Internal network address 192.168.1.0/25 access to extranet does not restrict
For intranet address 192.168.1.128/25 only allow to send and receive mail, do not allow access to extranet
#
sysname Routera
#
Firewall enable/enable firewall function
Firewall default deny/configure firewall default action for deny/
#
RADIUS scheme System
#
Domain system
#
ACL number 2000/define acl/for NAT conversion
Rule 0 Permit Source 192.168.1.0 0.0.0.255
Rule 1 deny
#
ACL number 3001/define acl/for packet filtering
Rule 0 Permit IP source 192.168.1.0 0.0.0.127
/intranet address 192.168.1.0/25 access to extranet without restriction
1, the system by default to prohibit the firewall (firewall disable), you need to use the command "firewall enable" to enable the firewall function
2, firewall default filtering mode is allowed to pass (permit), can be modified by "firewall default Deny" to prohibit through
3, in the use of packet filtering, and at the same time using DHCP server to assign addresses, you need to add a "Rule 0 permit IP source 0.0.0.0 0" in ACL 3001, otherwise DHCP server cannot assign addresses.
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.