Manualshelf

HP ProCurve Threat Management Solution Implementation Guide 2009-05

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
401402403404405406407408409410
C-65
Configure VPNs Using the HP ProCurve Threat Management Services zl Module
Configure a Client-to-Site IPsec VPN for Macintosh IPSecuritas Clients
Figure C-80. Add IPsec Policy Window—Step 1 of 4
4. For Policy Name, type a unique, alphanumeric string between 1 and 10 characters. For this
example, type MacClients.
5. By default, the Enable this policy check box is selected, which means that the policy will
take effect as soon as you finish it. Leave the check box selected.
6. For Action, select Apply.
7. Leave the Position box empty.
When you leave this setting empty, the IPsec policy is automatically added as the highest-
priority policy.
8. For Traffic Selector, configure these settings:
a. For Protocol, specify the protocol for traffic allowed on the VPN:
Any—Any IP protocol. Select this option when you want to allow all types of traffic
between local and remote endpoints.
TCP or UDP—Select this option in conjunction with a remote port to allow local
traffic destined for a specific service in the remote network. Select this option in
conjunction with a local port to allow remote traffic destined for a specific service
in the local network.
ICMP—Select this option when you want to allow only ICMP traffic.
IP Protocols—Select one of these Layer 3 protocols, which are listed by their IANA
IP Protocol numbers.
Service objects and service groups will not appear in this list.
For this example, select Any.