Manualshelf

HP VPN Firewall Appliances Network Management Configuration Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
581582583584585586587588589590
559
<Firewall> system-view
[Firewall] interface gigabitethernet 0/1.1
[Firewall-GigabitEthernet0/1.1] ip address dhcp-alloc
[Firewall-GigabitEthernet0/1.1] vlan-type dot1q vid 1
[Firewall-GigabitEthernet0/1.1] quit
# Configure ACL 3000 to match SNMP packets and SNMP traps.
[Firewall] acl number 3000
[Firewall-acl-adv-3000] rule 0 permit udp source-port eq snmp
[Firewall-acl-adv-3000] rule 5 permit udp destination-port eq snmptrap
[Firewall-acl-adv-3000] quit
# Configure Node 1 for policy management to forward management packets via GigabitEthernet 0/1.1.
(Because GigabitEthernet 0/1.1 obtains its IP address through DHCP and the next hop address is
unknown, specify the gateway address learned through DHCP as the next hop address.)
[Firewall] policy-based-route management permit node 1
[Firewall-pbr-management-1] if-match acl 3000
[Firewall-pbr-management-1] apply output-interface gigabitethernet0/1.1 ip-address
next-hop dhcpc
[Firewall-pbr-management-1] quit
# Configure local PBR by applying policy management on Firewall.
[Firewall] ip local policy-based-route management