No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

FusionAccess V100R006C20 on FusionCloud V100R006C10 Software Installation Guide 11 (Microsoft AD)

Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Configuring a Firewall Policy

Configuring a Firewall Policy

If a border firewall is enabled, contact the O&M personnel to configure firewall policies on the border firewall based on Table 4-27.

NOTE:
  • Policies allowed by default are supported since system initialization and do not need to be configured manually.
  • Obtain the FusionCloud data by referring to Information Collection.
Table 4-27 Firewall policy

Source IP Address

Source Port

Destination IP Address

Destination Port/Protocol

Policy

Type I: Cascaded external_relay_network address

Type II: external_relay_network address

0

IP address of the AGW-PodLB-Float-IP

80

Allow by default

Type I: Cascaded external_relay_network address

Type II: external_relay_network address

0

IP address of the AGW-PodLB-Float-IP

443

Allow by default

Type I: Cascaded external_relay_network address

Type II: external_relay_network address

0

IP addresses of TDNS-TNTP01-TENANT and TDNS-TNTP02-TENANT

53

Allow by default

Type I: Cascaded external_relay_network address

Type II: external_relay_network address

0

IP addresses of TDNS-TNTP01-TENANT and TDNS-TNTP02-TENANT

123

Allow by default

Type I: Cascaded external_relay_network address

Type II: external_relay_network address

0

DMZ_Tenant IP address of the FA-Pub-Backup VM

ICMP

Allow

Type I: Cascaded external_relay_network address

Type II: external_relay_network address

0

DMZ_Tenant IP address of the FA-Pub-Backup VM

21

Allow

Type I: Cascaded external_relay_network address

Type II: external_relay_network address

0

DMZ_Tenant IP address of the FA-Pub-License VM

ICMP

Allow

Type I: Cascaded external_relay_network address

Type II: external_relay_network address

0

DMZ_Tenant IP address of the FA-Pub-License VM

22

Allow

Type I: Cascaded external_relay_network address

Type II: external_relay_network address

0

DMZ_Tenant IP address of the FA-Pub-License VM

8774

Allow

DMZ_Tenant IP address of the FA-Pub-License VM

0

Type I: Cascaded external_relay_network address

Type II: external_relay_network address

ICMP

Allow

DMZ_Tenant IP address of the FA-Pub-License VM

0

Type I: Cascaded external_relay_network address

Type II: external_relay_network address

22

Allow

DMZ_Tenant IP address of the FA-Pub-License VM

0

Type I: Cascaded external_relay_network address

Type II: external_relay_network address

6773

Allow

DMZ_Service IP address of the FA-Pub-License VM

0

IP addresses of OM-SRV01 and OM-SRV02

123

Allow

DMZ_Service IP address of the FA-Pub-License VM

0

IP addresses of OM-SRV01 and OM-SRV02

53

Allow

DMZ_Service IP address of the FA-Pub-License VM

0

Type I: IP address of the Cascading-Reverse-Proxy

Type II: IP address of the Reverse-Proxy

443

Allow

DMZ_Tenant IP address of the FA-Pub-License VM

0

IP addresses of OM-SRV01 and OM-SRV02

123

Allow

DMZ_Tenant IP address of the FA-Pub-License VM

0

IP addresses of OM-SRV01 and OM-SRV02

53

Allow

Translation
Download
Updated: 2019-07-01

Document ID: EDOC1100021785

Views: 49676

Downloads: 112

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next