Manualshelf

HP TMS zl Module Security Administrator's Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
451452453454455456457458459460
4-282
Configuring a VPN on the HP TMS zl Module
L2TP over IPsec VPNs
If your L2TP clients have contiguous IP addresses, you can spec-
ify a range of IP addresses or a subnet. However, in that case, you
could not use the New Connection Wizard to set up the VPN
connection on the Windows client; instead, you would have to
configure the IPsec settings for the connection manually, making
sure to match the local address settings in the IP filter to the
setting configured here.
e. Leave the Remote Port field empty.
Note In some circumstances, you can specify 1701 for the port. However, if clients’
traffic is NATed at any point on the way to the TMS zl Module, the port will
change, causing the L2TP over IPsec VPN connection to fail. Therefore, you
should typically leave the field empty.
4. For IPSec Proposal, select the previously configured IPsec proposal.
The IPsec proposal specifies the IPsec mode, IPsec protocol, and the
authentication and encryption algorithms that secure the VPN connec-
tion. See “Create an IPsec Proposal for an L2TP over IPsec VPN” on page
4-269.
Figure 4-197. Manage IPsec Wizard > Add IPsec Policy (step 1) Window
5. Click Next.