Manualshelf

HP ProCurve Threat Management Solution Implementation Guide 2009-05

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
371372373374375376377378379380
C-37
Configure VPNs Using the HP ProCurve Threat Management Services zl Module
Configure a Client-to-Site L2TP over IPsec VPN for Windows XP Clients
b. For Local Address, specify the IP address configured as the local gateway in the IKE
policy. For this example, select the LocalGateway address object.
c. For Local Port, type 1701.
d. For Remote Address, select Any.
e. For Remote Port, type 1701.
9. For Proposal, select the IPsec proposal that you just configured. For this example, select
ESPTrans.
10. Click Next.
Figure C-43. Add IPsec Policy Window—Step 2 of 4
11. For Key Exchange Method, keep the default, Auto (with IKEv1).
12. For IKEv1 Policy, select the IKEv1 policy that you just configured. For this example, select
WindowsClients.
13. Leave the Enable PFS (Perfect Forward Secrecy) for keys check box clear.
14. For SA Lifetime in seconds, leave the default 28800.
15. For SA Lifetime in Kilobytes, leave the default 0.
16. Click Next.