R3166-R3206-HP High-End Firewalls Network Management Configuration Guide-6PW101
231
# Create an advanced ACL.
• Select Firewall > ACL from the navigation tree and then click Create.
• Type the ACL number, 3000 for example.
• Select the match order Config.
• Click Apply to complete the operation.
# Define an ACL rule for traffic from the other departments to the salary server.
• Select ACL 3000 in the ACL list and click its icon.
• Click Create.
• Select the Rule ID check box, and type rule ID 2.
• Select Permit in the Operation drop-down list.
• Select worktime in the Time Range drop-down list.
• Select the Destination IP Address check box, and type IP address 10.1.1.1 and destination wildcard
0.0.0.0.
• Click Apply to complete the operation.
Step3
Configure a QoS policy
# Create a class.
• Select Firewall > QoS > Classifier from the navigation tree and then click Create.
• Type the class name class1.
• Select And in the Operation Type drop-down list.
• Click Apply to complete the operation.
# Configure match criteria in the class.
• Select class1 in the classifier list and click its icon.
• Click Create.
• Select the ACL option and select ACL 3000.
• Click Apply to complete the operation.
# Create a traffic behavior.
• Select Firewall > QoS > Behavior from the navigation tree and then click Create.
• Type the behavior name behavior1.
• Click Apply to complete the operation.
# Configure actions for the traffic behavior.
• Click the icon corresponding to behavior1.
• Select the Filter option, and then select Deny in the Packet Filter drop-down list.
• Click Apply to complete the operation.
# Create a policy.
• Select Firewall > QoS > Policy f
rom the navigation tree and then click Create.
• Type the policy name policy1.
• Click Apply to complete the operation.
# Associate the classifier and the traffic behavior in the policy.
• Select policy1 in the policy list and then click Create.