HP Velocity group policy |
| About the HP Velocity Administrative Template | |||
|
|
|
|
| |
|
|
|
|
| |
| Setting | Default |
| Options | |
|
|
|
|
| |
| Special TCP Ports | 554 1720 5060 1723 |
| Special Port Filter for TCP and UDP: | |
|
|
|
| The special port filter allows administrators to | |
| Special UDP Ports | 554 5060 |
| ||
|
| enable or disable support for specific protocols. | |||
|
|
|
| ||
|
|
|
| By default, the special port filter is pre- | |
|
|
|
| configured to include ports that provide special | |
|
|
|
| protocol support, such as RTSP (554), H.323 | |
|
|
|
| (1720), PPTP (1723), and SIP (5060). | |
|
|
|
| To disable support for a specific protocol, | |
|
|
|
| remove the corresponding port from the filter. | |
|
|
|
| For example, to disable support for RTSP, | |
|
|
|
| remove port 554 from the special TCP and UDP | |
|
|
|
| port filters. | |
|
|
|
|
| |
| Whitelist TCP Ports |
|
| Whitelist filter for TCP and UDP: | |
|
|
|
| If a whitelist port filter is specified, only the traffic | |
| Whitelist UDP Ports |
|
| ||
|
|
| meeting the following criteria is protected by | ||
|
|
|
| ||
|
|
|
| HP Velocity: | |
|
|
|
| • The destination IP address for the traffic is not | |
|
|
|
|
| specified in the blacklist IP filter. |
|
|
|
| • | The destination IP address for the traffic is |
|
|
|
|
| specified in the whitelist IP filter. |
|
|
|
| • | The destination port for the traffic is specified |
|
|
|
|
| in the whitelist port filter. |
|
|
|
| All traffic not meeting these criteria will be | |
|
|
|
| passed through transparently. | |
|
|
|
|
| |
| IP Address Blacklist | 255.255.255.255/32 |
| Blacklist IP filter: | |
| Filter |
|
| The first IP filter to be evaluated is the blacklist | |
|
|
|
| filter, which allows administrators to specify the | |
|
|
|
| destination IP addresses where traffic will not | |
|
|
|
| be protected by HP Velocity. If an IP address of | |
|
|
|
| a specified destination matches an IP address | |
|
|
|
| specified in the blacklist, it will be passed on | |
|
|
|
| transparently. Administrators can use a blacklist | |
|
|
|
| in conjunction with a whitelist. For example, use | |
|
|
|
| the blacklist to exclude specific IP addresses in | |
|
|
|
| a whitelisted subnet from being protected by | |
|
|
|
| HP Velocity. | |
|
|
|
|
|
|
HP Velocity Server Side Deployment Guide | 33 |