Manualshelf

TMS zl Management and Configuration Guide ST.1.1.100430

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
1381138213831384138513861387138813891390
A-151
Command-Line Reference
IPsec Policy Context
To enter the IPsec IRAS context, enter the following command from the IPsec
policy apply context:
Syntax: iras enable
To verify your location in the CLI, check the prompt. In the IPsec IRAS context,
the prompt is ProCurve(tms-module-<slot
ID>:ipsec:apply:iras)#.
To exit the IRAS context, enter the following:
Syntax: exit
From the IRAS context, you can:
Set IRAS IP address/mask (page A-151)
Set firewall zone for IKE mode config addresses (page A-152)
Set ranges for the IKE mode config addresses (page A-152)
Set primary and secondary DNS servers (page A-152)
Set primary and secondary WINS servers (page A-153)
apply. Once you have configured all parts of the IPsec policy, you must apply
the policy. The apply command verifies that all required settings are config-
ured and then adds or edits the IPsec policy. (If the requirements are not met,
the command does not take effect, and an error message indicates which
settings are missing.) Enter the following command:
Syntax: apply
This command is also available from the IPsec policy, IPsec policy apply, IPsec
policy bypass, IPsec policy deny, and IPsec manual keys contexts.
preview. Before you apply the IPsec policy, you should preview it to make
sure that everything is correct. To preview your policy, enter the following
command from any IPsec policy context:
Syntax: preview
The command is also available from other contexts accessed through the
IPsec policy context.
ip. To set the address that will be the clients’ remote gateway while visiting
the local network, enter the following command:
Syntax: ip < <IP address/mask> | host <IP address> >