No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search


To have a better experience, please upgrade your IE browser.


CLI-based Configuration Guide - Security

AR100, AR120, AR150, AR160, AR200, AR1200, AR2200, AR3200, and AR3600 V200R010

This document provides the basic concepts, configuration procedures, and configuration examples in different application scenarios of the network management feature supported by the device.
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Application Scenarios for Security Policies

Application Scenarios for Security Policies

Multiple types of service traffic exist on the network. You can configure multiple security policies on the device for different service traffic. The device uses security policies to detect traffic between security zones, protecting enterprises' internal networks.

As shown in Figure 7-5, when the Router functions as the security gateway on the border of a large- and medium-sized enterprise's network, the security policy deployment is as follows:

  • The enterprise deploys the office network, server network, and external network in different security zones. Configure security policies to detect traffic between security zones and protect the internal network.
  • Configure content security functions of security policies according to the type of network services provided by the enterprise to the external network. For example, enable IPS on all servers.
  • Configure the URL filtering security function when internal employees access the external network. The function prevents employees from visiting non-work-related websites during working hours and affecting the work efficiency.
Figure 7-5  Applying security policies between the internal network and external network

Updated: 2019-08-07

Document ID: EDOC1100034077

Views: 125692

Downloads: 230

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Previous Next