Manualshelf

F3726, F3211, F3174, R5135, R3816-HP Firewalls and UTM Devices VPN Configuration Guide-6PW100

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
451452453454455456457458459460
447
Figure 335 Configuring the AAA method for the ISP domain
d. Select RADIUS as the server type for the primary authentication, authorization, and accounting
methods, and select Enable from the Accounting Optional list. Click Apply to finish the ISP
domain configuration and return to the VPN domain configuration page.
e. Enter the pre-shared key 123, enter 123 to confirm the key, enter the Hub 1 private IP 10.0.1.1,
and the Hub 2 private IP 10.0.1.2, and then click Apply.
622BConfiguring the secondary VAM server
See "1060HConfiguring the primary VAM server."
623BConfiguring Hub 1
1. Configure IP addresses for the interfaces. (Details not shown.)
2. Configure tunnel interface Tunnel1 for VPN domain vpn1:
a. From the navigation tree, select VPN > DVPN > Client, and then click Add.
b. Select the tunnel encapsulation mode UDP. Enter tunnel interface number 1. Enter the IP
address/mask 10.0.1.1/24. Select security zone Management for the tunnel interface. Select
the tunnel source interface GigabitEthernet0/1. Enter the VPN domain name vpn1. Enter the
VAM server address 192.168.1.22. Enter the secondary VAM server address 192.168.1.33.
Enter the VAM client username dvpn1hub1. Enter the VAM client password dvpn1hub1. Enter
the password dvpn1hub1 for confirmation. Enter the VAM client pre-shared key 123. Enter the
key 123 for confirmation.
c. Select Enable IPsec.
d. Select the IPsec authentication method Pre-Shared Key and then enter abcde in the Key and
Confirm Key fields.
e. Select IP Address as both the remote ID type and the local ID type.
f. Click Apply.