No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

Web-based Configuration Guide

AR650, AR1600, and AR6100 V300R003

This document describes how to configure and maintain your routers using the web platform.
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Interzone Policy

Interzone Policy

Context

Any two zones form an interzone. Each interzone has an independent interzone view. Most firewall configurations are performed in the interzone views. After the firewall function is configured, the device checks data transmitted between zones.

The configured firewall functions take effect only after you enable firewall in the interzone.

When data is transmitted between two zones, the ACL-based packet filtering firewall enforces the packet filtering policies according to ACL rules.

Procedure

  • Creating an interzone policy
    1. Access the Interzone Policy tab page.

      Log in to the web platform and choose Security > Firewall > Interzone Policy, as shown in Figure 14-17.
      Figure 14-17  Configuring zone policy

    2. Click Create and set parameters in the Create Interzone Policy dialog box that is displayed, as shown in Figure 14-18. Table 14-6 describes the parameters.

      Figure 14-18  Creating interzone policy

    3. Click OK. An interzone policy is added to the interzone policy list.

      Table 14-6  Interzone parameters

      Parameter

      Description

      Source zone

      A source zone must be a created zone. The source zone priority must be equal to or higher than the destination zone priority.

      Destination zone

      A destination zone must be a created zone. The destination zone priority must be equal to or lower than the source zone priority.

      Status

      Whether to enable or disable the firewall function.

      Direction

      Direction from the source zone to the destination zone or from the destination zone to the source zone.

      Action

      Action of permit or deny.

      ACL name

      Name of the ACL for packet filtering. The ACLs include basic ACL and advanced ACL.

  • Modifying an interzone policy
    1. Access the Interzone Policy tab page.

      Log in to the web platform and choose Security > Firewall > Interzone Policy.

    2. Click next to an interzone policy.
    3. Click of a direction.
    4. In the Modify Interzone Policy dialog box that is displayed, modify parameters listed in Table 14-6.The parameters are the same as those in Figure 14-18. The parameters Source zone, Destination zone, and Direction cannot be modified.
    5. Click OK.
  • Deleting an interzone policy
    1. Access the Interzone Policy tab page.

      Log in to the web platform and choose Security > Firewall > Interzone Policy.

    2. Select an interzone policy and click Delete. In the Information dialog box that is displayed, click OK.
  • Search an interzone policy
    1. Access the Interzone Policy tab page.

      Log in to the web platform and choose Security > Firewall > Interzone Policy.

    2. Select Source zone or Destination zone from the Search item drop-down list box, enter a keyword, click Search. You can view, modify, or delete a searched interzone policy.
Download
Updated: 2019-04-12

Document ID: EDOC1100041803

Views: 35246

Downloads: 92

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next