IPsec for Management Traffic

IPsec supports ZTP in deployment scenarios less restrictive than private LANs. ZTP enables switches to be configured and managed automatically without administrator intervention. In a deployment scenario where a switch and AirWave are located in different branches connected through an untrusted public network (the Internet), the communication between the switch and AirWave server can be protected.

NOTE:
  • IPsec tunnel is not supported with IPv6.

  • IPsec tunnel is not supported through OOBM.

You can configure IPsec tunnel using any of the following methods:

  • Activate ZTP

  • DHCP ZTP with option 138

    1. To assign controller IP addresses, select DHCP option 138.

    2. Define the controller IP addresses for both the primary and secondary controllers.

  • Manual configuration