Manualshelf

TMS zl Management and Configuration Guide ST.1.0.090213

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
71727374757677787980
1-47
Overview
Firewall
If the number of non-reserved connections from Zone1 reaches 10,000,
the module will set aside 500 connections from the other zones’ connec-
tion limits, provided that enough connections are available in the other
zones. For example, if there are 1,500 total connections left for all three
of the other zones, 500 of these will be set aside. Then only 1,000 total
connections are available for the other zones.
Figure 1-12. Outbound Connection Reservation Implication
If the current connection count from Zone1 is 10,500 (500 connections of
which are reserved), and 500 non-reserved connections are closed, then
the Zone1 limit will revert to its original limit of 10,000. At this point the
Zone1 maximum connection threshold (10,000) already provides for the
reserved connections. Any other new connections from Zone1 will not be
successful. However, if the connection limits for other zones have not
been reached, new connections can be made from those zones.
Inbound Example. In an inbound reservation, you are reserving connec-
tions from the specified zone to the specified IP address(es).
Suppose the same four zones as in the previous example have the same limit
of 10,000 each. The global maximum connections limit remains at 40,000 (4 x
10,000).