Manualshelf

TMS zl Management and Configuration Guide ST.1.0.090213

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
541542543544545546547548549550
7-92
Virtual Private Networks
IPsec VPNs
Local Gateway—the local IP addresses in the traffic selector for this policy
Remote Gateway—the remote IP addresses in the traffic selector for this
policy
Status—click the View status link to see more details. The Status window
for that SA is displayed.
Figure 7-72. Status (<IPsec Policy> -
<SA Number>) Window
This window displays this information about the IPsec tunnel:
Destination IP Address—the remote gateway IP address (for a site-to-site
VPN) or the remote client IP address (for a client-to-site VPN)
Encapsulation Mode—the IPsec mode (Transport or Tunnel)
Direction—the direction for traffic secured by this SA (Inbound to the
module or Outbound to the remote gateway or remote client)
Inbound SAs decrypt and de-encapsulate traffic that is inbound to the TMS
zl Module. Outbound SAs encrypt and encapsulate traffic that the module
is forwarding.
Security Protocol—the IPsec protocol selected for this SA by the IPsec
proposal (ESP or AH)
HardLife Time In Seconds—the number of seconds before the SA expires
SoftLife Time in Seconds—the number of seconds before the TMS zl Module
will begin renegotiating the SA (unless the soft lifetime in KB expires first)
HardLife Time in KB—the number of kilobytes that the SA is allowed to
carry before it expires