You must choose from one of the following two applications for configuring tunneling and mapping those settings to given VLANs across the WLAN network. All tunnel provisioning and configuration must be handled using one of these two applications.
Tunnels are configured and managed using the ExtremeCloud IQ (Classic) user interface. Management of Tunnel Concentrator configuration by ExtremeCloud IQ is performed using an Inlets connection on TCP (HTTPS) port 8090. Access to the management entity is routed through the stack of the underlying Universal Compute Platform host. As a result, the routing stack configuration (i.e., the default gateway) path from the host is key to the connection path.
Note
Tunnel Concentrator supports ExtremeCloud IQ (Classic) and does not support ExtremeCloud IQ (New). All references in this guide to "ExtremeCloud IQ" mean "ExtremeCloud IQ (Classic)".Tunnels are configured and managed using the ExtremeCloud IQ Controller user interface. Tunnel Concentrator establishes an HTTPS connection to the controller on port 5825. The Concentrator uses stored read-only credentials to retrieve the configuration and to configure GRE/IPSec tunnels.
Note
To generate encryption and decryption keys when IPSec is deployed, the management entity generates a private, pre-shared key using the IKEv2 protocol and uses a secure connection to provision the key on Tunnel Concentrator and on the access points.