After login, the terminal screen displays the CLI of the firewall module. To return to the CLI on the device, press Ctrl+K.

Monitoring and managing the firewall module on the network device

Resetting the system of the firewall module

CAUTION:

The reset operation may cause data loss and service interruption. Therefore, before performing this operation, save the configurations of the firewall module operating system and shut down the firewall module operating system to avoid service interruption and data loss.

If the operating system of the firewall module works abnormally (for example, the system does not respond), you can reset the system with the following command. This operation is the same as resetting the firewall module by pressing the reset button on the firewall module.

The firewall module has an independent CPU; therefore, the network device can still recognize and control the firewall module when you reset the system of firewall module.

To reset the system of the firewall module:

Task

Command

Remarks

Reset the system of the firewall module

oap reboot slot slot-number

Available in user view.

 

 

 

Configuring the ACSEI protocol

ACSEI is an HP-proprietary protocol. It provides a method for exchanging information between ACFP clients and ACFP server so that the ACFP server and clients can cooperate to run a service.

As a supporting protocol of ACFP, ACSEI also has two entities: server and client.

The ACSEI server is integrated into the software system (Comware) of the network device.

The ACSEI client is integrated into the software system (Comware) of the firewall module.

NOTE:

The collaborating IDS (Intrusion Detection System) modules or IDS devices serve as the ACFP clients which run applications of other vendors and support the IPS (Intrusion Prevention System)/IDS services.

ACSEI mainly provides the following functions:

Registration and deregistration of an ACSEI client to the ACSEI server.

ID assignment. The ACSEI server assigns IDs to ACSEI clients to distinguish between them.

Mutual monitoring and awareness between an ACSEI client and the ACSEI server.

Information interaction between the ACSEI server and ACSEI clients, including clock synchronization.

Control of the ACSEI clients on the ACSEI server. For example, you can close or restart an ACSEI client on the ACSEI server.

69