<强> USG <强>
<强>
<李>
<李>
<强>
,,,,,,,, 
<强>
,,,,,,,,TrustUntrustDMZG0/0/1G0/0/21vlan11G0/0/2G0/0/22vlan12G0/0/3G0/0/23vlan13 .
,,,,,,,,
,,,,,,,,TrustUntrust
,,,,,,,,TrustUntrustDMZ
,,,,,,,,UntrustTrust DMZTrustUntrust
<强>
<强>。 <强> IP <强>
,,,,,,,,
(华为)sysname R1
(R1)接口g0/0/1
[R1-GigabitEthernet0/0/1] ip添加10.0.10.124
[R1-GigabitEthernet0/0/1] desc这portconnect S1-G0/0/1
[R1-GigabitEthernet0/0/1] interfaceloopback0
[R1-LoopBack0] ip添加10.0.1.1 24
[R1-LoopBack0] q
,
,
(华为)sysname R2
(R2)接口g0/0/1
[R2-GigabitEthernet0/0/1] ip添加10.0.20.224
[R2-GigabitEthernet0/0/1] desc这portconnect S1-G0/0/2
[R2-GigabitEthernet0/0/1] interfaceloopback0
[R2-LoopBack0] ip添加10.0.2.2 24
[R2-LoopBack0] q
,
,
(华为)sysname R3
(R3)接口g0/0/1
[R3-GigabitEthernet0/0/1] ip添加10.0.30.324
[R3-GigabitEthernet0/0/1] desc这portconnect S1-G0/0/3
[R3-GigabitEthernet0/0/1] interfaceloopback0
[R3-LoopBack0] ip添加10.0.3.3 24
[R3-LoopBack0] q
,,,,,,,,G0/0/1IP10.0.20.254/24。在
[分析]sysname FW
08:34:20 2014/07/05
(FW)接口g0/0/1
08:35:50 2014/07/05
[FW-GigabitEthernet0/0/1] ip添加10.0.20.25424
08:36:01 2014/07/05
[FW-GigabitEthernet0/0/1]描述thisport连接S1-G0/0/22
08:38:06 2014/07/05
[FW-GigabitEthernet0/0/1]接口g0/0/0
08:39:08 2014/07/05
[FW-GigabitEthernet0/0/0] ip添加10.0.10.25424
08:39:27 2014/07/05
信息:thisinterface DHCP服务器配置将被删除。
,
[FW-GigabitEthernet0/0/0] desc tihis portconnect, S1-G0/0/21
08:40:02 2014/07/05
[FW-GigabitEthernet0/0/0]接口G0/0/2
08:40:15 2014/07/05
[FW-GigabitEthernet0/0/2] ip添加10.0.30.25424
08:40:30 2014/07/05
[FW-GigabitEthernet0/0/2] desc这portconnect S1-G0/0/23
08:41:05 2014/07/05
[FW-GigabitEthernet0/0/2] q
08:41:07 2014/07/05
vlan
(华为)sysname S1
(S1) vlan 11到13批
信息:该操作可能需要花费一个fewseconds。请稍等片刻…。
(S1)接口g0/0/1
[S1-GigabitEthernet0/0/1]港口link-typeaccess
[S1-GigabitEthernet0/0/1]端口默认vlan11
[S1-GigabitEthernet0/0/1]接口g0/0/2
[S1-GigabitEthernet0/0/2]港口link-typeaccess
[S1-GigabitEthernet0/0/2]端口默认vlan12
(S1)接口g0/0/3
[S1-GigabitEthernet0/0/3]港口link-typeaccess
[S1-GigabitEthernet0/0/3]端口默认vlan13
[S1-GigabitEthernet0/0/3]接口g0/0/21
[S1-GigabitEthernet0/0/21]港口link-typeaccess
[S1-GigabitEthernet0/0/21]端口默认vlan11
[S1-GigabitEthernet0/0/21]接口g0/0/22
[S1-GigabitEthernet0/0/22]港口link-typeaccess
[S1-GigabitEthernet0/0/22]端口默认vlan12
[S1-GigabitEthernet0/0/22]接口g0/0/23
[S1-GigabitEthernet0/0/23]港口link-typeaccess
[S1-GigabitEthernet0/0/23]端口默认vlan13
<强>。 <强>
,,,,,,,,localtrustuntrustdmz
,,,,,,,,trustuntrustdmzG0/0/0untrustG0/0/2DMZG0/0/1trust
(FW)防火墙区信任
09:09:15 2014/07/05
[FW-zone-trust]说这
09:09:19 2014/07/05
#防火墙区信任
, setpriority 85
, addinterface GigabitEthernet0/0/0
#
返回(FW-zone-trust)撤销添加inter ,,,,,,
[FW-zone-trust]取消添加界面g0/0/0
09:09:35 2014/07/05
[FW-zone-trust]添加界面g0/0/1
09:10:01 2014/07/05
(FW)防火墙区untrust
09:11:24 2014/07/05
[FW-zone-untrust]添加界面g0/0/0
09:11:36 2014/07/05
[FW-zone-untrust] q
(FW)防火墙区dmz
09:12:07 2014/07/05
[FW-zone-dmz]添加界面g0/0/2
09:12:16 2014/07/05
[FW-zone-dmz] q
,,,,,,,,null null
