Manualshelf

TMS zl Management and Configuration Guide ST.1.2.100916

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
1411141214131414141514161417141814191420
A-159
Command-Line Reference
IPsec Policy Context
For example:
hostswitch(tms-module-<slot ID>:ipsec:deny)# preview
IPsec policy
-------------------------------------------------------
*Policy Name: testpol
Status: Enabled
Action: Deny
Direction: Outbound
Position: 1
Traffic Selector
*Protocol: Any
*Local Address: 10.1.1.1
*Remote Address: 10.2.2.0/24
Example IPsec VPN
The following is the complete command set to create the IPsec VPN with the
parameters detailed in Table A-44.
Table A-44. Policy Parameters Used in This Configuration
Parameter TMS zl Module Setting
IKE Policy—iketest
Type of policy Site-to-Site
Local gateway VLAN 20
Remote gateway 172.16.40.99
Local ID IP address—172.16.20.103
Remote ID IP address—172.16.40.99
Key exchange mode Main
Authentication method Pre-shared key—passwordtestvpn
Diffie-Hellman group Group 1 (768)
Encryption algorithm 3DES
Authentication algorithm MD5
SA lifetime (SA life) 28800
XAUTH Disabled