Manualshelf

TMS zl Management and Configuration Guide ST.1.1.100430

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
1371137213731374137513761377137813791380
A-148
Command-Line Reference
IPsec Policy Context
From the IPsec manual keys context, you can:
Set the local gateway (page A-148)
Set the remote gateway (page A-148)
Set the authentication keys (page A-145)
Set the encryption keys (page A-149)
Set the SPI number (page A-150)
apply. Once you have configured all parts of the IPsec policy, you must apply
the policy. The apply command verifies that all required settings are config-
ured and then adds or edits the IPsec policy. (If the requirements are not met,
the command does not take effect, and an error message indicates which
settings are missing.) Enter the following command:
Syntax: apply
This command is also available from the IPsec policy, IPsec policy apply, IPsec
policy bypass, IPsec policy deny, IPsec auto keys, and IPsec IRAS contexts.
local-gateway. This command specifies the IP address that acts as the local
gateway for the VPN:
Syntax: local-gateway < <local IP address> | vlan <VLAN ID> >
Replace <local IP address> with the IP address on the TMS zl Module that
the remote gateway contacts.
Replace <VLAN ID> with the TMS VLAN on which the remote gateway
reaches the TMS zl Module.
For example:
ProCurve(tms-module-<slot ID>:ipsec:apply:manual)#
local-gateway vlan 1
remote-gateway. This command specifies the remote gateway’s IP address.
Syntax: remote-gateway <remote IP address>
Replace <remote IP address> with the IP address of the remote gateway.
You must type the IP address that the remote gateway specifies for its local
gateway address. This is the IP address at which the TMS zl Module can reach
the remote gateway (typically, a public IP address).