Table of Contents
Advertisement
S9700 Core Routing Switch
Configuration Guide - SPU
No.
2
3
2.3.2 Creating a Zone
Before configuring a firewall, you need to create the related zones. Then you can deploy security
services according to the security priorities of the zones.
Procedure
Step 1 Run:
system-view
The system view is displayed.
Step 2 Run:
firewall zone zone-name
A zone is created.
The SPU can be configured with up to 255 zones, and no default zone is provided.
Step 3 Run:
priority security-priority
The priority of the zone is set.
You must configure a priority for a zone before making other configurations. The priority cannot
be changed. The priorities of the zones cannot be the same. A greater value indicates a higher
priority.
----End
2.3.3 Adding an Interface to the Zone
You can add interfaces to the specified zone.
Prerequisites
The zone has been created through the firewall zone command.
Procedure
Step 1 Run:
system-view
The system view is displayed.
Step 2 Run:
interface interface-type interface-number.subinterface
The interface view is displayed.
Issue 01 (2012-03-15)
Data
Priority of the zone
Interfaces that you want to add to the zone
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
2 Firewall Configuration
35
Advertisement
Table of Contents
