TMS zl Management and Configuration Guide ST.1.1.100430

10-50

Troubleshooting

Troubleshooting the TMS zl Module in Routing Mode

■ Missing routes or misconfigured routing protocols

Ensure that the module’s default gateway can be reached, and the module

has all the routes it needs to handle the traffic it receives.

■ Check to see if the firewall’s connection limitation has been

exceeded.

If the TMS zl Module is handling a high-volume of traffic, you should

check the logs to see if the traffic exceeds the connection limitation. By

default, the TMS zl Module imposes the following connection limitations

on each zone:

• Self—21428

• Internal—150,000

• External—150,000

•DMZ—150,000

• Zone1—21428

• Zone2—21428

• Zone3—21428

• Zone4—21428

• Zone5—21428

• Zone6—21428

You may assign as many or as few connections per zone as you like, but

the total number of connections in all zones cannot exceed 600,000. If you

are not using one or more zones, you can transfer their limits to the zones

that you are using.

■ Check NAT to ensure that it is configured correctly.

See “Troubleshooting NAT” on page 10-53.

■ Troubleshoot VPN settings if applicable.

See “Troubleshooting VPNs” on page 10-59.

■ Check the network infrastructure:

• Is IP routing set up correctly on network devices?

• Is VLAN tagging configured correctly?

• Do any other firewalls between the module and the destination allow

the traffic?

• Is the intended destination up and connected?