TMS zl Management and Configuration Guide ST.1.2.100916

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module

961

962

963

964

965

966

967

968

969

970

7-449

Virtual Private Networks

Configure a Windows XP SP2 Client for L2TP over IPsec

IPsec policy

Action Apply Add IPsec Policy—

Step 1 of 4

Position Any position

Protocol UDP Protocol in the IP filter (step 30

on page 7-421)

Local Address TMS zl Module’s public IP address

Matches the IP address set in step 78 on

page 7-440

Destination address in the IP

filter (step 27 on page 7-420)

Local Port 1701 To this port and From this Port

in the IP filter (step 32 and 34 on

page 7-421)

Remote Address Any

Remote Port Any (empty)

Proposal IPsec proposal that you created for the L2TP

connection

IKEv1 Policy IKE policy that you created for the L2TP

connection

Add IPsec Policy—

Step 2 of 4

Enable PFS

(Perfect Forward

Secrecy) for keys

Check box is cleared

SA Lifetime in

Seconds

300 to 86400 Generate a new key every X

seconds in Custom Security

Method Settings for the filter

action (step 44e on page 7-427)

SA Lifetime in

Kilobytes

2560 and 4194304 Generate a new key every X

kilobytes in Custom Security

Method Settings for the filter

action (step 44d on page 7-427)

Enable IP

Address Pool for

IRAS (Mode

Config)

Check box is cleared Add IPsec Policy—

Step 3 of 4

Advanced

Settings

(Optional)

Default settings Add IPsec Policy—

Step 4 of 4

Parameter Valid Settings Configuration

Window

Matching Setting on the

Windows XP Client (Manual

Method)