Manualshelf

TMS zl Management and Configuration Guide ST.1.0.090213

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
1031103210331034103510361037103810391040
D-81
Troubleshooting
Troubleshooting the TMS zl Module in Routing Mode
Table D-14. IPsec Security Settings Proposed by Windows XP Clients
In the module’s IPsec policy, disable Perfect Forward Secrecy (PFS) and
set the lifetime to the default settings.
Troubleshoot L2TP Dial-in Settings.
If the
VPN
>
IPsec
>
VPN Connections
window
on the TMS zl Module shows that the IPsec tunnel is up but the VPN
connection on the remote client still fails, the L2TP connection is failing. In
this case, check the following:
1. Verify that the Windows client’s VPN connection uses the type of authen-
tication specified for the L2TP user on the TMS zl Module:
a. In the TMS zl Module’s Web browser interface, select VPN > IPsec >
L2TP Remote Access.
b. Edit the L2TP dial-in user account that the test client uses to log in.
c. Click Next to move to the Edit Dial-In User—Step 2 of 3 window.
d. Note the setting for Authentication.
You might try changing the setting to Any to determine whether this
solves the problem.
e. Also note the username and password.
f. On the Windows client, open the Network Connections window.
g. Right-click the VPN connection to the TMS zl Module and select
Properties.
Proposal Protocol Encryption Algorithm Authentication Algorithm
1 ESP 3DES SHA-1
2 ESP 3DES MD5
3 ESP DES SHA-1
4ESP DES MD5