Manualshelf

Management and Configuration Guide (Includes ACM xl) 2005-12

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
919293949596979899100
4-42 ProCurve Secure Access 700wl Series Management and Configuration Guide
Configuring Rights
Encryption Whether encryption is required, allowed, or disabled:
Select Disabled to disable encryption for clients associated with this Access
Policy. (This is the default.)
Select Allowed, but not required to allow both encrypted and non-encrypted
traffic from clients associated with this Access Policy. The Encryption Protocols
settings determine the type of encryption allowed.
Select Required to require all traffic from clients associated with this Access
Policy to be encrypted. The Encryption Protocols settings determine the type of
encryption required. Non-encrypted traffic is dropped.
Note: If you require encryption, make sure that the protocols you select are
enabled for the 700wl Series system on the Encryption page under the VPN
functions area.
See Chapter 7, “Setting up Wireless Data Privacy”, for a more extensive discussion
of the use of VPNs within the 700wl Series system.
Encryption Protocols The encryption protocols supported under this Access Policy, if encryption is
allowed or required.
Check one or more check boxes to specify the protocols allowed or required.
Note: Make sure that the protocols you select are enabled and configured
appropriately.
To view or change the IPSec encryption and secure hash algorithms or the
enable/disable settings for the other protocols, click the Settings link that is part
of the label for the IPSec check box, or click the VPN icon on the navigation
toolbar.
Note: The settings under the VPN icon are global—they apply to all uses of
encryption system-wide, not just to this Access Policy.
MPPE (PPTP only) For PPTP, whether MPPE encryption should be stateful or stateless:
Select Stateless to specify that the encryption key is reset for every packet. This
is appropriate in a lossy environment, but is slower. This is the default.
Select Stateful to specify that the encryption key is reset once every 256 packets.
This is appropriate in a low packet-loss environment, and is faster.
Key Length (PPTP only) For PPTP, the minimum MPPE (RC4) session key length:
Select 40 bits to allow a 40-bit or 128-bit key. This is the default.
Select 128 bits to allow a 128-bit key only.
Select no encryption to disable MPPE encryption.
Table 4-15. New Access Policy Settings Tab Contents
Column Description