Manualshelf

TMS zl Management and Configuration Guide ST.1.0.090213

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
1001100210031004100510061007100810091010
D-47
Troubleshooting
Troubleshooting the TMS zl Module in Routing Mode
You may assign as many or as few connections per zone as you like, but
the total number of connections in all zones cannot exceed 600,000. If you
are not using one or more zones, you can transfer their limits to the zones
that you are using.
Check NAT to ensure that it is configured correctly.
See “Troubleshooting NAT” on page D-49.
Troubleshoot VPN settings if applicable.
See “Troubleshooting VPNs” on page D-55.
Check the network infrastructure:
Is IP routing set up correctly on network devices?
Is VLAN tagging configured correctly?
Do any other firewalls between the module and the destination allow
the traffic?
Is the intended destination up and connected?
Troubleshooting Specific Problems Related to the Firewall
This section outlines a few specific problems that you may encounter when
using firewall features and provides a possible solution.
One or More Switch VLANs Are Not Shown in TMS zl Module’s Drop-
Down List. If you try to add a VLAN to a zone and the VLAN is not listed in
the drop-down list on the Add VLAN Association window, complete the
following steps:
1. Ensure that the VLAN has been created on the switch.
2. Ensure that the switch is running version K.13.55 or above.
3. Reboot the TMS zl Module.
You Cannot Use Ping and Other Similar Tools. If you try to ping several
devices on your network and the ping is not successful, ensure that the correct
access policy is in place to allow the ping traffic. For example, if you try to
send a ping from the TMS zl Module to a device, the access policy must allow
traffic from the Self zone to the zone that contains the device. Likewise, if you
try to send a ping from the device to the TMS zl Module, the access policy must
allow traffic from the zone that contains the device to the Self zone.