·¢²¼Ê±¼ä : ÐÇÆÚ¶þ ÎÄÕ»ªÎª·À»ðǽÅäÖÃʹÓÃÊֲᣨ×Ô¼ºÐ´£©¸üÐÂÍê±Ï¿ªÊ¼ÔĶÁ
ͼÐνâ¾ö²Ù×÷·½·¨£º 1¡¢ ÆôÓÃÏÞÁ÷¹¦ÄÜ
ÉÏ´«µÄÕûÌåÏÞÁ÷²ßÂÔ£º
2¡¢
3
ÏÂÔØÕûÌåÏÞÁ÷Á÷²ßÂÔ£º
Ó¦ÓÿØÖÆ£º
´´½¨Ó¦ÓÃÐÒé»òÕßÓ¦ÓÃÐÒ鼯£º
sa enable //È«¾ÖÆôÓÃÓ¦ÓÿØÖƹ¦ÄÜ sa //½øÈësaÊÓͼ
user-define-rule test //ÔÚsaÊÓͼÏ´´½¨×Ô¶¨ÒåÓ¦ÓóÌÐòtest protocol tcp source-port 10 destination-port 10 rule enable
app-set test //ÔÚsaÊÓͼ£¬´´½¨Ó¦ÓÃÐÒ鼯£¬Õâ¸ö¶ÔÓ¦Ó÷À»ðǽϵÄÓ¦ÓÃÐÒé»òÕßÓ¦ÓÃÐÒ鼯¡£ description ½ûֹijЩӦÓà category P2P category Web_Video category Game category Attack
category Network_Storage category Streaming category PeerCasting category VoIP
category userdefine application test //¿ÉÒÔ½«´´½¨µÄ×Ô¶¨ÒåÓ¦ÓóÌÐòÌí¼Óµ½Ó¦ÓÃÐÒ鼯 [huawei]sa-policy test //ϵͳÊÓͼÃüÁ¶ÔÓ¦ÓÚ·À»ðǽµÄUTMϵÄÓ¦ÓÿØÖÆϵIJßÂÔ¡£ policy default action permit rule 0 rule enable action deny
rule category Web_Browsing application HTTP
rule 3 rule enable action deny
rule app-set test //ÒýÓÃÉÏÃæ´´½¨µÄÓ¦ÓÃÐÒ鼯
ÔÚ²ßÂÔÉÏÒýÓô´½¨µÄÓ¦ÓóÌÐò£º
policy interzone trust untrust outbound policy 24 action permit
policy source address-set Éú²úÍøipÏÞÖÆ policy sa Éú²úÍøipÏÞÍø
policy 23 action permit
policy source address-set ÖÊÁ¿¹ÜÀí²¿¼°pmc policy sa ÖÊÁ¿¹ÜÀí²¿¼°pmc
policy 22 action permit
policy logging //¼Ç¼²ßÂÔÆ¥ÅäÈÕÖ¾ policy source address-set oem
policy sa oem
policy 21 action permit
policy source address-set meÖÆÔìÒ»¿Î¶þ¿Î policy sa meÖÆÔìÒ»¿Î¶þ¿Î