R3166-R3206-HP High-End Firewalls Access Control Configuration Guide-6PW101
50
Figure 46 Network diagram for interzone policy configuration
Configuration procedure
1. Create a time range for working hours
# Create a periodic time range from 8:00 to 18:00 in working days.
• Select Resource > Time Range from the navigation tree and then click Add.
• Type worktime in the Name text box.
• Select the Periodic Time Range check box.
• Set the start time to 8:00.
• Set the end time to 18:00.
• Select the Mon., Tues., Wed., Thurs., and Fri. check boxes.
• Click Apply.
2. Define an address resource
# Create an address resource.
• Select Resource > Address > IP Address from the navigation tree, and then click Add.
• Select the IP Address check box
• Type public as the name.
• Type 10 .1.1.1 as the IP address. Then click Add to add this address to the IP list.
• Click Apply.
3. Configure an interzone policy
# Configure an access rule for host Public to access the external network.
• Select Firewall > Security Policy > Interzone Policy from the navigation tree, and then click Add.
• Select Trust as the source zone and Untrust as the destination zone.
• Type 0 in the Rule ID text box.
• Select public as the address.
• Select Permit as the filter action.
• Select the Status check box.
• Select the Continue to add next rule option.