HP VPN Firewall Appliances Network Management Configuration Guide
556
Figure 320 Network diagram
2. Configuration procedure
a. Configure Firewall:
# Configure RIP.
<Firewall> system-view
[Firewall] rip
[Firewall-rip-1] network 192.1.1.0
[Firewall-rip-1] network 150.1.0.0
[Firewall-rip-1] network 151.1.0.0
[Firewall-rip-1] quit
# Configure Node 10 for policy lab1 to forward packets with a length of 64 to 100 bytes to the
next hop 150.1.1.2, and packets with a length of 101 to 1000 bytes to the next hop 151.1.1.2.
[Firewall] policy-based-route lab1 permit node 10
[Firewall-pbr-lab1-10] if-match packet-length 64 100
[Firewall-pbr-lab1-10] apply ip-address next-hop 150.1.1.2
[Firewall-pbr-lab1-10] quit
[Firewall] policy-based-route lab1 permit node 20
[Firewall-pbr-lab1-20] if-match packet-length 101 1000
[Firewall-pbr-lab1-20] apply ip-address next-hop 151.1.1.2
[Firewall-pbr-lab1-20] quit
# Configure interface PBR by applying policy lab1 to GigabitEthernet 0/3.
[Firewall] interface gigabitethernet 0/3
[Firewall-GigabitEthernet0/3] ip address 192.1.1.1 255.255.255.0
[Firewall-GigabitEthernet0/3] ip policy-based-route lab1
[Firewall-GigabitEthernet0/3] quit
# Configure the IP addresses of the GigabitEthernet interfaces.
[Firewall] interface gigabitethernet 0/1
[Firewall-GigabitEthernet0/1] ip address 150.1.1.1 255.255.255.0
[Firewall-GigabitEthernet0/1] quit
[Firewall] interface gigabitethernet 0/2
[Firewall-GigabitEthernet0/2] ip address 151.1.1.1 255.255.255.0
[Firewall-GigabitEthernet0/2] return
b. Configure Router A:
# Configure RIP.
<RouterA> system-view
[RouterA] rip