TMS zl Management and Configuration Guide ST.1.1.100430

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module

961

962

963

964

965

966

967

968

969

970

7-447

Virtual Private Networks

Configure a Windows XP SP2 Client for L2TP over IPsec

L2TP RADIUS Authentication settings (if used)

L2TP Server IP

Address

Any IP address in a private subnet not in use

in your network

Network >

Authentication > L2TP

Users

Domain name The domain to which your users belong (or

global = no name)

Domain Name setting

in Add RADIUS server

window

Domain name for user name

configured in step 85 on

page 7-439

IP Pool Range of IP addresses that are in the same

subnet as the L2TP Server IP address

Edit RADIUS Domain

window

•Primary DNS

Server

• Secondary

DNS Server

•Primary WINS

server

• Secondary

WINS server

IP addresses of your network’s servers (to

which TMS firewall access policies permit

the remote client access)

Edit RADIUS Domain

window

Firewall access policies

User Group None • Permit Self <remote endpoints’ zone>

UDP 1701 Any Any

• Permit <remote endpoints’ zone> Self

UDP 1701 Any Any

• Permit Self <remote endpoints’ zone>

isakmp Any Any

• Permit <remote endpoints’ zone> Self

isakmp Any Any

Add Policy

User Group None

or User Group

<group

configured for

the dial-in user>

• Permit External <local zone> Any <virtual

dial-in addresses> <local addresses>

• Permit <local zone> External Any <virtual

dial-in addresses> <local addresses>

Add Policy

Parameter Valid Settings Configuration

Window

Matching Setting on the

Windows XP Client (Manual

Method)