TMS zl Management and Configuration Guide ST.1.0.090213

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module

1-44

Overview

Firewall

However, each connection reservation that you make decreases the total

number of connections that are available generally, so you should always take

into account how many connections the TMS zl Module supports (total and

per-zone) in comparison to the number of reservations that you make. Refer

to Table 1-5.

Table 1-5. Connection Limit Terminology

Reservation Process

The TMS zl Module invokes the connection reservation policy under the

following circumstances:

■ The per-zone connection limit that corresponds to the traffic has been

reached.

Term Meaning Maximum Value Default Value Example

Per-zone connection

limit

The total number of

connections that can

originate from a zone

600,000 • External = 150,000

• Internal = 150,000

• DMZ = 150,000

• Self = 21,428

• Zone1–Zone6 =

21,428

• External = 10,000

• Internal = 10,000

• Zone1 = 7,000

• Zone2 = 5,000

• Self = 3,000

• Zone3–Zone6 = 0

Global maximum

connections

The sum of all per-zone

connection limits

600,000 599,996 35,000

Reservation

connection count

The number of

connections reserved

for each IP address

specified in the

reservation

1500 per IP address

per connection

reservation

0 • 20 outbound for

each address

between 10.1.1.1–

10.1.1.40

• 60 inbound for each

address between

10.1.2.1–10.1.1.20

Total reserved

connection count

The total number of

connections reserved

for traffic to or from

specified IP addresses

600,000 0 2000

Total active connec-

tion threshold

The number of global

maximum connections

minus the total

reserved connection

count

600,000 599,996 33,000