Manualshelf

HP ProCurve Threat Management Solution Implementation Guide 2009-05

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
371372373374375376377378379380
C-33
Configure VPNs Using the HP ProCurve Threat Management Services zl Module
Configure a Client-to-Site L2TP over IPsec VPN for Windows XP Clients
Figure C-36. Add IKE Policy Window—Step 2 of 3
10. Under IKE Authentication, configure these settings:
a. For Key Exchange Mode, select Main Mode.
b. For Authentication Method, select Preshared Key.
c. Type a string of 12 to 49 alphanumeric or special characters in the Preshared Key box.
Type the same string in the Confirm Preshared Key box. For this example, type procur-
vekey!.
The string (which is case-sensitive) must match the string that is configured on the
remote endpoints.
11. Under Security Parameters Proposal, configure settings that match one of the four proposals
configured by default on Windows XP clients. See Table C-4.
Table C-4. IKE Security Settings Proposed by Windows XP Clients
12. Click Next.
13. Under XAUTH Configuration (Optional), click Disable XAUTH.
Proposal Diffie-Hellman (DH) Group Encryption Algorithm Authentication Algorithm SA Lifetime in Seconds
1 2 3DES SHA-1 28800
2 2 3DES MD5 28800
3 1 DES SHA-1 28800
4 1 DES MD5 28800