TMS zl Management and Configuration Guide ST.1.2.100916
2-57
Initial Setup in Routing Mode
Modify Management Settings
4. Click Save.
Note If you clear the check box for the zone from which you are currently connected
to the module and click Apply My Changes, you will lose connectivity from the
Web browser interface. Once disconnected, you will need to reconnect to the
module from a zone that has management access enabled, or you will have to
access the CLI through a serial console to the host switch and enable manage-
ment access from at least one zone.
Table 2-11. Services Permitted from a Management-Access Zone to Self
Table 2-12. Services Permitted from Self to a Management-Access Zone
You can delete or modify these policies to further restrict access to the
module’s management interface. For example, if you do not want to allow
management through the Web browser interface, you can disable or delete the
policy. Also, if you want to lock the system so that only certain IP addresses
can access management interfaces, you can edit the policy to specify the
source IP addresses. You can configure different access settings for each zone
that is enabled for management access. The other preconfigured policies can
also be edited or deleted. See “Firewall Access Policies” in Chapter 4: “Fire-
wall” for instructions.
Note When you set a management-access zone, you open your module to potential
attacks from malicious users. For instructions on limiting this risk see “Pre-
venting DoS Attacks on the TMS zl Module from a Management-Access Zone”
in Chapter 4: “Firewall.”
ICMP/echo snmp
bootpc snmptrap
bootps ssh
https
bootpc ftp radius snmptrap
bootps http radius-acct ssh
dns-tcp https smtp syslog
dns-udp ICMP/echo snmp tftp