Professional Documents
Culture Documents
Abstract
These Application Notes describe the steps for configuring Juniper Networks Secure Services
Gateway 5 (SSG 5) to support Avaya 3631 Wireless Telephone registering with Avaya
Distributed Office using WiFi Protected Access 2 with Pre-Shared Key (WPA2-PSK)
encryption.
Avaya Distributed Office is a small office solution capable of supporting both Avaya H.323 IP
Telephones and Avaya SIP IP Telephones simultaneously. The Avaya Distributed Office
solution used in the sample network depicts a single office scenario where all in-bound and out-
bound calls are routed through a local Public Switch Telephone Network (PSTN) connection. A
Juniper Networks SSG 5 with integrated wireless support is used to serve as the router for the
data network traffic as well as the wireless access point for Avaya 3631 Wireless IP Telephones.
2. Configuration
Figure 1 illustrates the configuration used in these Application Notes. All IP addresses are
administered via Dynamic Host Configuration Protocol (DHCP) from Avaya Distributed Office.
All interfaces shown on the SSG 5 are in the Trust zone.
Corporate
Internal network
Juniper Networks
SSG5
ethernet0/0 10/100
wireless0/0 (Trust)
SSG 5
SSID: ssg
TX/RX LINK TX/RX LINK TX/RX LINK TX/RX LINK TX/RX LINK TX/RX LINK TX/RX LINK
192.168.101.254/24 POWER
STATUS
802.11a
b/g
WLAN AUX CONSOLE 0/0 0/1 0/2 0/3 0/4 0/5 0/6
Avaya
Distributed Office i40
192.168.109.10
192.45.109.0/24
1. Access the Web interface of the SSG 5 by entering its IP address into a Web browser
address field. Enter the appropriate Admin Name: and Password: to log in.
Note: By default, the Channel selection is auto and the Transmit Data Rate is Full.
Both of these fields were changed to accommodate the sample network environment for
testing.
Note: The sample configuration only enabled the WLAN0(2.4G) interface because
Avaya 3631 Wireless Telephone operate with the b/g radio which is WLAN0(2.4G).
Bind the ethernet0/1 and the wireless0/0 interface to bgroup0 by selecting the check
box under the Bind to Current Bgroup column next to these two interfaces.
Note: ethernet0/1 and wireless0/0 interfaces must belong to the null zone in order for
them to be listed in this screen for selection. Although not shown, the zone can be edited
by selecting Network Æ Interfaces Æ List from the left panel menu and click on Edit
for the interface which need to be configured.
1. Log into Avaya Distributed Office by entering its IP address into the web browser, and
entering the appropriate log in credentials.
6. Conclusion
These Application Notes have described the administration steps required to configure the
Juniper Networks SSG 5 to support Avaya 3631 Wireless Telephone registering with Avaya
Distributed Office using WPA2-PSK encryption algorithm.
7. Appendix
The following are notes obtained during configuration.
1. Below is the command line configuration equivalent of Section 4 with relevant line in
bold.
8. Additional References
Product documentation for Avaya products may be found at http://support.avaya.com
[1] Avaya Distributed Office i120 Installation Quick Start, May 2007 Issue 1, Document
Number 03-602289
[2] 3631 Wireless Telephone Administrator Guide, March 2007 Issue 2, Document Number 16-
602203
[3] Avaya 3631 Wi-Fi Phone Wireless Security Configuration Note, Version 0.1
[4] Concepts & Examples ScreenOS Reference Guide, Volumne 1: Overview, Release 6.0.0 Rev.
02, Part Number 530-017767-01, Revision 02
[5] Concepts & Examples ScreenOS Reference Guide, Volumne 2: Fundamentals, Release 6.0.0
Rev. 01, Part Number 530-017768-01, Revision 01
[6] Concepts & Examples ScreenOS Reference Guide, Volumne 3: Administration, Release 6.0.0
Rev. 01, Part Number 530-017769-01, Revision 01
Please e-mail any questions or comments pertaining to these Application Notes along with the
full title name and filename, located in the lower right corner, directly to the Avaya Solution &
Interoperability Test Lab at interoplabnotes@list.avaya.com