Huawei quidway s7700 Configuration Manual page 85
Smart routing switch
Hide thumbs
Also See for quidway s7700:
- Configuration manual (833 pages) ,
- Configuration manual - ethernet (648 pages) ,
- Configuration manual - multicast (551 pages)
Table of Contents
Advertisement
Quidway S7700 Smart Routing Switch
Configuration Guide - SPU
firewall enable
packet-filter default permit outbound
packet-filter 3102 inbound
packet-filter default permit inbound
detect aspf ftp
Run the display port-mapping ftp command on the SPU, and the result is as follows:
[SPU] display port-mapping ftp
-------------------------------------------------
Service
-------------------------------------------------
ftp
ftp
-------------------------------------------------
----End
Configuration Files
l
Issue 01 (2011-07-15)
Port
Acl
21
2121
2102
Configuration file of the SPU
#
sysname SPU
#
acl number 2102
rule 5 permit source 129.38.1.2 0
#
acl number 3102
rule 5 permit tcp source 202.39.2.3 0 destination 129.38.1.2 0
rule 10 permit tcp source 202.39.2.3 0 destination 129.38.1.3 0
rule 15 permit tcp source 202.39.2.3 0 destination 129.38.1.4 0
rule 20 deny ip
#
firewall zone trust
priority 100
#
firewall zone untrust
priority 1
#
firewall interzone trust untrust
firewall enable
detect aspf ftp
packet-filter 3102 inbound
#
port-mapping ftp port 2121 acl 2102
#
interface Eth-trunk0
#
interface XGigabitEthernet 0/0/1
Eth-trunk0
#
interface XGigabitEthernet 0/0/2
Eth-trunk0
#
interface Eth-trunk0.1
control-vid 10 dot1q-termination
dot1q termination vid 10
ip address 129.38.1.1 255.255.255.0
zone trust
#
interface Eth-trunk0.2
control-vid 20 dot1q-termination
dot1q termination vid 20
ip address 202.39.2.1 255.255.0.0
zone untrust
#
return
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
Type
system defined
user
defined
2 Firewall Configuration
74
Advertisement
Table of Contents
