TMS zl Management and Configuration Guide ST.1.2.100916

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module

1011

7-495

Virtual Private Networks

Configure a Windows Vista Client for L2TP over IPsec

IPsec policy

Action Apply Add IPsec Policy—Step 1

of 4

Position Any position

Protocol UDP Protocol in the IP filter

(step 30 on page 7-464)

Local Address TMS zl Module’s public IP address

Matches the IP address set in step 71 on

page 7-484

Destination address in the

IP filter (step 28 on

page 7-463)

Local Port 1701 To this port and From this

port in the IP filter (step 30

and 32 on page 7-464)

Remote Address Any Source address in the IP

filter (step 26 on page 7-

463)

Remote Port Any (empty)

Proposal IPsec proposal that you created for the

L2TP connection

IKEv1 Policy IKE policy that you created for the L2TP

connection

Add IPsec Policy—Step 2

of 4

Enable PFS (Perfect

Forward Secrecy) for

keys

Check box is cleared

SA Lifetime in Sec-

onds

300 to 86400 Generate a new key every

X seconds in Custom Se-

curity Method Settings for

the filter action (step 41e

on page 7-470)

SA Lifetime in Kilo-

bytes

2560 and 4194304 Generate a new key every

X kilobytes in Custom Se-

curity Method Settings for

the filter action (step 41d

on page 7-470)

Enable IP Address

Pool for IRAS (Mode

Config)

Check box is cleared Add IPsec Policy—Step 3

of 4

Advanced Settings

(Optional)

Default settings Add IPsec Policy—Step 4

of 4

Parameter Valid Settings Configuration Window Matching Setting on the

Windows Vista Client