TMS zl Management and Configuration Guide ST.1.0.090213

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module

7-219

Virtual Private Networks

Configure the VPN Client

Key Exchange

Mode

Main Mode Add IKE Policy—Step

2 of 3

Authentication

Method

• Preshared Key

• RSA Signature

• DSA Signature

Setting in the Edit

Authentication Methods

window (step 54 on

page 7-206)

Preshared Key (if

Preshared key

was selected)

Matches the string configured on the remote

client

String in the Edit

Authentication Methods

window (step 54 on

page 7-206)

Security

Parameters

Proposal

1. SA Lifetime—300 to 86400 seconds

2. DH Group:

• Group 1 (760)

• Group 2 (1024)

3. Encryption Algorithm:

•DES

•3DES

4. Authentication Algorithm:

•MD5

•SHA-1

1. Key Exchange

Settings (step 60 on

page 7-209)

IKE Security Methods

(step 64 on page 7-210):

2. Diffie-Hellman group

3. Encryption algorithm

4. Integrity algorithm

XAUTH

Configuration

Disable XAUTH Add IKE Policy—Step

3 of 3

IPsec proposal

Encapsulation

Mode

Transport Add IPsec Proposal

Protocol ESP Custom Security Method

Settings for the filter

action (step 45 on page 7-

201)

Encryption

Algorithm

•DES

•3DES

Encryption algorithm in

Custom Security Method

Settings for the filter

action (step 45c on

page 7-201)

Authentication

Algorithm

•MD5

•SHA-1

Integrity algorithm in

Custom Security Method

Settings for the filter

action (step 45b on

page 7-201)

Parameter Valid Settings Configuration

Window

Matching Setting on the

Windows XP Client

(Manual Method)