Manualshelf

HP ProCurve Threat Management Solution Implementation Guide 2009-05

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
421422423424425426427428429430
C-82
Configure VPNs Using the HP ProCurve Threat Management Services zl Module
Configure a Client-to-Site IPsec VPN for HP ProCurve VPN Clients
Figure C-100. Add IKE Policy Window—Step 1 of 3
6. For Local Gateway, specify an IP address on this module. You have two options:
Click IP Address and type the IP address in the box.
Type the same IP address that you configured for the LocalGateway address object (the
IP address on the TMS VLAN that remote clients contact).
Click Use VLAN IP Address and select a VLAN from the list. Select the TMS VLAN on
which remote clients contact the module.
7. For Local ID, configure the ID that the TMS zl Module sends to authenticate itself.
a. For Type , select the ID type:
IP Address
Domain Name
Email Address
Distinguished Name
For this example, select IP Address.
Note If another device performs NAT on the TMS zl Module’s IP address, then the remote
client will direct its traffic toward the translated IP address and will expect the
translated IP address for the module’s ID. However, the module will send its non-
translated IP address for its ID. Therefore, in this case, you must select one of the other
three types of local ID. In this example, NAT is not performed on the TMS zl Module’s
IP address, so you can select the IP address type.