Huawei AR1200-S Configuration Manual page 101
Enterprise routers
Hide thumbs
Also See for AR1200-S:
- Configuration manual (125 pages) ,
- Hardware description (171 pages)
Table of Contents
Advertisement
Huawei AR1200-S Series Enterprise Routers
Configuration Guide - Security
Figure 3-4 Network diagram for configuring the blacklist
Enterprise
network
Configuration Roadmap
The configuration roadmap is as follows:
1.
2.
3.
4.
5.
6.
Procedure
Step 1 Configure zones and an interzone on the Router .
[Huawei] firewall zone trust
[Huawei-zone-trust] priority 15
[Huawei-zone-trust] quit
[Huawei] firewall zone untrust
[Huawei-zone-untrust] priority 1
[Huawei-zone-untrust] quit
[Huawei] firewall interzone trust untrust
[Huawei-interzone-trust-untrust] firewall enable
[Huawei-interzone-trust-untrust] quit
Step 2 Add Router interfaces to zones.
[Huawei] vlan 100
[Huawei-vlan100] quit
[Huawei] interface vlanif 100
[Huawei-Vlanif100] ip address 129.38.1.1 24
[Huawei-Vlanif100] quit
[Huawei] interface Ethernet 0/0/0
[Huawei-Ethernet0/0/0] port link-type access
[Huawei-Ethernet0/0/0] port default vlan 100
[Huawei-Ethernet0/0/0] quit
[Huawei] interface vlanif 100
[Huawei-Vlanif100] zone trust
Issue 02 (2012-03-30)
Server
Ethernet0/0/0
Configure zones and an interzone.
Add interfaces to the zones.
Enable the blacklist function.
Add an entry to the blacklist.
Enable the defense against IP address sweeping or port scanning.
Configure the maximum session rate and blacklist timeout for the defense against IP address
sweeping or port scanning.
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
GE0/0/1
Router
3 Firewall Configuration
87
Advertisement
Table of Contents
