Manualshelf

TMS zl Management and Configuration Guide ST.1.0.090213

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
611612613614615616617618619620
7-169
Virtual Private Networks
Configure the VPN Client
25. To connect, select the profile that you just created. Then select the
connection that you just configured.
26. Click Start.
TMS zl Module Settings
For this configuration to work, you must configure IPsec settings on the
module as described in “Create an IKE Policy for a Client-to-Site IPsec VPN”
on page 7-31 and “Configure an IPsec VPN Connection” on page 7-21. Valid
settings are displayed in Table 7-12. The table also displays necessary firewall
policies. Finally, note that VLANs and necessary routes should be in place on
the TMS zl Module. In this configuration, the TMS zl Module reaches remote
clients on a VLAN in the External zone (which is a typical configuration).
Note The IPSecuritas VPN client does not support the TMS zl Module implementa-
tion of IKE mode config.
Table 7-12. TMS zl Module Settings for an IPsec VPN with a Macintosh
IPSecuritas Client
Parameter Valid Settings Configuration Window
IKE policy
Policy Type Client-to-Site (Responder) Add IKE Policy—Step 1 of 3
Local Gateway TMS zl Module’s IP address or VLAN in the External zone
Local ID Type Same ID type as configured for Remote Identifier in step 17b on
page 7-165; Address = IP Address; User FQDN = Email Address;
FQDN = Domain Name
Local ID Value Same value as configured for Remote Identifier in step 17b on
page 7-165
Remote ID Type Same ID type as configured for Local Identifier in step 17a on
page 7-165; Address = IP Address; User FQDN = Email Address;
FQDN = Domain Name
Remote ID Value Remote ID Type = Address, type 0.0.0.0 (for multiple clients) or
the client’s public IP address
Remote ID Type = Email Address, type *@domain.tld or an email
address that is configured on the client
Remote ID Type = Domain Name, type domain.tld or
<clientname>.domain.tld