Add to Favorites | Login | Register
Network Security Internet Technology Development Database Servers Mobile Phone Android Software Apple Software Computer Software News IT Information

In addition to Weibo, there is also WeChat

Please pay attention

WeChat public account

Shulou

About us Contact us

Summary of Huawei Firewall Technology: 1. Security Zone

2025-04-03 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Network Security >

Share

Shulou(Shulou.com)06/01 Report--

About the definition of a firewall local zone:

All messages sent actively by the firewall can be considered to be sent from the local area. Anything that requires a firewall response rather than forwarding can be considered to be received by the local zone.

The direction in which messages flow between regions:

The message flows from the high area to the low area.

The message flows from the low area to the high area in the incoming direction.

How to determine which two secure areas the message flows between?

Under the ① three-layer mode: the firewall determines the interface from which the message will be sent by the routing table, and the security area to which the interface belongs is the destination area of the message.

② layer 2 mode: the firewall determines the interface from which the message will be sent according to the MAC address table, and the security zone to which the interface belongs is the destination area of the message.

About, source area: in which area the interface interfaces to the message, the security zone to which the interface belongs is the source security zone of the message.

③ in the × × × scenario, the firewall receives the encapsulated message, unencapsulates the message to get the original message, and then determines the destination security zone through the routing table. In the source area, the firewall uses the method of "reverse lookup routing table" to determine the source security zone of the original message.

Basic configuration of the security zone: there is no level for the new security zone.

Firewall zone name test

Set priority 10mura-create priority

Add interface g0/0/1

FAQ: how many subinterfaces can be configured under a physical interface?

Logic supports 114094; it has not actually been tested! Experienced warriors can inform them in advance.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.

Views: 0

*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.

Tag Search: Zone message interface security firewall fire prevention direction flow that is belonging is by destination routing original between mode encapsulation configuration active two vpn macOS Linux MariaDB MySQL Docker Shulou Information Shulou Technology Shulou Tech Info OPPO Reno Redmi Xiaomi NVidia Microsoft Huawei Apple MariaDB Huawei Docker vpn Linux Shulou Tech Info OPPO Reno macOS Microsoft Shulou Technology Redmi MySQL Apple Shulou Information NVidia Xiaomi MariaDB Huawei Docker vpn Linux Shulou Tech Info OPPO Reno macOS Microsoft Shulou Technology Redmi MySQL Apple Shulou Information NVidia Xiaomi

Share To

Related

Network Security

More Network Security >

Latest Network Security More Network Security >

Latest Internet Technology More Internet Technology >

Latest Development More Development >

Latest Database More Database >

Latest Servers More Servers >

Latest Mobile Phone More Mobile Phone >

Latest Android Software More Android Software >

Latest Apple Software More Apple Software >

Latest Computer Software News More Computer Software News >

Latest IT Information More IT Information >

Wechat

About us Contact us Product review car news thenatureplanet

© 2024 shulou.com SLNews company. All rights reserved.

12
Report