TMS zl Management and Configuration Guide ST.1.0.090213

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module

7-220

Virtual Private Networks

Configure the VPN Client

IPsec policy

Action Apply Add IPsec Policy—

Step 1 of 4

Position Any position

Protocol UDP Protocol in the IP filter

(step 31 on page 7-195)

Local Address TMS zl Module’s public IP address

Matches the IP address set in 12 on page 7-175

Destination address in

the IP filter (step 28 on

page 7-194)

Local Port 1701 To this port in the IP filter

(step 35 on page 7-195)

Remote Address Any

Remote Port 1701

Proposal IPsec proposal that you created for the L2TP

connection

IKEv1 Policy IKE policy that you created for the L2TP

connection

Add IPsec Policy—

Step 2 of 4

Enable PFS

(Perfect Forward

Secrecy) for keys

Check box is cleared

SA Lifetime in

Seconds

300 to 86400 Generate a new key

every X seconds in

Custom Security Method

Settings for the filter

action (step 45e on

page 7-201)

SA Lifetime in

Kilobytes

2560 and 4194304 Generate a new key

every X kilobytes in

Custom Security Method

Settings for the filter

action (step 45d on

page 7-201)

Enable IP

Address Pool for

IRAS (Mode

Config)

Check box is cleared Add IPsec Policy—

Step 3 of 4

Advanced

Settings

(Optional)

Default settings Add IPsec Policy—

Step 4 of 4

Parameter Valid Settings Configuration

Window

Matching Setting on the

Windows XP Client

(Manual Method)