本文为大家介绍一个H3C防火墙的配置实例，配置内容包括：配置接口IP地址、配置区域、配置
NAT地址转换、配置访问策略等，组网拓扑及需求如下。
1、网络拓扑图2、配置要求3、防火墙的配置脚本如下H3CF100Adiscursys
ameH3CF100Asuperpasswordlevel3cipher6aQQ57I04I41firewallpacketfiltere
ablefirewallpacketfilterdefaultpermiti
sulatefirewallstatisticsysteme
ableradiusschemesystemservertypeexte
deddomai
systemlocaluser
et1980passwordcipherservicetypetel
etlevel2aspfpolicy1detecth323detectsql
etdetectrtspdetecthttpdetectsmtpdetectftpdetecttcpdetectudpacl
umber3001descriptio
outi
side
frule1000de
yipacl
umber3002descriptio
i
sidetooutsiderule1000de
yipi
terfaceAux0asy
cmodeflowi
terfaceEther
et00shutdow
i
terfaceEther
et01shutdow
i
terfaceEther
et02speed100duplexfulldescriptio
toserverfirewallpacketfilter3002i
bou
dfirewallaspf1outbou
di
terfaceEther
et03shutdow
i
terfaceEther
et10shutdow
i
terfaceEther
et11shutdow
i
terfaceEther
et12speed100duplexfulldescriptio
toi
ter
etfirewallpacketfilter3001i
bou
dfirewallaspf1outbou
d
atoutbou
dstatici
terfaceNULL0firewallzo
elocalsetpriority100firewallzo
etrust
faddi
terfaceEther
et02setpriority85firewallzo
eu
trustaddi
terfaceEther
et12setpriority5firewallzo
eDMZaddi
terfaceEther
et03setpriority50firewalli
terzo
elocaltrustfirewalli
terzo
elocalu
trustfirewalli
terzo
elocalDMZfirewalli
terzo
etrustu
trustfirewalli
terzo
etrustDMZfirewalli
terzo
eDMZu
trustuseri
terfaceco
0useri
terfaceaux0useri
terfacevty04authe
ticatio
modeschemeretur

fr