Manualshelf

TMS zl Management and Configuration Guide ST.1.2.100916

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
531532533534535536537538539540
7-14
Virtual Private Networks
IPsec Concepts
Authentication method:
Preshared key
Certificates (Digital Signature Algorithm [DSA] or Rivest-Shamir-
Adleman [RSA] Signature)
Diffie-Hellman group:
Group 1 (768)
Group 2 (1024)
Group 5 (1536)
SA lifetime in seconds
Other parameters such as whether XAUTH is required or NAT-T is sup-
ported
You will specify these proposals in an IKE policy.
Figure 7-3. IKE Phase 1: Security Parameters Exchange