User's Manual

ManualsBrandsAvaya ManualsGatewayAvaya B5800 Branch Gateway Manager

341

342

343

344

345

346

347

348

349

350

Avaya Branch Gateway Manager 10.0 Page 345

15-601011 Issue 29r (Friday, November 02, 2012)B5800 Branch Gateway

Configuration Settings: Service

5.10.2 SSL VPN Service

This type of service provides a secure tunnel between the Avaya Branch Gateway system at a customer site and an

Avaya VPN Gateway (AVG) installed at a service provider site. This secure tunnel allows service providers to offer remote

management services to customers, such as fault management, monitoring, and administration.

SSL VPN Services are supported by IP500 V2 and Linux based IP Office systems only, except B5800 Branch Gateway.

· For full details on how to configure and administer SSL VPN services, refer to the Avaya IP Office SSL VPN

Solutions Guide.

· ! WARNING

The process of 'on-boarding' (refer to the Avaya Branch Gateway Installation manual and the IP Office SSL

VPN Solutions Guide) automatically creates an SSL VPN service in the system configuration when the on-

boarding file is uploaded to the system. Care should be taken not to delete or modify such a service except

when advised to by Avaya.

5.10.2.1 NAPT

The Network Address Port Translation (NAPT) rules are part of SSL VPN configuration. NAPT rules allow a support service

provider to remotely access LAN devices located on a private IP Office network. You can configure each SSL VPN service

instance with a unique set of NAPT rules.

· For full details on how to configure and administer SSL VPN services, refer to the Avaya IP Office SSL VPN

Solutions Guide.

Usability

· Mergeable: These settings are mergeable. Changes to these settings do not require a reboot of the system.

The SSL VPN restarts after a setting change.

Configuration Settings

· Application: Default = Blank

Defines the communication application used to connect to the LAN device through the SSL VPN tunnel. When you select

an application, the Protocol and Port Number fields are filled with the default values.

The drop-down Application selector options and the associated default values are:

Application

Protocol

External and Internal

Port Number

Custom

TCP

VMPro

TCP

50791

OneXPortal

TCP

8080

SSH

TCP

TELNET

TCP

RDP

TCP

3389

WebControl

TCP

7070

· Protocol: Default = TCP

The protocol used by the application. The options are TCP and UDP.

· External Port Number: Default = the default port number for the application. Range = 0 to 65535

Defines the port number used by the application to connect from the external network to the LAN device in the

customer private network.

· Internal IP address: Default = Blank.

the IP address of the LAN device in the customer network.

· Internal Port Number: Default = the default port number for the application. Range = 0 to 65535

Defines the port number used by the application to connect to the LAN device in the customer private network.