HP ProCurve Services zl Module FortiGate-ONE Installation and

Getting Started Guide

www.procurve.com Version 4.0 www.fortinet.com October 31, 2009

2

© Copyright 2009 Hewlett-Packard Development Company, L.P.

© Copyright 2009 Fortinet, Inc.

Software Credits and Notices

SSL on HP ProCurve Switches is based on the OpenSSL software toolkit. This product includes software developed by the OpenSSL Project for use in the OpenSSL Toolkit. For more information on OpenSSL, visit www.openssl.org.

Open Source Software Acknowledgement

This software incorporates open source components that are governed by the GNU General Public License (GPL). In accordance with this license, HP ProCurve Networking will make available a complete, machine readable copy of the source code components covered by the GNU GPL upon receipt of a written request. Send a request to:

Fortinet, Inc. 1090 Kifer Road Sunnyvale, CA 94086 USA

Hewlett-Packard Company, L.P. ProCurve Services zl Module GNU GPL Source Code Attn: ProCurve Networking Support MS: 5551 Roseville, CA 95747 USA

Disclaimer

HEWLETT-PACKARD COMPANY MAKES NO WARRANTY OF ANY KIND WITH REGARD TO THIS MATERIAL, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. Hewlett-Packard shall not be liable for errors contained herein or for incidental or consequential damages in connection with the furnishing, performance, or use of this material. The information contained herein is subject to change without notice. The only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. HP shall not be liable for technical or editorial errors or omissions contained herein. Hewlett-Packard assumes no responsibility for the use or reliability of its software on equipment that is not furnished by Hewlett-Packard.

3

Table of Contents

Overview ................................................................................................................................... 4

Step-by-step instructions ............................................................................................................ 4

1. Install the Services zl Module hardware .............................................................................. 4

2. Download the software image onto the Services zl Module ................................................ 5

3. Install the software image on the Services zl Module .......................................................... 7

4. Activate the FortiGate-ONE product software image .......................................................... 7

5. Access the FortiGate-ONE CLI ........................................................................................... 9

6. Configure the Services zl Module ports into a specific VLAN .............................................. 9

7. Configure FortiGate-ONE using the CLI ............................................................................11

8. Access the FortiGate-ONE Web interface..........................................................................15

9. Configure FortiGate-ONE using the Web interface ............................................................17

10. Rebooting the Services zl Module ...................................................................................20

11. Technical Support ............................................................................................................21

4

Overview

The HP ProCurve Services zl Module is shipped from the factory ready for the FortiGate-ONE software image to be downloaded and installed. It does not have any specific application software or an application-related operating system already installed. Instead, a resident Service OS provides the ability to download, install and activate a complete operating system image that includes the FortiGate-ONE application.

After the FortiGate-ONE image is downloaded, installed and activated on the Services zl Module, it becomes joined to that one particular module. Since Services zl Module is not shipped with any specific network function or service until a “Product OS” image is added, it provides a unique ability to become a dedicated “appliance within a switch” after the FortiGate-ONE image is installed and activated.

This document describes the steps needed to install and activate FortiGate-ONE on the Services zl Module. Because the Services zl Module is not a server device, it is necessary to follow the steps described in this document to successfully complete the installation.

Before proceeding, register for accounts both at http://my.procurve.com and at https://support.fortinet.com. These accounts provide access to product support information, updates, and license keys.

Step-by-step instructions 1. Install the Services zl Module hardware

Before installing the Services zl Module into the switch chassis, access the switch CLI to verify the switch has the most current module-compatible software installed. The switch software version should be K.13.51 or later. Use the following command to check the switch software version:

ProCurve# show version <CR> Image stamp: ... <date, time> K.13.XX ... Boot Image: Primary

If the switch software needs to be updated, follow the directions in the HP ProCurve Services zl Module Installation and Getting Started Guide to update the software.

Next, install the Services zl Module following directions and safety precautions in the HP ProCurve Services zl Module Installation and Getting Started Guide.

5

Verify the module is installed successfully. When the module is installed, it undergoes a self test that takes a few seconds. The LEDs on the front panel of the module help determine if the module has passed the self test. For more information, see the HP ProCurve Services zl Module Installation and Getting Started Guide.

2. Download the software image onto the Services zl Module

Contact Fortinet for software licensing options and instructions on how to acquire access to the FortiGate-ONE product software image. You will need the Services zl Module serial number, which can be obtained with the following command from the switch.

ProCurve# show modules details <CR> … Slot Module Description Serial Number ----- ---------------------------------------- -------------- A ProCurve J8702A 24p Gig-T zl Module SG000TA000 B ProCurve J9154A Services zl Module SG000GG000

Once the FortiGate-ONE product software image is received, it can be downloaded onto the Services zl Module using either a USB flash drive or using FTP file transfer through the local network.

Download Using USB Flash Drive

Copy the image onto a USB flash drive. Make sure the drive is FAT/FAT32 formatted and can hold all files that will be downloaded. If the software image is provided in the form of a zip file, first unzip the image directory and copy all files to the following location on the USB drive:

/services/images/FortiGate-ONE_J9506A_XXXXXX_XXXX/

Type "services" to list the services installed on the Services zl Module:

ProCurve> services <CR> Installed Services Slot Index Description Name B 1. Services Module services-module

The Services zl Module service is in Slot B at index 1 and has the name services-module. Type either of the following commands to access the Services zl Module CLI:

ProCurve# service b 1 <CR> ProCurve(services-module-B:HD)#

6

or

ProCurve# service b name services-module <CR> ProCurve(services-module-B:HD)#

Insert the USB flash drive with the FortiGate-ONE image into the USB slot on the front of the Services zl Module.

IMPORTANT: The USB flash drive must be inserted into the USB slot on the front of the Services zl Module, NOT into the USB slot on the switch chassis.

Type the following commands to copy the image to the image repository on the Services zl Module:

ProCurve(services-module-B:HD)# usb mount <CR>

ProCurve(services-module-B:HD)# usb copyfrom FortiGate-ONE_J9506A_XXXXXX_XXXX <CR>

ProCurve(services-module-B:HD)# usb unmount <CR>

Download Using FTP File Transfer

If the software image is provided in the form of a zip file, first unzip the image directory and copy it (as a sub-directory) to the root directory of an FTP server:

/FTP-root/FortiGate-ONE_J9506A_XXXXXX_XXXX/

Type "services" to list the services installed on the Services zl Module:

ProCurve> services <CR> Installed Services Slot Index Description Name B 1. Services Module services-module

The Services zl Module service is in Slot B at index 1 and has the name services-module. Type either of the following commands to access the Services zl Module CLI:

ProCurve# service b 1 <CR> ProCurve(services-module-B:HD)#

or

ProCurve# service b name services-module <CR> ProCurve(services-module-B:HD)#

7

Next, type the following command to initiate FTP file transfer:

ProCurve(services-module-B:HD)# download ftp <IP-ADDRESS> FortiGate-ONE_J9506A_XXXXXX_XXXX user <USERNAME> <CR>

<IP-ADDRESS> is the IP address of the FTP server to which the product image directory was copied, and <USERNAME> is the optional login ID for the FTP server (enter this login ID only if it’s required for FTP server login).

3. Install the software image on the Services zl Module

After the FortiGate-ONE software image is downloaded into the Services zl Module image repository (using either USB file copy or FTP transfer), type the following commands to install the image:

ProCurve# services b 1 <CR> ProCurve(services-module-B:HD)# uninstall product <CR> ProCurve(services-module-B:HD)# install product FortiGate-ONE_J9506A_XXXXXX_XXXX <CR>

At this point the software image is installed and ready to be activated.

4. Activate the FortiGate-ONE product software image

After the software image is installed onto the Services zl Module, it must be registered and activated before being run for the first time. To do this, first obtain a hardware ID for the Services zl Module by entering the following commands:

ProCurve# services b 1 <CR> ProCurve(services-module-B:HD)# licenses hardware-id activation <CR> The hardware Id for package "activation" is SG000GG000-A-0123456-ABCDEFG-0123456-ABCDEFG

Note: SG000GG000 is the serial number of the Services zl Module.

Detailed instructions to find your activation hardware ID are embedded in the My ProCurve portal (https://my.procurve.com) registration pages and are also available in the HP ProCurve Services zl Module Installation and Getting Started Guide.

Use this activation hardware ID to register the Services zl Module through the My ProCurve portal. Sign in to the portal and then click on My Software and follow the

8

instructions to complete the registration process. You will be asked to enter the activation hardware ID as well as the registration ID that was provided along with the FortiGate-ONE product software image.

Once the registration process has completed successfully, you should receive a license key in email and on the screen. This license key must be installed on the Services zl Module. For instructions on how to install the license key, see the HP ProCurve Services zl Module Installation and Getting Started Guide.

The following commands install the license key on the Services zl Module:

ProCurve# services b 1 <CR> ProCurve(services-module-B:HD)# licenses install activation SG0000GG000-A-0123456-ABCDEFG-0123456-ABCDEFG <CR> ProCurve(services-module-B:HD)# boot product <CR> Changing boot from Service OS to Product OS. System will be rebooted. Do you want to continue [y/n]? y Rebooting

Check the boot progress on the Services zl Module until the Product OS is running (you can use the repeat command to monitor booting progress):

ProCurve# show services b <CR> Status and Counters - Services Module A Status HP Services zl Module J9154A Versions : A.01.06, B.01.03 Status : not responding For more information, use the show commands in services context ProCurve# repeat <CR>

Press any key to exit the repeat command once the “Status” display shows the module is “running”.

IMPORTANT: The USB flash drive must be removed from the USB slot on the front of the Services zl Module before the module is rebooted. If it is not, the module may appear to “hang” instead of rebooting. To recover, simply remove the USB flash drive, disengage the module from the switch chassis for 5 seconds, and then reinsert the module to restart the boot process.

9

After the Services zl Module reboots, the FortiGate-ONE Services command line interface (CLI) becomes available. Enter the Services CLI context and use the “show version” command to verify the following information.

HP-ProCurve-5406zl# services b 1 <CR> HP-ProCurve-5406zl(services-module-B:PR)# show version <CR> Services Module Agent Version: B.01.05.7 Build date: Sep 25 2009 17:03:35 OPTROM: A.01.06 More version information is available when this module is booted to the ServiceOS.

5. Access the FortiGate-ONE Services CLI

Type "services" in the switch CLI to list the services installed on the Services zl Module:

ProCurve# services <CR> Installed Services Slot Index Description Name B 1. Services Module services-module

The FortiGate-ONE service is now activated in Slot B at index 1. Type the following command to access the FortiGate-ONE Services CLI:

ProCurve# service b 1 <CR> HP-ProCurve-5406zl(services-module-B:PR)#

6. Configure the Services zl Module ports into a specific VLAN The Services zl Module provides two internal Ethernet port connections into the switch after installation. By default, both ports are placed in the default VLAN. For example, if the Services zl Module is installed into slot B of the switch chassis, the internal ports appear as B1 and B2, and are automatically placed in the default VLAN. Depending on the VLAN configuration in the switch, one or both of these ports may need to be reassigned into a different VLAN. This is done by using the switch's management interface, just like any other port on the switch. The VLAN that the internal ports are placed in is important when configuring network parameters (e.g. IP address) for the services on the zl Module. These network parameters need to match the network configuration of the VLAN they are members of.

10

The VLAN configuration in the switch can be seen using:

ProCurve# show vlans <CR> Status and Counters – VLAN Information Maximum VLANs to support : 256 Primary VLAN : DEFAULT_VLAN Management VLAN : VLAN ID Name | Status Voice Jumbo ------- -------------------- + ---------- ----- ----- 1 DEFAULT_VLAN | Port-based No No 123 VLAN_123 | Port-based No No

For this example, the ports assigned to the default VLAN can be seen using:

ProCurve# show vlan 1 <CR> Status and Counters – VLAN Information – VLAN 1 VLAN ID : 1 Name : DEFAULT_VLAN Status: Port-based Voice : No Jumbo : No Port Information Mode Unknown VLAN Status ---------------- -------- ------------ ------ B1 Untagged Learn Up B2 Untagged Learn Up

In this example, if all other switch ports are assigned to VLAN 123, the two Services zl Module ports will also need to be assigned to VLAN 123 in order to be accessible. These ports can be assigned as tagged using:

ProCurve# configure <CR> ProCurve(config)# vlan 123 <CR> ProCurve(vlan-123)# tagged B1,B2 <CR>

or else as untagged using:

ProCurve# configure <CR> ProCurve(config)# vlan 123 <CR> ProCurve(vlan-123)# untagged B1,B2 <CR>

See the Management and Configuration Guide for the ProCurve Series 3500yl, 6200yl, 5400zl, and 8200zl Switches for more information on VLAN configuration.

11

7. Configure FortiGate-ONE using the Application CLI

Enter the FortiGate-ONE Application CLI using the “services <slot> tech” command and enter the user name (admin) and password (no password) to login.

ProCurve# config ProCurve(config)# services b tech <CR> FortiGate-ONE-B login: admin <CR> Password: <CR> Welcome!

When entering a command, there may be a delay of a few seconds as the command is processed - this is normal behavior. Wait for the command prompt before trying to enter further commands.

The available commands are listed if you type the ? or TAB character. As you type a command you can press ? or TAB at any time to see matching commands or arguments:

FGTPC1 # <?> ... (list of FortiGate-ONE CLI commands appears here) ... exit Return to switch command context

Configure the Firewall Policy from the FortiGate-ONE Application CLI

Traffic policy from interface fabric1 to fabric2

FGTPC1 # config firewall policy <CR> FGTPC1 (policy) # edit 1 <CR> FGTPC1 (1) # set srcintf fabric1 <CR> FGTPC1 (1) # set dstintf fabric2 <CR> FGTPC1 (1) # set srcaddr all <CR> FGTPC1 (1) # set dstaddr all <CR> FGTPC1 (1) # set action accept <CR> FGTPC1 (1) # set schedule always <CR> FGTPC1 (1) # set service ANY <CR> FGTPC1 (1) # set nat enable <CR> FGTPC1 (1) # end <CR>

12

Traffic policy from interface fabric2 to fabric1

FGTPC1 # config firewall policy <CR> FGTPC1 (policy) # edit 2 <CR> FGTPC1 (2) # set srcintf fabric2 <CR> FGTPC1 (2) # set dstintf fabric1 <CR> FGTPC1 (2) # set srcaddr all <CR> FGTPC1 (2) # set dstaddr all <CR> FGTPC1 (2) # set action accept <CR> FGTPC1 (2) # set schedule always <CR> FGTPC1 (2) # set service ANY <CR> FGTPC1 (2) # set nat enable <CR> FGTPC1 (2) # end <CR>

Configure the Network Settings for FortiGate-ONE NAT/Route Mode

1. On the switch, assign the internal ports of the Services zl Module to a VLAN. For example, if using VLAN1 for ONE Services port B1 with GigT ports A1-A12 and VLAN2 for ONE Services port B2 with GigT ports A13-A24:

ProCurve# config <CR> ProCurve(config)# vlan 1 untagged A1-A12,B1 <CR> ProCurve(config)# vlan 2 untagged A13-A24,B2 <CR>

2. Configure the ForitGate-ONE fabric1 interface

FGTPC1 # config system interface <CR> FGTPC1 (interface) # edit fabric1 <CR> FGTPC1 (fabric1) # set ip <intf_ip>/<netmask_ip> <CR> FGTPC1 (fabric1) # set allowaccess ping https ssh snmp http telnet <CR> FGTPC1 (fabric1) # set type physical <CR> FGTPC1 (fabric1) # end <CR>

3. Configure the FortiGate-ONE fabric2 interface.

FGTPC1 # config system interface <CR> FGTPC1 (interface) # edit fabric2 <CR> FGTPC1 (fabric2) # set ip <intf_ip>/<netmask_ip> <CR> FGTPC1 (fabric2) # set allowaccess ping https ssh snmp http telnet <CR> FGTPC1 (fabric2) # set type physical <CR> FGTPC1 (fabric2) # end <CR>

13

4. Optional - Configure the Default Routes

FGTPC1 # config router static <CR> FGTPC1 (static) # edit 1 <CR> FGTPC1 (1) # set device fabric1 <CR> FGTPC1 (1) # set gateway <vlan1_gateway> <CR> FGTPC1 (1) # end <CR> FGTPC1 # config router static <CR> FGTPC1 (static) # edit 2 <CR> FGTPC1 (2) # set dst <ip_range> <CR> FGTPC1 (2) # set device fabric2 <CR> FGTPC1 (2) # set gateway <vlan2_gateway> <CR> FGTPC1 (2) # end <CR>

5. Configure the Client stations to use the IP address of fabric1 and fabric2 for the default gateway.

Configure the Network Settings for FortiGate-ONE Transparent mode

1. On the switch, assign the internal ports of the Services zl Module to a VLAN. For example, if using VLAN1 for ONE Services port B1 with GigT ports A1-A12 and VLAN2 for ONE Services port B2 with GigT ports A13-A24:

NOTE: DO NOT assign both ports (B1-B2) to the same VLAN, as it will create a broadcast loop.

ProCurve# config <CR> ProCurve(config)# vlan 1 untagged A1-A12,B1 <CR> ProCurve(config)# vlan 2 untagged A13-A24,B2 <CR>

2. Change from NAT/Route mode to Transparent mode and configure the Management IP address.

FGTPC1 # config sys settings <CR> FGTPC1 (settings) # set opmode transparent <CR> FGTPC1 (settings) # set manageip <mng_ip>/<netmask> <CR> FGTPC1 (settings) # set gateway <gateway_ip> <CR> FGTPC1 (settings) # end <CR>

14

3. Configure the FortiGate-ONE fabric1 and fabric2 interfaces.

FGTPC1 # config sys interface <CR> FGTPC1 # edit fabric1 <CR> FGTPC1 (fabric1) # set allowaccess ping https ssh snmp http telnet <CR> FGTPC1 (fabric1) # next <CR> FGTPC1 # edit fabric2 <CR> FGTPC1 (fabric2) # set allowaccess http https ping snmp ssh telnet <CR> FGTPC1 (fabric2) # end <CR>

4. Use the "show" command to verify the settings:

FGTPC1 # show <CR>

5. Configure the Client stations, on the same subnet, to use the gateway specified for the management IP address.

Set the Administrator Password

By default, there is no administrator password. You will need to create one in order to secure the FortiGate-ONE.

FGTPC1 # config system admin <CR> FGTPC1 # edit admin <CR> FGTPC1 # set password <CR> <new password> Enter new password FGTPC1 # set password <type password> <CR> FGTPC1 # end <CR> FGTPC1 # exit <CR> FGTPC1 # login: admin <CR> Password: ****** <CR> Welcome!

For more information on the ForitGate-ONE CLI commands, see the FortiGate CLI Reference Guide (http://docs.fortinet.com/).

15

8. Access the FortiGate-ONE Web interface

Once you have configured the required basic network settings through the CLI you can connect to FortiGate-ONE using a Web browser. Just go to http://<configured ip>/. Login using the admin username and password. The FortiGate-ONE Web Config opens.

16

You can also access the FortiGate-ONE Web interface by clicking on the [Details] link associated with the Services zl Module on the Device View of the ProCurve switch web management interface.

NOTE: Correct routing is needed for the [Details] link.

17

9. Configure FortiGate-ONE using the Web interface

Upgrading to the Latest Firmware Version

When an update for your FortiGate unit is available, you can update your unit with the new firmware version. To determine what version firmware you have, refer to the Firmware version in the Web interface. Go to System > Status > Dashboard > System Information.

The firmware version is in the format “W, X, Y (Z)”. W is the major version number. X is the build number. Y is the release date in the form of YYMMDD. Z is the minor release number and the patch number, if applicable. For example the FortiOS firmware image v4.0,build0178,101220 (MR1 Patch1) is FortiOS major version 4.0 minor version 1 patch 1 (v4.0 MR1 Patch 1), and build number 178 released on December 20, 2010.

NOTE: Installing firmware replaces the current antivirus and attack definitions with the definitions included with the firmware release that you are installing. After you install new firmware, make sure that antivirus and attack definitions are up to date. See the FortiGate Administration Guide or online help for more information.

To upgrade the firmware using the web-based manager

1. Copy the new firmware image file to your management computer. The firmware images for FortiGate units are available at the Fortinet Support web site.

2. Log into the web-based manager as the super admin, or an administrator account that has system configuration read and write privileges.

3. Go to System > Status > Dashboard.

4. In the System Information section, select Update on the Firmware Version line.

5. Type the path and filename of the firmware image file, or select Browse and locate the file. Click OK.

The FortiGate unit uploads the firmware image file, upgrades to the new firmware version, closes all sessions, restarts, and displays the FortiGate login. This process takes a few minutes.

6. Log into the web-based manager.

7. Go to System > Status > Dashboard and check the Firmware Version to confirm that the expected firmware upgrade was successfully installed.

18

8. Update antivirus and attack definitions.

FortiGate-ONE NAT/Route Mode

To change the administrator password 1. Go to System > Admin > Administrators. 2. Select Change Password for the admin administrator and enter a new password.

To configure interfaces

1. Go to System > Network > Interface. 2. Select the edit icon for each interface to configure. 3. Set the addressing mode for the interface. (See the online help for information.)

• For manual addressing, enter the IP address and netmask for the interface. • For DHCP addressing, select DHCP and any required settings. • For PPPoE addressing, select PPPoE, and enter the username and

password and any other required settings.

To configure the Primary and Secondary DNS server IP addresses • Go to System > Network > Options, enter the Primary and Secondary DNS IP

addresses that you recorded above and select Apply.

To configure a Default Gateway 1. Go to Router > Static and select Edit icon for the static route. 2. Set Gateway to the Default Gateway IP address you recorded above and select

OK.

FortiGate-ONE Transparent Mode

To switch from NAT/route mode to transparent mode 1. Go to System > Config > Operation Mode and select Transparent. 2. Set the Management IP/Netmask to 192.168.1.99/24. 3. Set a default Gateway and select Apply.

To change the administrator password

1. Go to System > Admin > Administrators. 2. Select Change Password for the admin administrator and enter a new password.

19

To change the management interface 1. Go to System > Config > Operation Mode. 2. Enter the Management IP address and netmask that you recorded above and

select Apply.

To configure the Primary and Secondary DNS server IP addresses • Go to System > Network > Options, enter the Primary and Secondary DNS IP

addresses that you recorded above and select Apply.

Connecting to the FortiGate CLI from the Web‑Based Manager

You can connect to the FortiGate CLI from the web‑based manager dashboard by using the CLI console widget. You can use the CLI to configure all configuration options available from the web‑based manager. Some configuration options are available only from the CLI. As well, you can use the CLI to enter diagnose commands and perform other advanced operations that are not available from the web‑based manager.

To connect to the FortiGate CLI from the web‑based manager 1. Go to System > Status. 2. Locate and select the CLI Console. Selecting the CLI console logs you into the

CLI.

Changing the Web‑Based Manager Idle Timeout

By default, the web‑based manager disconnects administrative sessions if no activity takes place for 5 minutes. This idle timeout is recommended to prevent someone from using the web‑based manager from a PC that is logged into the web‑based manager and then left unattended. However, you can use the following steps to change this idle timeout.

To change the web‑based manager idle timeout 1. Go to System > Admin > Settings. 2. Change the Idle Timeout minutes as required. 3. Click Apply.

Changing Administrative Access to FortiGate-ONE

Through administrative access an administrator can connect to the FortiGate unit to view and change configuration settings. The default configuration of your FortiGate unit allows administrative access to one or more of the interfaces of the unit as described in your FortiGate unit QuickStart Guide and Install Guide.

20

You can change administrative access by:

• enabling or disabling administrative access from any FortiGate interface • enabling or disabling securing HTTPS administrative access to the web‑based

manager (recommended) • enabling or disabling HTTP administrative access to the web‑based manager

(not recommended) • enabling or disabling secure SSH administrative access to the CLI

(recommended) • enabling or disabling SSH or Telnet administrative access to the CLI (not

recommended).

To change administrative access to your FortiGate unit 1. Go to System > Network > Interface. 2. Choose an interface for which to change administrative access and click Edit. 3. Select one or more Administrative Access types for the interface. 4. Click OK.

For more information on the ForitGate-ONE Web Config commands, see the FortiGate Administration Guide (http://docs.fortinet.com/).

10. Rebooting the Services zl Module

Rebooting should not normally be required and can potentially result in data loss. If for some reason the Services zl Module becomes unresponsive, the following commands can be used to reboot:

ProCurve# service b 1 ProCurve(services-module-B:PR)# boot <CR> System will be rebooted, do you want to continue [y/n]? y

or

ProCurve# service b name services-module ProCurve(services-module-B:PR)# boot <CR> System will be rebooted, do you want to continue [y/n]? y

21

11. Technical Support

The Services zl Module is a hardware platform that allows application vendors to make minor changes in their existing application software to run in a switch chassis. With a wide variety of applications available from several vendors, HP is committed to providing an "initial point of contact" for technical support. During this process, HP will verify the installation, configuration, activation licensing, and warranty claims on the Services zl Module. For problems concerning the application software, such as configuration or licensing of the application from the vendor, HP may have to redirect technical support to the application vendor to provide the best resources for solving a support issue. Consequently, if you are confident that the technical support issue resides within the application, it may be expeditious to contact the application vendor directly.

For access to HP ProCurve support, go to: http://www.procurve.com/customercare/support/

For troubleshooting tips, training, and documentation, go to http://www.fortinet.com, http://docs.fortinet.com and http://kb.fortinet.com. For support go to http://www.support.fortinet.com