#
firewall packet-filter default permit interzone local trust direction inbound
firewall packet-filter default permit interzone local trust direction outbound
firewall packet-filter default permit interzone local untrust direction inbound
firewall packet-filter default permit interzone local untrust direction outbound
firewall packet-filter default permit interzone local dmz direction inbound
firewall packet-filter default permit interzone local dmz direction outbound
firewall packet-filter default permit interzone trust dmz direction inbound
firewall packet-filter default permit interzone trust dmz direction outbound
firewall packet-filter default permit interzone dmz untrust direction inbound
firewall packet-filter default permit interzone dmz untrust direction outbound
#
nat address-group 1 192.168.0.7 192.168.0.9
nat server protocol tcp global 192.168.0.7 8080 inside 192.168.10.100 www
#
interface Ethernet0/0/0
ip address 192.168.0.1 255.255.255.0
#
interface Ethernet0/0/1
ip address 192.168.10.1 255.255.255.0
dhcp select interface
dhcp server dns-list 202.102.128.1
dhcp server expired day 10 hour 10
ip address-set shangwang
address 1 192.168.10.2 0
#
acl number 2000
step 10
rule 50 permit source address-set shangwang
#
acl number 3000
step 10
rule 50 permit tcp destination 192.168.10.100 0 destination-port eq www
firewall zone trust
set priority 85
add interface Ethernet0/0/1
#
firewall zone untrust
set priority 5
add interface Ethernet0/0/0
firewall interzone trust untrust
packet-filter 3000 inbound
packet-filter 2000 outbound
nat outbound 2000 address-group 1
为什么在0/0/1下接的PCping00/0/0接口地址能ping通啊。。防火墙没命中 原因在哪呢?
关于华为USG命令的疑惑
答案:2 悬赏:0
解决时间 2021-02-28 21:11
- 提问者网友:恋你成殇
- 2021-02-27 23:12
最佳答案
- 二级知识专家网友:星痕之殇
- 2021-02-28 00:16
不知道呃,我也没看出来、
全部回答
- 1楼网友:請叫我丶偏執狂
- 2021-02-28 01:11
不知道
我要举报
如以上问答内容为低俗、色情、不良、暴力、侵权、涉及违法等信息,可以点下面链接进行举报!
大家都在看
推荐资讯
| • 手机登qq时,显示手机磁盘不足,清理后重新登 |
| • 刺客的套装怎么选啊? |