Manualshelf

HP TMS zl Module Security Administrator's Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
561562563564565566567568569570
4-388
Configuring a VPN on the HP TMS zl Module
GRE Tunnels
Figure 4-289. Manage IPsec Wizard > Add IPsec Policy (step 2) Window
7. For Local Gateway, specify the same module IP address that you specified
for the local address in the traffic selector. You have two options:
•Select IP Address and type the IP address in the box.
•Select Use VLAN IP Address and select the VLAN to which this address
is assigned.
8. For Remote Gateway IP Address under Peer ID, specify the same IP address
for the remote tunnel endpoint that you specified as the remote address
in the traffic selector.
9. Next, set the SPI and keys for the protocol that you selected in the IPsec
proposal. The correct number of characters for a key depends on the
algorithm that you selected in the IPsec proposal and is indicated to the
right of the box. Note also that if you selected AH, you will not see boxes
for encryption keys:
a. For SPI Number, type a decimal number that uniquely identifies this
IPsec SA. You must match the SPI on the remote gateway. (In log files
and packet sniffers, this number may be represented in hexadecimal.)