TMS zl Management and Configuration Guide ST.1.1.100226

10-23

Troubleshooting

Troubleshooting the TMS zl Module in Routing Mode

If IPS is blocking your management station’s traffic, you can disable IPS

for the access policy that permits management access. To view the access

policies between the management station’s zone and self, enter:

hostswitch(tms-module-C)# show access-policy filter

<zone> self

Replace <zone> with the management station’s zone, such as internal.

You will see output similar to the following:

Source Zone: INTERNAL -> Destination Zone: SELF

1 access-policy INTERNAL SELF permit icmp echo any

any (ID: 57)

2 access-policy INTERNAL SELF permit service bootpc

any any (ID: 56)

3 access-policy INTERNAL SELF permit service bootps

any any (ID: 55)

4 access-policy INTERNAL SELF permit service snmptrap

any any (ID: 54)

5 access-policy INTERNAL SELF permit service snmp any

any (ID: 53)

6 access-policy INTERNAL SELF permit service ssh any

any (ID: 52)

7 access-policy INTERNAL SELF permit service https

any any (ID: 51)

8 access-policy INTERNAL SELF permit service rip any

any (ID: 19)

9 access-policy INTERNAL SELF permit ospf any any (ID:

21)

Locate the access policy that permits the management station to access

the TMS zl Module’s Web browser interface. For example, if the manage-

ment station is in a management-access zone and no one has changed the

default HTTPS access policy, the policy will be similar to that listed below:

7 access-policy INTERNAL SELF permit service https any

any <ID: 51>