Manualshelf

TMS zl Management and Configuration Guide ST.1.1.100226

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
1341134213431344134513461347134813491350
A-154
Command-Line Reference
IPsec Policy Context
For example:
ProCurve(tms-module-<slot ID>:ipsec:bypass)# traffic-
selector protocol tcp local 10.1.2.0/24 port 20 remote
ip-range 192.168.2.1 192.168.2.12 port 21
preview
Before you apply the IPsec policy, you should preview it to make sure
everything is correct. To preview your policy, enter the following command
from any IPsec policy context:
Syntax: preview
For example:
ProCurve(tms-module-<slot ID>:ipsec:deny)# preview
IPsec policy
-------------------------------------------------------
*Policy Name: testpol
Status: Enabled
Action: Deny
Direction: Outbound
Position: 1
Traffic Selector
*Protocol: Any
*Local Address: 10.1.1.1
*Remote Address: 10.2.2.0/24
Example IPsec VPN
The following is the complete command set to create the IPsec VPN with the
parameters detailed in Table A-44.
Table A-44. Policy Parameters Used in This Configuration
Parameter TMS zl Module Setting
IKE Policy—iketest
Type of policy Site-to-Site
Local gateway VLAN 20
Remote gateway 172.16.40.99
Local ID IP address—172.16.20.103
Remote ID IP address—172.16.40.99