The management tunnel is a dedicated secure VPN connection between the MG device and the AMM. It provides secure remote console access, remote LCI, mass configuration, and event notification.
This VPN can be configured as enabled as required, but should not be modified from the default settings for Friendly Name and User Name. It must not be deleted from a device’s configuration.
The following guides provide instructions for configuring this functionality on MG devices:
The AMM waits for connections from MGOS. As long as MGOS is correctly configured, it should try to connect to the AMM as soon as the device boots. The AMM features that need the Management Tunnel are: remote LCI, remote console, and Total reach.
For a list of related ports and protocols for this functionality see: MGOS Gateways (MG90).