Manualshelf

TMS zl Management and Configuration Guide ST.1.1.100226

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
621622623624625626627628629630
7-119
Virtual Private Networks
Configure an IPsec Site-to-Site VPN with IKE
f. For Destination, specify the remote IP addresses which the local users
are allowed to access.
In the most basic setup, these are the same IP addresses configured
as remote addresses in the IPsec traffic selector. You can specify the
IP addresses manually or by selecting a previously configured address
object.
Figure 7-102. Add Policy Window
g. Click the Advanced tab.
h. For TCP MSS, type the value that you determined is best for your
system. For example, type 1356.
i. Click the Basic tab.
j. Click Apply.
8. Permit traffic from the remote endpoints to the local endpoints:
a. For Action, leave the default, Permit Traffic.
b. For From, select the remote zone.
c. For To, select the local zone.
d. For Service, leave Any Address.
This is the most basic configuration. You could also create access
policies that permit only certain services.