TMS zl Management and Configuration Guide ST.1.2.100916

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module

931

932

933

934

935

936

937

938

939

940

7-413

Virtual Private Networks

Configure a Windows XP SP2 Client for L2TP over IPsec

Manual Windows XP Client Configuration

The manual configuration is intended only for advanced users who want to

select different security settings than the defaults. Generally, it is recom-

mended that you set up the VPN with the New Connection Wizard (see

“Configuration with the New Connection Wizard” on page 7-399).

Before you configure the VPN connection, make sure to uninstall the HP

ProCurve VPN client or any other third-party VPN client; these clients can

interfere with the Windows XP client.

Follow these steps to manually configure the Windows XP client for the VPN

connection:

1. On the Windows XP client, click Start > Run.

2. Type regedit and click OK.

3. Navigate to HKEY_LOCAL_MACHINE > System > CurrentControlSet > Services

> RasMan > Parameters.

Firewall access policies

User Group None • Permit Self <remote endpoints’ zone> l2tp-udp

Any Any

• Permit <remote endpoints’ zone> Self l2tp-udp

Any Any

• Permit Self <remote endpoints’ zone> isakmp

Any Any

• Permit <remote endpoints’ zone> Self isakmp

Any Any

Add Policy

User Group None

or User Group

<group

configured for

the dial-in user>

• Permit External <local zone> <service> <virtual

dial-in addresses> <local addresses>

• Permit <local zone> External <service> <local

addresses> <virtual dial-in addresses>

Add Policy

Parameter Valid Settings Configuration

Window

Matching Setting on the

Windows XP Client