TMS zl Management and Configuration Guide ST.1.1.100226

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module

581

582

583

584

585

586

587

588

589

590

7-81

Virtual Private Networks

Configure an IPsec Site-to-Site VPN with IKE

Note Later you will configure firewall access policies to allow the IKE messages

from the remote gateway.

8. For Local ID, configure the ID that the TMS zl Module sends to authenticate

itself. This ID must match exactly, in both type and value, the remote ID

specified on the remote endpoint. For more information about ID types,

see “IKE Phase 1” on page 7-13.

a. For Ty pe , select the ID type:

– IP Address

– Domain Name

–Email Address

– Distinguished Name

b. For Value, type the correct value.

If you select IP Address for Typ e, the address that you specify in the Value

box must match the IP address that you specified for the local gateway.

Table 7-9 shows the format for each ID type.

Table 7-9. Local ID Values

9. For Remote ID, specify an ID that matches the ID that the remote gateway

sends to authenticate itself:

a. For Ty pe , select the ID type:

– IP Address

– Domain Name

–Email Address

– Distinguished Name

b. For Value, type the correct value.

If you select the IP Address for Type, the IP address that you type in

the Value box must match the address in the Remote Gateway IP

Address (Peer ID) box (if configured).

10. Click Next.

Local ID Type Remote ID Value Examples

IP Address A.B.C.D 172.16.40.103

Domain Name <domainname> TMS.procurve.com

Email Address <name>@<domainname> tms@procurve.com

Distinguished

Name

/CN=<commonname> /CN=TMS.procurve.com