TMS zl Management and Configuration Guide ST.1.0.090213
2-30
Initial Setup in Routing Mode
Configure Management Access
To begin configuring management access, complete these steps.
1. Access the host switch’s CLI and enter the Product OS context:
hostswitch# services <slot ID> <product index>
Replace <slot ID> with the letter of the chassis slot in which the module is
installed.
Replace <product index> with the TMS zl Module’s letter of the chassis slot
in which the module is installed.
The prompt should look like the following:
hostswitch(tms-module-C)#
2. Enter the global configuration context for the module:
hostswitch(tms-module-C)# configure terminal
3. Enable management access from a zone:
For example, enter this command to enable management access from the
Internal zone:
hostswitch(tms-module-C:config)# management zone
internal
This command automatically creates the access policies that you will need to
manage the module, such as allowing HTTPS and SNMP traffic from the
management-access zone to Self (the module). To prevent Denial of Service
(DoS) attacks on your Web server, you may want to modify these access
policies to limit management access to certain IP addresses. For more infor-
mation, see “Default Access Policies” in Chapter 4: “Firewall.”
You can enable management access from more than one zone, and you can
create access policies to allow certain types of management traffic from a zone
to Self. For example, you could specify Internal as a management-access zone
Syntax: configure terminal
Enters the configuration context for the module.
Syntax: management zone <zone>
Enables management access from a zone.
Replace <zone> with the zone from which you want to
permit management traffic to the module.