In addition to Weibo, there is also WeChat
Please pay attention
WeChat public account
Shulou
2025-03-29 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Network Security >
Share
Shulou(Shulou.com)06/01 Report--
Is policy routing.
1) create routing-instance (SP1,SP2), and instance-type is fowarding
Edit routing-instance [SP1] instance-type forwading
Set routing-options static route 0/0 nex-hop 202.100.1.1
Edit routing-instance [SP2] instance-type forwading
Set routing-options static route 0/0 nex-hop 202.100.2.1
2) create a firewall filter
Edit friewall filter [Inside1] term [1]
Set from source-address 10.1.1.0/24
Set then routing-instance SP1
Set term [Default-Permit-All] then accept
Set firewall filter [Inside1] term [1] from source-address 10.1.1.0/24
Set firewall filter [Inside1] term [1] from source-port xxxx
Set firewall filter [Inside1] term [1] destination-address x.x.x.x/x
Set firewall filter [Inside1] term [1] destination-port xxxx
Set firewall filter [Inside1] term [1] then routing-instance SP1
Set firewall filter [Inside1] term [Default-Permit] then accept
Edit firewall filter [Inside2] term [2]
Set from source-address
Set then routing-instance SP2
Set term [Default-Permit-All] then accept
3) call filter via API
Set interface ge-0/0/2.0 family inet filter input Inside1
Set interfaes ge-0/0/3.0 family inet filter input Inside2
4) merge routing tables
Run show route / / check the global routing table. There are no routes in the routing-instance defined earlier.
Show routing-instances
Edit routing-options
Set interface-routes rib-group inet [Policy-Routing]
Edit rib-groups [Policy-Routing]
Set import-rib [inet.0 SP1.inet.0 SP2.inet.0]
Run show route / / View the merged routing table
5) create an inter-Zone policy: Security Policis (release traffic Inside1- > Outside;Inside2- > Outside)
Set security policies from-zone Inside1 to-zone Outside policy Default-Permit-All
Set match source-address any
Set match destination-address any
Set match application any
Set then permit
Set security policies from-zone Inside2 to-zone Outside policy Default-Permit-All
Set match sourc-address any
Set match destination-address any
Set match application-address any
Set then permit
# show security policies
# run show security flow session
Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.
Views: 0
*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.
Continue with the installation of the previous hadoop.First, install zookooper1. Decompress zookoope
"Every 5-10 years, there's a rare product, a really special, very unusual product that's the most un
© 2024 shulou.com SLNews company. All rights reserved.
12
Report
