Manualshelf

TMS zl Management and Configuration Guide ST.1.0.090213

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
131132133134135136137138139140
2-31
Initial Setup in Routing Mode
Configure Management Access
and manually configure an access policy to permit HTTPS traffic from Zone1
to Self. In this case, you could access the module’s Web browser interface from
Zone1 even though it is not a management-access zone.
4. Associate a VLAN with the management-access zone:
When you first set up management access for the module, associate your
management workstation’s VLAN with the management-access zone that
you just enabled.
For the example in Figure 2-10, you associate VLAN 5 with the Internal
zone:
hostswitch(tms-module-C:config)# vlan 5 zone internal
Note If you have configured a dedicated management VLAN on the module’s host
switch, you may want to associate that management VLAN with the manage-
ment-access zone.
In that case, add allow-switch-ip to the command to permit the switch to
have an IP address on that VLAN:
hostswitch (tms-module-C:config)# vlan 5 zone internal
allow-switch-ip
To follow best security practices, the management VLAN should not be the
default VLAN (which is VLAN 1).
5. Configure an IP address for the TMS zl Module’s virtual interface on
that VLAN:
Syntax: vlan <VLAN ID> zone <zone>
Associates a VLAN with a zone.
Replace <VLAN ID> with the number of a VLAN to associate
with the zone.
Replace <zone> with the name of a zone.
Syntax: vlan <VLAN ID> ip address <IP address> <mask>
Configures a static IP address for VLAN.
Replace <IP address> with the IP address for the module’s
virtual interface for that VLAN.
Replace <mask> with the subnet mask in dotted-decimal
format.