Manualshelf

R3204P16-HP Load Balancing Module Security Configuration Guide-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
191192193194195196197198199200
185
[LB] acl number 2000
[LB-acl-basic-2000] rule 0 permit source 3.3.3.3 0.0.0.0
[LB-acl-basic-2000] rule 1 deny source any
[LB-acl-basic-2000] quit
# Specify to allow users to use IP addresses to access websites.
[LB] firewall http url-filter host ip-address deny
[LB] firewall http url-filter host acl 2000
After the above configuration, open a Web browser on a host in the LAN, enter website
http://www.webflt.com or http://3.3.3.3 and you can access this website normally. Enter other website
addresses, and you are not allowed to access the corresponding websites.
# Display detailed information about URL address filtering.
[LB] display firewall http url-filter host verbose
URL-filter host is enabled.
Default method: deny.
The support for IP address: deny.
The configured ACL group is 2000.
There are 1 packet(s) being filtered.
There are 1 packet(s) being passed.
# Display URL address filtering information about all filtering entries.
[LB] display firewall http url-filter host all
SN Match-Times Keywords
------------------------------------
1 1 www.webflt.com
URL parameter filtering configuration example
Network requirements
Enable the URL parameter filtering function on the LB module, and add URL parameter filtering entry
group to filter HTTP requests.
Figure 124 Network diagram for URL parameter filtering configuration
Configuration procedure
# Configure IP addresses for the interfaces. (Omitted)
# Configure the NAT policy for the outbound interface.
<LB> system-view
[LB] acl number 2200