Manualshelf

HP VPN Firewall Appliances VPN Configuration Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
411412413414415416417418419420
407
Ste
p
Remarks
2. Configuring Routing
Required.
To establish private networks across the public network by using
DVPN, you must perform routing configuration for devices in the
private networks. In a DVPN, route-related operations, such as
neighbor discovery, route updating, routing table establishment,
are done over DVPN tunnels. Routing information is exchanged
between Hubs or between Hubs and Spokes. It is not exchanged
between Spokes.
DVPN clients support routing protocols OSPF and BGP.
When the routing protocol is OSPF, set the network type of an
OSPF interface to broadcast in a full mesh network or P2MP in a
Hub-Spoke network. Make sure that the DR priority of a Hub is
higher than that of a Spoke. HP recommends you to set the DR
priority of a Spoke to 0 to keep the Spoke from participating in
DR/BDR election. For information about OSPF configuration, see
Network Management Configuration Guide.
When the routing protocol is BGP, configure IBGP between the
Hubs and Spokes and configure the Hubs as the route reflectors in
a full mesh network, or configure EBGP between the Hubs and
Spokes in a Hub-Spoke network. For information about BGP
configuration, see Network Management Configuration Guide.
After the configuration, you can view the DVPN information on the DVPN server or client.
Table 57 Displaying and maintaining DVPN
Task Remarks
Displaying VAM client information View information about registered clients on the DVPN server
Displaying DVPN session information
View DVPN tunnel information on a DVPN client
Configuring a VPN domain
1. From the navigation tree, select VPN > DVPN > Server.
The VAM server configuration page appears, as shown in Figure 312.
Figure 312 VAM server configuration
2. Click Add to enter the Add VPN Domain page, as shown in Figure 313.