Avaya 3.7 manual Using NAT to support multiple gateway configurations
Page 91 Page 93

3.7 specifications

Avaya 3.7 represents a significant evolution in unified communications technology, designed to enhance collaboration and streamline communication workflows for organizations of all sizes. As a cornerstone of Avaya's offerings, this version incorporates a range of features and improvements that cater to contemporary business needs, emphasizing flexibility, reliability, and seamless integration.

One of the most notable features of Avaya 3.7 is its robust call management capabilities. The platform allows users to manage calls effectively through a user-friendly interface, enabling intuitive functionalities such as drag-and-drop call handling, call forwarding, and conference calling. These features help employees stay connected, facilitating better communication and teamwork across departments.

In terms of mobility, Avaya 3.7 supports mobile applications that allow users to access the system remotely. This is particularly advantageous for businesses with a workforce that relies on remote or hybrid work models. The mobile integration ensures users can make and receive calls, check voicemail, and manage their schedules directly from their smartphones, maintaining productivity regardless of location.

The system also embraces advanced collaboration tools, such as video conferencing and instant messaging. These features promote a more dynamic interaction environment, fostering real-time communication among team members. Video conferencing capabilities allow for high-definition video quality and reliable connectivity, making virtual meetings more engaging and effective.

Security is another critical characteristic of Avaya 3.7. The platform includes enhanced encryption protocols to protect sensitive communications and ensure data integrity. With cybersecurity remaining a top concern for businesses, Avaya has prioritized the security of its communications solutions, safeguarding organizations' information against potential threats.

Furthermore, Avaya 3.7 benefits from the incorporation of AI and analytics. These technologies provide businesses with valuable insights into communication patterns and user behavior, enabling them to optimize their processes. The analytics can help identify areas for improvement and drive informed decision-making, thus enhancing overall efficiency.

Interoperability with existing systems is another hallmark of Avaya 3.7. The platform easily integrates with various applications and services, allowing businesses to leverage their current technology investments and create a cohesive communication ecosystem.

In summary, Avaya 3.7 stands out as a comprehensive communication solution that addresses the modern demands of the workplace. With its advanced call management features, mobility support, collaboration tools, strong security measures, and integration capabilities, Avaya 3.7 positions itself as a vital asset for organizations aiming to enhance their communication strategies and drive business success.
Top Page Image Contents