Manualshelf

TMS zl Management and Configuration Guide ST.1.0.090213

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
261262263264265266267268269270
4-20
Firewall
Firewall Access Policies
Policy Groups
Firewall access policies are grouped by the following criteria:
Source and destination zones
Unicast or multicast traffic
User group
Default Access Policies
Some access policies are preconfigured on the factory default TMS zl Module.
These general policies allow basic network operation, such as allowing rout-
ing protocols between all zones.
When you specify a zone as a management-access zone, the following unicast
policies are automatically created. (See “Configure Management Access” in
Chapter 2: “Initial Setup in Routing Mode.”)
Table 4-2. [Zone] to Self
Table 4-3. Self to [Zone]
You can modify or delete these policies as desired. These policies are auto-
matically deleted when you remove the management-access designation from
a zone. For this reason, you can use the management-access designation as a
troubleshooting tool—specify all involved zones as management-access zones
while testing connectivity, and then remove the designation when you have
finished.
ICMP/echo snmp
bootpc snmptrap
bootps ssh
https
bootpc ftp radius snmptrap
bootps http radius-acct ssh
dns-tcp https smtp syslog
dns-udp ICMP/echo snmp tftp