Manualshelf

TMS zl Management and Configuration Guide ST.1.2.100916

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
1381138213831384138513861387138813891390
A-128
Command-Line Reference
IKEv1 Context
Replace <IP address> with the IP address of the local gateway.
Replace <VLAN ID> with the ID of the TMS VLAN on which the remote
endpoint reaches the TMS zl Module.
For example:
hostswitch(tms-module-<slot ID>:ikev1)# type client-to-
site local-gateway vlan 10
xauth
When you configure XAUTH, an optional additional layer of security, the
TMS zl Module can act either as a client (authenticate itself) or as a server
(authenticate the remote gateway).
To configure the module to act as an XAUTH client, enter the following
command:
Syntax: xauth client auth-type <generic | chap> username <username>
Replace <username> with the username accepted by the remote gateway’s
authentication server (which can include alphanumeric and special charac-
ters). After you enter the command, you will be prompted to enter a password.
To configure the module to act as an XAUTH server, enter the following
command
Syntax: xauth server auth-type <generic | chap>
To disable XAUTH, enter the following command
Syntax: no xauth
Example IKEv1 Policy
The following is the complete command set to create an IKEv1 policy with the
settings detailed in Table A-38.
Table A-38. Example IKEv1 Policy
Parameter TMS zl Module Setting
Type of policy Site-to-Site
Local gateway VLAN 50
Remote gateway 172.15.16.2