Manualshelf

TMS zl Management and Configuration Guide ST.1.2.100916

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
111112113114115116117118119120
1-82
Overview
Default Operation
d. Configure the default gateway.
If the default gateway is not on the VLAN that you added to the
module, you must add the gateway’s VLAN first. Specify the VLAN’s
zone and assign the module an IP address on the VLAN. Then config-
ure the default gateway.
For a module that you want to deploy in monitor mode:
a. Set the operating mode to monitor.
b. Set the management IP address and VLAN. Best practice dictates that
the management VLAN not be the default VLAN, VLAN 1.
c. Configure a default route to a router on that VLAN.
You can then access the Web browser interface or the CLI through SSH. The
default login settings for remote management access are:
Username = manager
Password = procurve
HP recommends that you change the passwords as soon as possible.
Default Enabled Capabilities
By default, the TMS zl Module functions in routing mode. The following
capabilities are enabled:
IDS
Protocol anomalies are detected with the default settings.
The module does not perform signature-based detection until you
install the proper license and download the signatures.
Threats are logged locally.
Firewall
The TMS zl Module denies all traffic except traffic that is allowed by
default policies. See “Default Firewall Policies” on page 1-83. However,
the module cannot control any traffic except traffic that is destined to
itself until you configure it as the router for that traffic.
VPN—The IPsec, L2TP, and GRE features are technically enabled but no
policies are configured to permit VPN tunnels to be established.