Manualshelf

TMS zl Management and Configuration Guide ST.1.0.090213

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
711712713714715716717718719720
7-267
Virtual Private Networks
Configure the VPN Client
Configuring the L2TP Shared Secret on the Windows Client
You can provide an additional layer of authentication for your L2TP remote-
access users by configuring a shared secret on both the TMS zl Module and
the Windows client.
On the TMS zl Module, the shared secret is configured on VPN > IPsec > L2TP
Remote Access in Step 1 of 3 of the Add Dial-In User window.
Figure 7-234. Add Dial-In User, Step 1 of 3
Firewall access policies
User Group None Permit Self <remote endpoints’ zone>
UDP 1701 Any Any
Permit <remote endpoints’ zone> Self
UDP 1701 Any Any
Permit Self <remote endpoints’ zone>
isakmp Any Any
Permit <remote endpoints’ zone> Self
isakmp Any Any
Add Policy
User Group <group
configured for the
dial-in user>
Permit External <local zone> Any <virtual
dial-in addresses> <local addresses>
Permit <local zone> External Any <virtual
dial-in addresses> <local addresses>
Add Policy
Parameter Valid Settings Configuration Window Matching Setting on the
Windows Vista Client