Manualshelf

TMS zl Management and Configuration Guide ST.1.1.100226

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
1161116211631164116511661167116811691170
10-89
Troubleshooting
Troubleshooting the TMS zl Module in Routing Mode
c. When you see such a policy, you must create a higher-priority NAT
exclusion policy. This policy should specify exactly the same traffic
that is configured in the IPsec policy traffic selector, and its setting
for Translate should be None.
To configure a policy to correct the problem in this example, complete
these steps:
i. In the Firewall > NAT > NAT Policies window, click Add Policy.
ii. For Translate, select None.
iii. For From Zone, select Internal, which is the zone for local end-
points in the example VPN.
iv. For To Zone, select External, which is the zone for remote end-
points in the example VPN.
v. For Source, specify 192.168.3.0/24, which are the local endpoints
configured in the example IPsec policy traffic selector.
vi. For Destination, specify 192.168.5.0/24, which are the remote end-
points configured in the example IPsec policy traffic selector.
vii. For Insert Position, type 1.
Figure 10-21.Example NAT Exclusion Policy
viii. Click OK.
d. Attempt to establish the VPN by sending traffic from the test client.
Evaluate the connection and take the appropriate next steps (if any).