Manualshelf

R3204P16-HP Load Balancing Module Security Configuration Guide-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
191192193194195196197198199200
186
[LB-acl-basic-2200] rule 0 permit source 192.168.1.0 0.0.0.255
[LB-acl-basic-2200] rule 1 deny source any
[LB-acl-basic-2200] quit
[LB] nat address-group 1 2.2.2.10 2.2.2.11
[LB] interface GigabitEthernet 0/0.1
[LB-GigabitEthernet0/0.1] nat outbound 2200 address-group 1
[LB-GigabitEthernet0/0.1] quit
# Enable the URL parameter filtering function and add URL parameter filtering entry group.
[LB] firewall http url-filter parameter enable
[LB] firewall http url-filter parameter keywords group
Use the display firewall http url-filter parameter verbose command to display detailed URL parameter
filtering information.
[LB] display firewall http url-filter parameter verbose
URL-filter parameter is enabled.
There are 1 packet(s) being filtered.
There are 2 packet(s) being passed.
Use the display firewall http url-filter parameter all command to display URL parameter filtering
information about all filtering entries.
[LB] display firewall http url-filter parameter all
SN Match-Times Keywords
------------------------------------
1 1 group
Java blocking configuration example
Network requirements
Enable Java blocking on the LB module, add suffix keyword .js, and configure the LB module to allow
only Java applet requests to the website at 5.5.5.5.
Figure 125 Network diagram for Java blocking configuration
Configuration procedure
# Configure IP addresses for the interfaces. (Omitted)
# Configure the NAT policy for the outbound interface.
<LB> system-view
[LB] acl number 2200
[LB-acl-basic-2200] rule 0 permit source 192.168.1.0 0.0.0.255