Riverbed® Steelhead® RiOS® Application Administrator's Guide 2010-10
20
Managing the HP AllianceONE Extended Services zl Module with the Riverbed® Steelhead® RiOS® Application
Example Deployments
This example shows two user-defined zones, the Inside zone and the Outside
zone. Notice that all the devices on the network are untagged members of
VLAN 1. The workstations in VLAN 1 are part of the Inside zone, and the
firewall/router in VLAN 1 is part of the Outside zone. The devices in each zone
have been defined by their switch port. (Some devices in VLAN 1 may not be
part of either zone because the branch office does not want the switch to
intercept the packets from these devices.)
The Extended Services zl Module’s two internal ports must be untagged
members of VLAN 1.
■ Port 1 is sometimes referred to as the interception port because the HP
switch sends intercepted traffic to this port.
■ Port 2 is sometimes referred to as the normal port because it functions
as a normal traffic port. In addition, management traffic and communica-
tions between the Extended Services zl Module and the HP switch are
sent on this port.
Routing
In this deployment, the HP 5400zl or 8200zl switch is operating as a Layer 3
switch and supports multiple VLANs. (A Layer 3 switch is also called a routing
switch.)
Example 1
Figure 1-2 shows a simple routing deployment. The network includes an
outside subnet—VLAN 3—and two inside subnets—VLANs 1 and 2. For the
Transparent Mode configuration, the IT staff has created the Outside zone,
which includes the firewall/router in VLAN 3, and the Inside zone, which
includes switch ports connected to devices in VLANs 1 and 2.
Figure 1-2. Simple Routing Example