Manualshelf

TMS zl Management and Configuration Guide ST.1.1.100226

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
891892893894895896897898899900
7-394
Virtual Private Networks
Configure IPSecuritas (Macintosh VPN Client)
25. To connect, select the profile that you just created. Then select the
connection that you just configured.
26. Click Start.
TMS zl Module Settings with the IPSecuritas Client
For this configuration to work, you must configure IPsec settings on the
module as described in “Configure an IPsec Client-to-Site VPN” on page 7-27.
Valid settings are displayed in Table 7-35. The table also displays necessary
firewall policies. Finally, note that VLANs and necessary routes should be in
place on the TMS zl Module. In this configuration, the TMS zl Module reaches
remote clients on a VLAN in the External zone (which is a typical configura-
tion).
Note The IPSecuritas VPN client does not support the TMS zl Module implementa-
tion of IKE mode config.
Table 7-35. TMS zl Module Settings for an IPsec VPN with a Macintosh
IPSecuritas Client
Parameter Valid Settings Configuration Window
IKE policy
Policy Type Client-to-Site (Responder) Add IKE Policy—Step 1 of 3
Local Gateway TMS zl Module’s IP address or VLAN in the External zone
Local ID Type Same ID type as configured for Remote Identifier in step 17b on
page 7-390; Address = IP Address; User FQDN = Email Address;
FQDN = Domain Name
Local ID Value Same value as configured for Remote Identifier in step 17b on
page 7-390
Remote ID Type Same ID type as configured for Local Identifier in step 17a on
page 7-390; Address = IP Address; User FQDN = Email Address;
FQDN = Domain Name
Remote ID Value Remote ID Type = Address, type 0.0.0.0 (for multiple clients) or
the client’s public IP address
Remote ID Type = Email Address, type *@domain.tld or an email
address that is configured on the client
Remote ID Type = Domain Name, type domain.tld or
<clientname>.domain.tld