Manualshelf

HP ProCurve Threat Management Solution Implementation Guide 2009-05

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
411412413414415416417418419420
C-76
Configure VPNs Using the HP ProCurve Threat Management Services zl Module
Configure a Client-to-Site IPsec VPN for Macintosh IPSecuritas Clients
c. For Encryption, select one (or more) of the following check boxes:
DES
3DES
AES 256
AES 192
AES 128
For this example, select the 3DES check box.
d. For Authentication, select one (or more) of the following check boxes:
HMAC MD5
HMAC SHA-1
For this example, select HMAC MD5.
Figure C-92. IPSecuritas—Connections > Phase 2 Tab
16. Click the ID tab and configure the following settings, which correspond to the identities
and authentication method in the TMS zl Module IKE policy:
a. Local IdentifierSelect the identity type for the local endpoint (remote ID on the
module) and type the value in the box provided, if any:
User FQDN—Specify an email address in the box.
FQDN—Specify a domain name in the box.
Address—The Macintosh client’s IP address is used automatically.
For this example, select FQDN and type user1.procurvelabs.com.
b. Remote Identifier—Select the identity type for the TMS zl Module (local ID on the
module) and type the value in the box provided, if any:
i. User FQDN—Specify an email address in the box.
ii. FQDN—Specify a domain name in the box.
iii. Address—The client automatically uses the address that you specified for the
Remote IPSec Device.
For this example, type 10.1.1.1.
c. For Authentication Method, select Preshared Key.