Manualshelf

Riverbed® Steelhead® RiOS® Application Installation and Getting Started Guide 2010-10

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
31323334353637383940
Table Of Contents
3-9
Getting Started
Initial Configuration
2. To configure the switch to intercept the traffic sent to ports that are
associated with a zone, enter one or more class action commands from the
policy configuration context.
For example:
hostswitch(config)# policy zone intercept
hostswitch(config-policy)# class zone internal
external action intercept unidirectional
Note You cannot configure intercept rules for the BYPASS zone. As a result, traffic
to and from the BYPASS zone cannot be intercepted.
3. Exit the policy configuration context.
hostswitch(config-policy)# exit
Example Configuration. This section explains how to configure a zone
policy for the example configuration.
1. Create a zone policy called Steelhead-Interception-Rules.
hostswitch(config)# policy zone Steelhead-
Interception-Rules
2. Create an intercept rule to intercept any traffic the ports in the
InternalZone send to the ports in the RouterZone.
hostswitch(config-policy)# class zone InternalZone
RouterZone action intercept unidirectional
Syntax: [no] [seq-number] class zone < source zone name >
< destination zone name > action intercept unidirectional
Defines the source and destination zone classes for packets
that must be captured and forwarded to the Steelhead
application.
The (optional) seq-number parameter sequentially orders the
class-action statements in a policy configuration. Actions are
executed on matching packets in numerical order. Default:
Class-action statements are numbered in increments of 10,
starting at 10.
Replace source zone name with the name of the zone class
from which the packet originated.
Replace destination zone name with the name of the zone
class to which the packet is destined.