TMS zl Management and Configuration Guide ST.1.2.100916

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module

971

972

973

974

975

976

977

978

979

980

7-451

Virtual Private Networks

Configure a Windows XP SP2 Client for L2TP over IPsec

L2TP RADIUS Authentication settings (if used)

L2TP Server IP

Address

Any IP address in a private subnet not in use

in your network

Network >

Authentication > L2TP

Users

Domain name The domain to which your users belong (or

global = no name)

Domain Name setting

in Add RADIUS server

window

Domain name for user name

configured in step 85 on

page 7-443

IP Pool Range of IP addresses that are in the same

subnet as the L2TP Server IP address

Edit RADIUS Domain

window

•Primary DNS

Server

• Secondary

DNS Server

•Primary WINS

server

• Secondary

WINS server

IP addresses of your network’s servers (to

which TMS firewall access policies permit

the remote client access)

Edit RADIUS Domain

window

Firewall access policies

User Group None • Permit Self <remote endpoints’ zone>

l2tp-udp Any Any

• Permit <remote endpoints’ zone> Self

l2tp-udp Any Any

• Permit Self <remote endpoints’ zone>

isakmp Any Any

• Permit <remote endpoints’ zone> Self

isakmp Any Any

Add Policy

User Group None

or User Group

<group

configured for

the dial-in user>

• Permit External <local zone> <service>

<virtual dial-in addresses> <local

addresses>

• Permit <local zone> External <service>

<virtual dial-in addresses> <local

addresses>

Add Policy

Parameter Valid Settings Configuration

Window

Matching Setting on the

Windows XP Client (Manual

Method)