Manualshelf

TMS zl Management and Configuration Guide ST.1.1.100226

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
1311131213131314131513161317131813191320
A-123
Command-Line Reference
IKEv1 Context
type site-to-site
To configure a site-to-site IKE policy, enter the following command:
Syntax: type site-to-site local-gateway <IP address | vlan <VLAN ID>> remote-
gateway <IP address | name <domain name> >
Replace <IP address> with the IP address of the local or remote gateway.
Replace <VLAN ID> with the ID of the VLAN on which the remote endpoint
reaches the TMS zl Module.
Replace <domain name> with the remote gateway’s fully qualified domain
name (FQDN). The TMS zl Module must be able to resolve the IP address for
the remote gateway’s FQDN.
For example:
ProCurve(tms-module-<slot ID>:ikev1)# type site-to-site
local-gateway vlan 1 remote-gateway name
gateway.procurve.com
type client-to-site
To configure a client-to-site IKE policy, enter the following command:
Syntax: type client-to-site local-gateway <IP address | vlan <VLAN ID>>
Replace <IP address> with the IP address of the local gateway.
Replace <VLAN ID> with the ID of the TMS VLAN on which the remote
endpoint reaches the TMS zl Module.
For example:
ProCurve(tms-module-<slot ID>:ikev1)# type client-to-
site local-gateway vlan 10
xauth
When you configure XAUTH, an optional additional layer of security, the
TMS zl Module can act either as a client (authenticate itself) or as a server
(authenticate the remote gateway).