Manualshelf

HP VPN Firewall Appliances Access Control Configuration Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
31323334353637383940
29
4. Click Apply.
Table 8 Configuration items
Item Descri
p
tion
Zone ID Display the zone ID.
Zone Name Display the zone name.
Preference
Set the preference of the specified security zone.
By default, packets from a high priority security zone to a low priority security zone
are allowed to pass.
Share Set whether the specified security zone can be referenced by other VDs.
Virtual Device Display the VD to which the security zone belongs.
Interface
Interface
Set the interfaces to be added to the security zone.
The interfaces that have been added to a security zone are in the selected status,
and the interfaces that can be added but have not been added to a security zone
are in the non-selected status.
VLAN
If the interfaces added to the security zone are Layer 2 Ethernet interfaces, you
must specify the range of the VLANs to be added to the security zone. The VLANs
must belong to the VD to which the security zone belongs and have not been
added to other security zones.
Security zone configuration example
Network requirements
A company deploys a firewall (see Figure 21) to connect its internal network to the Internet, and it needs
to provide WWW service and FTP service for external users. The security policy is to allow internal users
to access the WWW and FTP servers and the Internet and to allow external users to access only the
servers.
Prepare the firewall for zone-based security policy deployment.
Figure 21 Network diagram