TMS zl Management and Configuration Guide ST.1.0.090213

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module

131

132

133

134

135

136

137

138

139

140

2-36

Initial Setup in Routing Mode

Configure Management Access

b. If the default gateway is not in a management-access zone, the TMS zl

Module will block ICMP echo packets between the Self zone and the

gateway’s zone until you create an access policy to allow this traffic.

i. Create an access policy to permit ICMP echo packets between

the Self zone and the gateway’s zone.

hostswitch (tms-module-C:config)# access-policy

self <destination zone> permit icmp echo <source

address> <destination address>

Table 2-7 shows the values you can use to replace <destination

zone>, <source address>, and <destination address>. (For a com-

plete list of all options available for the access-policy command,

see “access-policy” in Appendix A: “Threat Management Services

zl Module Command-Line Reference.”)

Table 2-7. Access-policy Command Options

Parameter Options

source zone • internal

• external

•dmz

• zone1

• zone2

• zone3

• zone4

• zone5

• zone6

• self

destination zone • internal