Use this procedure to configure the SSL VPN service.
Perform this procedure on the Manager interface. If you are configuring a Server Edition system, use IP Office Manager for Server Edition mode.
Before you begin
You must know the value of the following configuration variables.
Table 1: Service tab
Variable
Description
Service name
Enter a name for the new SSL VPN service.
Account name
Enter the SSL VPN service account name. This account name is used for authenticating the SSL VPN service when connecting with the AVG.
Server Edition systems
If you are configuring a Server Edition system, Avaya recommends that you configure the same name for both the SSL VPN service account and the SNMP Agent Device ID. When these settings match, technical support personnel can use this information to identify the address of the SSL VPN tunnel.
You can configure only one SNMP Agent Device ID per system. If you are configuring multiple instances of the SSL VPN service, choose one of the SSL VPN service account names to match to the SNMP Agent Device ID based on your needs for remote technical support.
You can also view the Device ID by selecting Network from the navigation list and selecting a Server Edition system; the screen displays a summary of settings for the selected system.
Account password
Enter the password for the SSL VPN service account.
Confirm password
Confirm the password for the SSL VPN service account.
Server address
Enter the address of the VPN gateway. The address can be an FQDN or an IPv4 address.
Server type
Select AVG.
Server port number
Select a port number. The default port number is 443.
Table 2: Session tab
Variable
Description
Preferred Data Transport Protocol
Select TCP; this is the protocol used by the SSL VPN service for data transport. If you select UDP as the protocol when you configure the connection, UDP displays in this field but the SSL VPN service falls back to TCP.
Heartbeat Interval
Enter the length of the interval between heartbeat messages in seconds. The default value is 30 seconds.
Heartbeat Retries
Enter the number of unacknowledged heartbeat messages that IP Office sends to AVG before determining that AVG is not responsive. When this number of consecutive heartbeat messages is reached and AVG has not acknowledged them, IP Office ends the connection. The default is 4.
Reconnect Interval on Failure
The interval to wait before the SSL VPN service attempts to re-establish a connection with the AVG. The interval begins when the SSL VPN tunnel is in-service and makes an unsuccessful attempt to connect with the AVG, or when the connection with the AVG is lost. The default is 60 seconds.
Procedure
In the navigation list, right-click Service.
Select New > SSL VPN Service.
On the Service tab, configure the settings listed in the table below.
Select the Session tab and configure the settings listed in the table below.
Select the Fallback tab and choose one of the following options:
to enable the service and establish an SSL VPN connection, ensure that the In Fallback option is de-selected
to configure the service without establishing an SSL VPN connection, select the In Fallback option
