云计算专业防火墙实验:
1.防火墙配置管理员用户为自己的名字;
2.配置3个区域与名字相关;
3.配置策略实现能相互ping通;
4.配置策略实现防火墙能ping 通各个区域的主机。
拓扑图如图所示:
配置命令如下:
sq:
aaa
manager-user sq
service-type web
password ci Aa123456
level 15
firewall zone name pc
set priority 66
add interface g1/0/0
security-policy
rule name local-pc-server-clo
source-zone local
destination-zone pc server trust
service icmp
action permit
security-policy
rule name server-pc
source-zone server
destination zone pc
service icmp
action permit
security-policy
rule name pc-server
source-zone pc
destination-zone server
service http ftp icmp
action permit
Server和Cliant配置如下:
菜菜的代码,希望能够帮助到你哟!