F3726, F3211, F3174, R5135, R3816-HP Firewalls and UTM Devices VPN Configuration Guide-6PW100

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module

341

342

343

344

345

346

347

348

349

350

340

Table 38 Configuration items

Item Descri

tion

Resource Name

Enter a name for the common TCP service resource.

The resource name must be unique in the SSL VPN system. Resources are uniquely

identified by their names.

IMPORTANT:

If you do not configure the command for Command, HP recommends including the

resource type, local address, and local port in the resource name so that users can view

the desired information after they log in to the SSL VPN system.

A resource name cannot contain question marks (?), angle brackets (< >), backward

slashes (\), quotation marks (single or double) (' "), percent signs (%), ampersand signs

(&), or pound signs (#).

Service Type Enter the type for the TCP service.

Remote Host

Enter the host name or IP address of the remote host that provides the common TCP

service.

Remote Port Enter the port number that the remote host uses for the common TCP service.

Local Host Enter a loopback address or a character string that represents a loopback address.

Local Port Enter the port number that the local host uses for the common TCP service.

Command Configure the Windows command for the resource.

564BConfiguring IP network resources

The SSL VPN IP network access service supports all applications that operate at the IP layer and above,

providing secure communication between users and servers. Users do not need to know the application

types and configurations. After they log in to the SSL VPN service interface, the ActiveX SSL VPN client

is automatically downloaded and started, and the users can access authorized services of certain hosts

securely.

Recommended configuration procedure:

Task Remarks

957H

Configure global

parameters

Required.

Configure global parameters, such as the IP address pool, gateway address,

timeout time, WINS server, and DNS server, for IP network resources.

958H

Configure host resources

Required.

Configure the host resources that users can access from the IP networks list of the

SSL VPN interface.

959H

Configure a user-IP binding

Optional.

Configure user-IP bindings. After a user is bound with an IP address, when the

user accesses IP network resource, the system does not assign a virtual network

adapter IP address to the user from the global IP pool but assigns the bound IP

address to the user.