Manualshelf

HP TMS zl Module Security Administrator's Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
361362363364365366367368369370
4-188
Configuring a VPN on the HP TMS zl Module
Configuring an IPsec Site-to-Site VPN with IKE
14. If you are configuring a second spoke, under Hub to Spoke 2, follow the
same process to configure how the hub and spoke 2 modules authenticate
each other.
15. Click Next.
Figure 4-125. Deploy IPsec Site-to-Site VPN > Configure Advanced IKE Settings
16. For Key Exchange Mode, select Main Mode or Aggressive Mode.
17. Under Security Parameters Proposal, configure the security settings pro-
posed by the TMS zl Module for the IKE SA (the IKE policy on remote
endpoints must match):
a. For Diffie-Hellman (DH) Group, select the group for the Diffie-Hellman
key exchange:
Group 1 (768)
Group 2 (1024)
Group 5 (1536)