Manualshelf

TMS zl Management and Configuration Guide ST.1.0.090213

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
531532533534535536537538539540
7-88
Virtual Private Networks
IPsec VPNs
Configure Global IPsec Settings
You can configure several more settings which affect all IPsec connections.
These settings control:
Whether IPsec is enabled
How ICMP error messages are handled
ICMP error messages may not be allowed by the IPsec traffic selectors.
However, these error messages are often necessary for a session. You can
configure how the TMS zl Module handles ICMP error messages.
The number of SAs allowed per policy
Whether SAs are automatically revalidated when policies change
The minimum packet size for IP compression
Follow these steps to configure global IPsec settings:
1. In the Web browser interface left navigation bar, click VPN > IPsec.
2. Click the Settings tab.
3. By default, the Enable IPsec VPN check box is selected:
Clear the check box to disable IPsec VPN functionality on the entire
TMS zl Module.
When this setting is disabled, the module will not act as a VPN
gateway, initiate VPN tunnels, nor respond to IKE and IPsec messages
from remote endpoints. The module will forward IKE and IPsec traffic
to endpoints behind it if you have created access policies that allow
such traffic.
Select the check box to reenable the IPsec VPN functionality.
Your IKE, IPsec, and L2TP policies can now take affect.