Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document.
Note: Even the most advanced machine translation cannot match the quality of professional translators.
Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Configuring Security Policies
Context
After different security zones are configured on the firewall to implement network isolation, you need to create security policies to allow authorized communication between different security zones and implement network access control.
This section describes how to configure a security policy to allow internal network users to access the Internet.
Data Plan
Table 4-20 Data plan for a security policy
Device |
Name |
Source Security Zone |
Destination Security Zone |
Action |
Other Parameters |
Description |
|---|---|---|---|---|---|---|
FW-a (master device) |
inner_to_internet |
rd_trust, market_trust, guest_trust |
untrust |
Permit |
Default |
Allows internal network users to access the Internet. |
Procedure
- Choose Policy > Security Policy > Security Policy. In the Security Policy List area, click Add Security Policy to create a security policy.
