华三防火墙H3 F100基本配置说明
华三防火墙H3C F100配置说明
开通网口
用超级终端开通GE0/0网口
先输入〈H3C〉system-view 初始化配置?
再输入 [H3C] interzone policy default by-priority 开通GE0/0网口
连接
将服务器的IP设成192.168.0.2 子网掩码255.255.255.0
与华为防火墙的GE0/0相连(默认iP是192.168.0.1)
配置
1.打开浏览器,输入192.168.0.1
2.输入用户名( admin )、密码 ( admin )以及验证码(注意大小写)后进入配置界面。
3.先把端口加入相应的域。??外网口就加入Untrust?域,?内网口就加入Trust口。设备管理—安全域,编辑Trust和Untrust区域。
选择0/1为Trust区域,选择0/2为Untrust区域。
4.为相应的接口配置上相应的IP地址。设备管理—接口管理,编辑0/1,三层模式,静态路由,IP地址192.168.1.1 掩码:255.255.255.0
编辑0/2,三层模式,静态路由,IP地址10.178.177.230 掩码:255.255.255.0
5.网络管理—DHCP-DHCP服务器,选择启动,动态。
新建,如下图填入IP,掩码,网关和DNS.
防火墙—ACL
新建ACL,在ID中填入2000
确定后点击详细信息,新建
对2000进行配置,pernit和无限制。
防火墙—NAT—动态地址转化
新建,选择0/2口,2000,easy IP。
网络管理—路由管理—静态路由
新建
目标IP:0.0.0.0 掩码:0.0.0.0 下一跳:10.178.177.129出接口:0/2
设备管理—配置管理。备份。
10.服务器网口填自动获取IP,与内网口0/1相连;外网连入外网口0/2。0/0为配置口。
showing a relatively independent form. The old town and the road network has been developed along the South, road networks are "well"-shaped grid structure. The nanxi area, the minjiang River area, dvn group and other area roads has not developed to a certain size
showing a relatively independent form. The old town and the road network has been developed along the South, road networks are "well"-shaped grid structure. The nanxi area, the minjiang River area, dvn group and other area roads has not developed to a certain size
showing a relatively independent form. The old town and the road network has been developed along the South, road networks are "well"-shaped grid structure. The nanxi area, the minjiang River area, dvn group and other area roads has not developed to a certain size
2477
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
